Linux Kernel Security

[Cryptodev-linux] Page-level UAF exploitation

nasm_re posted an article about exploiting a page-level UAF in the out-of-tree cryptodev-linux driver. The researcher modified struct file sprayed into a freed page to escalate privileges.

https://nasm.re/posts/cryptodev-linux-vuln/

[Cryptodev-linux] Page-level UAF exploitation

IntroductionIn november 2025 I started a fuzzing campaign against cryptodev-linux as part of a school project. I found +10 bugs (UAF, NULL pointer dereferences and integer overflows) and among all of

nasm.re
Feb 5 at 2:24amWeb