This repository contains the exploit for my recently discovered vulnerability in Nftables that was assigned CVE-2023-0179, affecting all Linux versions from 5.5 to 6.2-rc3, although the exploit was tested on 6.1.6.
3
+
This repository contains the exploit for my recently discovered vulnerability in thenftablessubsystem that was assigned CVE-2023-0179, affecting all Linux versions from 5.5 to 6.2-rc3, although the exploit was tested on 6.1.6.
4
4
5
5
The vulnerability details and writeup can be found on [oss-security](https://www.openwall.com/lists/oss-security/2023/01/13/2)
6
6
7
7
## Building instructions
8
-
Just invoke the `make` command and two executables will be generated.
8
+
Just invoke the `make leak` and `make crash` commands to generate the corresponding executables.
9
9
10
10
`libmnl` and `libnftnl` are required for the build to succeed:
11
11
```bash
skipped 16 lines
28
28
29
29
## Credits
30
30
- David Bouman's `libnftnl` [implementation](https://github.com/pqlx/CVE-2022-1015) and detailed [blog post](https://blog.dbouman.nl/2022/04/02/How-The-Tables-Have-Turned-CVE-2022-1015-1016/)