ALAS-2017-868 — Vulnetix

ALAS-2017-868 PUBLISHED

Affected Products

Vendor	Product	Versions
Amazon	kernel

Exploit Intelligence

lexfo/cve-2017-11176 (github-poc-repo)
My first try to code my own LPE exploit. (github-poc-repo)
Escape from Docker using CVE-2017-1000112 and CVE-2017-18344, including gaining root privilage, get all capbilities, namespace recovery, filesystem recovery, cgroup limitation bypass and seccomp bypass. (github-poc-repo)
leonardo1101/cve-2017-11176 (github-poc-repo)
POE code for CVE-2017-1000112 adapted to both funtion on a specific VM and Escape a Docker (github-poc-repo)
Code execution for CVE-2017-11176 (github-poc-repo)
Exploit work Privilege Escalation CVE-2017-1000112 (github-poc-repo)
mq_notify: double sock_put() (github-poc-repo)
Yanoro/CVE-2017-11176 (github-poc-repo)
Spydomain/CVE-2017-1000112-PoC (github-poc-repo)

…and 13 more exploits

Timeline

Aug 10, 2017 CVE Published

References

ALAS-2017-868: kernel (critical) advisory

Open in Interactive Console →

$ Console Community · 100/wk Open console ›