Linux kernel vulnerabilities
Studie zranitelností Linuxového jádra
Authors
Supervisors
Reviewers
Editors
Other contributors
Journal Title
Journal ISSN
Volume Title
Publisher
České vysoké učení technické v Praze
Czech Technical University in Prague
Czech Technical University in Prague
Date
Abstract
Práce se zabývá zranitelností CVE-2019-9213 související s chybou \mbox{v pa}\-mě\-ťo\-vém substému operačního systému Linux. Umožnuje namapování virtuální adresy 0. Zranitelnost je včetně dvou dalších (Mutagen Astronomy a Dirty COW) analyzovaná a je navržen útok za účelem eskalace oprávnění na danou zranitelnost. Na adresu 0 je nahrán škodlivý kód a spuštěn v privilegovaném režimu. Útok je úspěšný, nic\-méně jsou vypnuté některé systémové ochrany
This thesis focuses on Linux kernel vulnerability CVE-2019-9213, which relates with a bug on Memory Management subsystem on Linux operating system. It allows mapping of vitual address 0. This vulnerability with Mutagen Astronomy and Dirty COW are analyzed and an attack is design in order to gain privilege escalation. On address 0 is stored a malicious code and is run in privileged mode. The attack is successfull however some system's protections are disabled.
This thesis focuses on Linux kernel vulnerability CVE-2019-9213, which relates with a bug on Memory Management subsystem on Linux operating system. It allows mapping of vitual address 0. This vulnerability with Mutagen Astronomy and Dirty COW are analyzed and an attack is design in order to gain privilege escalation. On address 0 is stored a malicious code and is run in privileged mode. The attack is successfull however some system's protections are disabled.