[CVE-2022-34918] A crack in the Linux firewall

Arthur Mongodin July 20, 2022 0day

In our previous article Yet another bug into Netfilter, I presented a vulnerability found within the netfilter subsystem of the Linux kernel. During my investigation, I found a weird comparison that does not fully protect a copy within a buffer. It led to a heap buffer overflow that was exploited to obtain root privileges on Ubuntu 22.04. A small jump in the past In the last episode, we reached an out-of-bound within the nft_set structure (/include/net/netfilter/nf_tables.

Yet another bug into Netfilter

Arthur Mongodin June 13, 2022 0day

This year, I have done my end-of-study internship at Randorisec, the original purpose of my internship was to study different ways of doing variant analysis on open-sources project but also on closed-source software solutions. The Linux kernel is an attractive target, and so it was chosen as the target of my project. I started scouting for publicly disclosed bugs which could lead to interesting variant patterns. Since the beginning of the year, several bugs have been found and fixed within the kernel component netfilter, such has CVE 2022-1015.

Categories

Tags