Skip to content

lntrx/CVE-2021-28663

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

15 Commits
ss
ss
 
 
README.md
README.md
 
 
compile.sh
compile.sh
 
 
mali.h
mali.h
 
 
mali_poc.c
mali_poc.c
 
 
mali_poc_64
mali_poc_64
 
 

Repository files navigation

CVE-2021-28663

A basic PoC leak for CVE-2021-28663 (Internal of the Android kernel backdoor vulnerability)

This is a basic PoC for CVE-2021-28663. A design flaw in Mali GPU Android Kernel Driver.

  1. Create a GPU_VA and also mmap to it so we can get virtual addr for phys pages.
  2. Create an alias for phy pages, but don't do mmap so gpu_mapping remains as 1
  3. Change flags of GPU_VA to BASE_MEM_DONT_NEED. Mali will make them evictable
  4. Since we have reg for aliased page, now we can mmap to it. This will give us RDONLY access from CPU

Example run:

Example run CVE-2021-28663

Example run CVE-2021-28663

Example run CVE-2021-28663

About

A basic PoC leak for CVE-2021-28663 (Internal of the Android kernel backdoor vulnerability)

Resources

Readme
Activity

Stars

123 stars

Watchers

3 watching

Forks

28 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages