cve/2023/CVE-2023-2163.md

### [CVE-2023-2163](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-2163)
![](https://img.shields.io/static/v1?label=Product&message=Linux%20Kernel&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-682%20Incorrect%20Calculation&color=brighgreen)

### Description

Incorrect verifier pruning in BPF in Linux Kernel >=5.4 leads to unsafecode paths being incorrectly marked as safe, resulting in arbitrary read/write inkernel memory, lateral privilege escalation, and container escape.

### POC

#### Reference
No PoCs from references.

#### Github
- https://github.com/Dikens88/hopp
- https://github.com/Snoopy-Sec/Localroot-ALL-CVE
- https://github.com/aobakwewastaken/aobakwewastaken
- https://github.com/carmilea/carmilea
- https://github.com/google/buzzer
- https://github.com/google/security-research
- https://github.com/kherrick/hacker-news
- https://github.com/kherrick/lobsters
- https://github.com/phixion/phixion
- https://github.com/shannonmullins/hopp
-												Update Sat May 25 21:48:12 CEST 2024

											
										
										
											2024-05-25 21:48:12 +02:00
+								### [CVE-2023-2163](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-2163)
 								![](https://img.shields.io/static/v1?label=Product&message=Linux%20Kernel&color=blue)
 								![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue)
 								![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-682%20Incorrect%20Calculation&color=brighgreen)
 								### Description
 								Incorrect verifier pruning in BPF in Linux Kernel >=5.4 leads to unsafecode paths being incorrectly marked as safe, resulting in arbitrary read/write inkernel memory, lateral privilege escalation, and container escape.
 								### POC
 								#### Reference
 								No PoCs from references.
 								#### Github
 								- https://github.com/Dikens88/hopp
 								- https://github.com/Snoopy-Sec/Localroot-ALL-CVE
-												Update CVE sources 2024-08-08 18:49

											
										
										
											2024-08-08 18:49:29 +00:00
+								- https://github.com/aobakwewastaken/aobakwewastaken
 								- https://github.com/carmilea/carmilea
-												Update Sat May 25 21:48:12 CEST 2024

											
										
										
											2024-05-25 21:48:12 +02:00
+								- https://github.com/google/buzzer
 								- https://github.com/google/security-research
-												Update CVE sources 2024-08-08 18:49

											
										
										
											2024-08-08 18:49:29 +00:00
+								- https://github.com/kherrick/hacker-news
-												Update CVE sources 2024-08-12 19:01

											
										
										
											2024-08-12 19:01:27 +00:00
+								- https://github.com/kherrick/lobsters
-												Update CVE sources 2024-08-08 18:49

											
										
										
											2024-08-08 18:49:29 +00:00
+								- https://github.com/phixion/phixion
-												Update Sat May 25 21:48:12 CEST 2024

											
										
										
											2024-05-25 21:48:12 +02:00
+								- https://github.com/shannonmullins/hopp