GameOver(lay) Ubuntu Privilege Escalation

CVE-2023-2640

https://www.cvedetails.com/cve/CVE-2023-2640/

On Ubuntu kernels carrying both c914c0e27eb0 and "UBUNTU: SAUCE: overlayfs: Skip permission checking for trusted.overlayfs.* xattrs", an unprivileged user may set privileged extended attributes on the mounted files, leading them to be set on the upper files without the appropriate security checks.

CVE-2023-32629

https://www.cvedetails.com/cve/CVE-2023-32629/

Local privilege escalation vulnerability in Ubuntu Kernels overlayfs ovl_copy_up_meta_inode_data skip permission checks when calling ovl_do_setxattr on Ubuntu kernels.

Vulnerable kernels

Kernel version	Ubuntu release
6.2.0	Ubuntu 23.04 (Lunar Lobster) / Ubuntu 22.04 LTS (Jammy Jellyfish)
5.19.0	Ubuntu 22.10 (Kinetic Kudu) / Ubuntu 22.04 LTS (Jammy Jellyfish)
5.4.0	Ubuntu 22.04 LTS (Local Fossa) / Ubuntu 18.04 LTS (Bionic Beaver)

Usage

Tested on kernels 5.19.0 and 6.2.0.

Just run the script in the low-priv shell.

   ./exploit.sh

Remember to type "exit" to finish the root shell and leave the house cleaned.

Example

License

Feel free to use or modify whenever and wherever you like.

Name		Name	Last commit message	Last commit date
Latest commit History 5 Commits
README.md		README.md
exploit.sh		exploit.sh

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Repository files navigation

GameOver(lay) Ubuntu Privilege Escalation

CVE-2023-2640

CVE-2023-32629

Vulnerable kernels

Usage

Example

License

About

Releases

Packages

Languages

g1vi/CVE-2023-2640-CVE-2023-32629

Folders and files

Latest commit

History

Repository files navigation

GameOver(lay) Ubuntu Privilege Escalation

CVE-2023-2640

CVE-2023-32629

Vulnerable kernels

Usage

Example

License

About

Resources

Stars

Watchers

Forks

Releases

Packages 0

Languages

Packages