github/metasploit-framework
1
Fork 0
mirror of https://github.com/rapid7/metasploit-framework synced 2024-10-09 04:26:11 +02:00
Code Releases Activity
73,160 Commits 17 Branches 914 Tags 1.2 GiB
fefc3cb73c
Commit Graph

4 Commits

Author SHA1 Message Date
Grant Willcox
9e111d7fdf
Add in compiled version of the exploit to meet Rapid7 compliance guidelines on having Rapid7 employees submit compiled binaries only 2020-10-23 16:01:00 -05:00
Gustaf Blomqvist
c5751a240b Fix incorrect offset in BPF sign extension LPE 
The uid field of the cred struct is normally the second field, followed
by the gid field. The first field is of type atomic_t, which has the
size of an int. Since the size of an int is usually 4 bytes, the uid is
normally located at an offset of 4 bytes from the start of the cred
struct, and not 8. Since the uid also is int-sized, the code set
test_uid to the gid, making the exploit fail for cases where uid != gid.
 2020-10-17 19:46:35 -04:00
Brendan Coles
9bdec97b2e Fix bpf_sign_extension_priv_esc 2018-07-13 23:01:17 +00:00
h00die
6b0691a91a cve-2017-16995 2018-03-23 21:09:56 -04:00