kernel-exploits
→ View on GitHubAI Summary: The xairy/kernel-exploits repository contains a collection of Linux kernel exploit code samples for various vulnerabilities, primarily focusing on local privilege escalation (LPE) and information leak scenarios. Each entry is associated with specific Common Vulnerabilities and Exposures (CVEs), detailing the exploit’s impact and vector, enhancing understanding and mitigation strategies for kernel security vulnerabilities. Notable features include the absence of licensing, making the code freely available for educational and research purposes.
README
Linux kernel exploits
| Date | Link | Description | Vector | Impact |
|---|---|---|---|---|
| 02.2016 | CVE-2016-2384 | Double-free in USB MIDI driver | USB + Local | LPE |
| 03.2016 | prefetch-side-channel | KASLR bypass via prefetch | Local | Info-leak |
| 12.2016 | CVE-2016-9793 | Signedness issue with socket buffers | Local + cap_net_admin | LPE |
| 02.2017 | CVE-2017-6074 | Double-free in DCCP sockets | Local | LPE |
| 03.2017 | CVE-2017-7308 | Signedness issue in AF_PACKET sockets | Local | LPE |
| 08.2017 | CVE-2017-1000112 | Memory corruption in UDP FO packets | Local | LPE |
| 08.2018 | CVE-2017-18344 | Arbitrary-read in the timer subsystem | Local | Info-leak |
| 09.2025 | CVE-2025-38494/CVE-2025-38495 | Integer underflow in HID core | USB | Info-leak |
No license
The code in this repository comes with no attached license.
THE SOFTWARE [and this disclaimer] IS PROVIDED “AS IS”, WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.