Embed Notice

HTML Code

<blockquote style="position: relative; padding-left: 55px;"><section><a href="https://fosstodon.org/users/kees/statuses/112139933633964023">Kees Cook :tux: (kees@fosstodon.org)'s status on Wednesday, 27-Mar-2024 03:31:04 JST</a><a href="https://fosstodon.org/@kees" title="kees@fosstodon.org"><img src="https://gnusocial.jp/avatar/107149-48-20230725231521.webp" width="48" height="48" alt="Kees Cook :tux:" style="position: absolute; left: 0; top: 0;">Kees Cook :tux:</a></section><article><p>I've seen many Linux offensive security presentations and research include caveats like, "first turn off ASLR", or other stuff where the written exploit doesn't actually work with modern default systems. Here the excellent article includes details on _enabling_ additional non-default defenses. 😍</p><p>Man Yue Mo: Gaining kernel code execution on an MTE-enabled Pixel 8<br><a href="https://github.blog/2024-03-18-gaining-kernel-code-execution-on-an-mte-enabled-pixel-8/" rel="nofollow noreferrer">https://github.blog/2024-03-18-gaining-kernel-code-execution-on-an-mte-enabled-pixel-8/</a></p></article><footer><a rel="bookmark" href="https://gnusocial.jp/conversation/2867403#notice-5695896">In conversation</a><time datetime="2024-03-27T03:31:04+09:00" title="Wednesday, 27-Mar-2024 03:31:04 JST">about a year ago</time> <span>from <span><a href="https://fosstodon.org/@kees/112139933633964023" rel="external" title="Sent from fosstodon.org via ActivityPub">fosstodon.org</a></span></span><a href="https://fosstodon.org/@kees/112139933633964023">permalink</a><h4>Attachments</h4><ol><li><article><header><div>Domain not in remote thumbnail source whitelist: github.blog</div><h5><a href="https://github.blog/2024-03-18-gaining-kernel-code-execution-on-an-mte-enabled-pixel-8/">Gaining kernel code execution on an MTE-enabled Pixel 8</a></h5><div> from <span>Man Yue Mo</span></div></header><div>In this post, I’ll look at CVE-2023-6241, a vulnerability in the Arm Mali GPU that allows a malicious app to gain arbitrary kernel code execution and root on an Android phone. I’ll show how this vulnerability can be exploited even when Memory Tagging Extension (MTE), a powerful mitigation, is enabled on the device.</div><footer></footer></article></li></ol></footer></blockquote>

Corresponding Notice

Embed this notice
Kees Cook :tux: (kees@fosstodon.org)'s status on Wednesday, 27-Mar-2024 03:31:04 JST Kees Cook :tux:
I've seen many Linux offensive security presentations and research include caveats like, "first turn off ASLR", or other stuff where the written exploit doesn't actually work with modern default systems. Here the excellent article includes details on _enabling_ additional non-default defenses. 😍
Man Yue Mo: Gaining kernel code execution on an MTE-enabled Pixel 8
https://github.blog/2024-03-18-gaining-kernel-code-execution-on-an-mte-enabled-pixel-8/
In conversationabout a year ago from fosstodon.orgpermalink
Attachments
1. Domain not in remote thumbnail source whitelist: github.blog
  Gaining kernel code execution on an MTE-enabled Pixel 8
  from Man Yue Mo
  In this post, I’ll look at CVE-2023-6241, a vulnerability in the Arm Mali GPU that allows a malicious app to gain arbitrary kernel code execution and root on an Android phone. I’ll show how this vulnerability can be exploited even when Memory Tagging Extension (MTE), a powerful mitigation, is enabled on the device.

Public

Embed Notice

HTML Code

Corresponding Notice