https://www.youtube.com/watch?v=YqmwA6fPjKE
- CVE-2022-32250 allows a local user to escalate privileges to root because an incorrect NFT_STATEFUL_EXPR check leads to a use-after-free.
- Linux, before commit 520778042ccca019f3ffa136dd0ca565c486cedd (26 May, 2022)
- Ubuntu <= 22.04 before security patch
- Platform
- Ubuntu 22.04 amd64
- Versions
- Linux ubuntu 5.15.0-27-generic #28-Ubuntu SMP Thu Apr 14 04:55:28 UTC 2022 x86_64 x86_64 x86_64 GNU/Linux
gcc exp.c -o exp -l mnl -l nftnl -w
./exp
- This exploit corrupts Linux kernel slabs, which might cause kernel panic when attempting to acquire root privileges.