|
@vnik5287 | |||||
|
combine with P0 null-page mmap bypass on older kernels / AMD or no-smep systems and you got yourself an easy ret2usr exploit
|
||||||
|
||||||
|
Vitaly Nikolenko
@vnik5287
|
6. lis |
|
doesn't seem like ubuntu 4.4 LTS kernels want to pull the upstream patch. can still rip <-- 0 with syscall(__NR_clock_gettime, 10, 0) pic.twitter.com/SBceR9K20Y
|
||
|
|
||