Hacker NewsSep 3, 2025

Kernel-hack-drill and exploiting CVE-2024-50264 in the Linux kernel

https://a13xp0p0v.github.io/2025/09/02/kernel-hack-drill-and-CVE-2024-50264.html

#HackerNews #KernelHack #Drill #CVE2024 #LinuxKernel #Cybersecurity #Exploit

Kernel-hack-drill and a new approach to exploiting CVE-2024-50264 in the Linux kernel

Some memory corruption bugs are much harder to exploit than others. They can involve race conditions, crash the system, and impose limitations that make a researcher's life difficult. Working with such fragile vulnerabilities demands significant time and effort. CVE-2024-50264 in the Linux kernel is one such hard bug, which received the Pwnie Award 2025 as the Best Privilege Escalation. In this article, I introduce my personal project kernel-hack-drill and show how it helped me to exploit CVE-2024-50264.

Alexander Popov
Kevin Karhan Dec 19, 2023

@kubikpixel Und genau das kotzt mich so sehr an dass ich kein #Windows auch nur anfasse...

Dritthersteller #Antivirus ist bestenfalls #Scareware bzw. #DigitalSnakeoil wenn nicht sogar #Malware weil's nen #BinaryBlob - #KernelHack in Windows ist...

Fundamentale Sicherheit muss ab Werk rein und vorallem müssen #User*innen die 99,9% aller Probleme verursachen geschult werden...

Show threadKevin Karhan Feb 18, 2023

@DaemonFC
Espechally since 3rd Party AV on #Windows is always a malware-like #KernelHack and worsens #ITsec.

If one doesn't trust #WindowsDefender they should not use Windows at all - period!