Oracle's April 2024 Critical Patch Update includes my discovery of CVE-2024-21103, a race condition in VirtualBox's SUID binaries for Linux, CVSS score of 7.8 (high severity). #cve #virtualbox #oracle #linux #cybersecurity

ZDI-CAN-27262 is a Linux kernel 0-day I reported recently that allows unprivileged users to escalate privileges to root. The vulnerability is a race condition leading to a UAF in the kmalloc-196 cache. It was introduced in v4.2-rc1 and has been present in the kernel for 10 years.

RT @azz_maher: I wrote an LPE for CVE-2014-3153 AKA Towelroot, a bug in the Linux Kernel that was used to root Android devices earlier. The….

RT @azz_maher: I wrote an LPE exploit for CVE-2017-11176 for Linux Kernel version 4.8.11, I managed to bypass SMEP and SMAP (by stack pivot….

in 2025: “How the bug was found? fuzzing, auditing or LLM?”.

- Heap overflow in the latest AMDGPU drivers. CVSS score: 8.8, bounty: $5k. - 7 Android kernel vulnerabilities. It wasn’t a good idea to keep these bugs documented without reporting them for three months — one of them turned out to be a duplicate.

CVE-2024-26926 Binder n-day analysis. It is labeled EoP in Android Security Bulletin (Is it really exploitable?).

6998d993a027f9e430b9b3552a0d4374.

Android Binder use-after-free vulnerability reported to Google by me

Found a lot of Linux kernel vulnerabilities, too little time for developing exploits, maybe im gonna pick the most interesting one and work on it. (probably report them as they are is an option 🤔?).

NULL pointer dereference can be exploited for LPE with correct analysis.

Linux kernel LPE for versions 6.6 to latest (6.9.7)

it's interesting that the very first CVE ever assigned was #CVE-1999-0001 remote DoS in BSD-derived TCP/IP implementations :).

good morning, woke up to ssh and chrome vulns this morning, i have to read some technical blogposts after breakfast.

good read off by one leading to free list corruption, write-what-where. Cool stuff.

Wrote a PoC LPE for a tiny race condition leading to UAF. CAP_NET_ADMIN is needed for the LPE. Based on my research all major distributions using a kernel > 6.6 are vulnerable including Ubuntu 24.04. I will be reporting the bug in the upcoming days - blogpost and PoC coming later

took me 2 months to find a uaf, now it will take 2 years to write an exploit

CVE-2024-26817: Identified and reported an integer overflow causing heap overflow in AMD KFD. The issue was addressed by the Linux Kernel security team in commit 3b0daec. #Cybersecurity #infosec #linux #amd #ROCm #0day #cve

RT @_simo36: I've audited the Android kernel in late 2023, and reported 10+ kernel bugs to Google, along with 2 exploits. Today, I'm releas….

Any bounty program for IoT?.