cve/CVE-2019-17055.md at 537f0e365b1711041f7179a3cf2031350bdb6838

admin/cve

mirror of https://github.com/0xMarcio/cve.git synced 2025-05-28 01:04:30 +00:00

0xMarcio 48a00929ac Removed duplicates

2024-06-18 02:51:15 +02:00

Description

base_sock_create in drivers/isdn/mISDN/socket.c in the AF_ISDN network module in the Linux kernel through 5.3.2 does not enforce CAP_NET_RAW, which means that unprivileged users can create a raw socket, aka CID-b91ee4aa2a21.

POC

Reference

http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00039.html
http://packetstormsecurity.com/files/155212/Slackware-Security-Advisory-Slackware-14.2-kernel-Updates.html
https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=0edc3f703f7bcaf550774b5d43ab727bcd0fe06b
https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=b91ee4aa2a2199ba4d4650706c272985a5a32d80

Github

https://github.com/ARPSyndicate/cvemon
https://github.com/MrAgrippa/nes-01

1.1 KiB Raw Blame History

CVE-2019-17055

Description

POC

Reference

Github

1.1 KiB

Raw Blame History