Add PoC for CVE 2023-2163 (#33)

* Add PoC for CVE 2023-2163 * correct readme title and add the poc to the main readme poc section * add the poc to the main readme poc section * add the poc in the correct order * correct twitter handle notation --------- Co-authored-by: Juan José López Jaimez <[email protected]>
google · Jul 20, 2023 · bcc96ac · bcc96ac
1 parent ad6697c
commit bcc96ac
Show file tree

Hide file tree

Showing 9 changed files with 1,590 additions and 0 deletions.
diff --git a/README.md b/README.md
@@ -29,6 +29,7 @@ security vulnerabilities.
 
 | Year | Title | Advisories | Links |
 | ---- | ----- | ---------- | ----- |
+| 2023 | Linux: eBPF Path Pruning gone wrong | [CVE-2023-2163](https://github.com/google/security-research/security/advisories/GHSA-j87x-j6mh-mv8v) | [PoC](pocs/linux/cve-2023-2163)
 | 2023 | XGETBV is non-deterministic on Intel CPUs | | [PoC](pocs/cpus/xgetbv)
 | 2023 | XSAVES Instruction May Fail to Save XMM Registers | | [PoC](pocs/cpus/errata/amd/1386)
 | 2022 | RET2ASLR - Leaking ASLR from return instructions | | [PoC](pocs/cpus/ret2aslr/src)

diff --git a/pocs/linux/cve-2023-2163/Makefile b/pocs/linux/cve-2023-2163/Makefile
@@ -0,0 +1,2 @@
+all:
+	gcc -static -o exploit -I include/ exploit_prims.c exploit.c kernel_helpers.c