Explore >> Select a destination

You are here

 securitylab.github.com
GHSL-2022-054: Use-after-free (UAF) in the Arm Mali Kernel driver - CVE-2022-38181 | GitHub Security Lab
| | googleprojectzero.blogspot.com
Project Zero: A year of Windows kernel font fuzzing #1: the results
3.7 parsecs away

Travel
| | Posted by Mateusz Jurczyk of Google Project Zero This post series is about how we used at-scale fuzzing to discover and report a tot...
| | machevalia.blog
Ivanti EPM Remote Code Execution - Machevalia
3.8 parsecs away

Travel
| | [AI summary] A blog post discusses a remote code execution vulnerability in Ivanti's Endpoint Manager Cloud Appliance, detailing its exploitation and the author's bounty hunting activities.
| | github.blog
Corrupting memory without memory corruption - The GitHub Blog
0.7 parsecs away

Travel
| | In this post Ill exploit CVE-2022-20186, a vulnerability in the Arm Mali GPU kernel driver and use it to gain arbitrary kernel memory access from an untrusted app on a Pixel 6. This then allows me to gain root and disable SELinux. This vulnerability highlights the strong primitives that an attacker may gain by exploiting errors in the memory management code of GPU drivers.
| | a13xp0p0v.tech
CVE-2017-2636: Exploit the race condition in the n_hdlc Linux kernel driver | Alexander Popov
17.0 parsecs away

Travel
| This article discloses the exploitation of CVE-2017-2636, which is a race condition in the n_hdlc Linux kernel driver. My PoC exploit for x86_64 gains root privileges bypassing Supervisor Mode Execution Protection (SMEP).