#FlippingPages: An analysis of a new #Linux vulnerability in nf_tables and hardened exploitation techniques

https://pwning.tech/nftables/ – CVE-2024-1086

A tale about exploiting KernelCTF Mitigation, Debian, and Ubuntu instances with a double-free in nf_tables in the #Linuxkernel, using novel techniques like Dirty Pagedirectory. All without even having to recompile the exploit for different #kernel targets once.

Fix: https://kernel.dance/#f342de4e2f33e0e39165d8639387aa6c19dff660

Local privilege escalation POC: https://github.com/Notselwyn/CVE-2024-1086