• Source: SLUBStick

SLUBStick is a Linux kernel exploit technique. It can allow an attacker to elevate a limited heap vulnerability to an arbitrary memory read/write access. This can be leveraged for privilege escalation and container escapes, even with modern defences enabled.




Discovery


SLUBStick was discovered by Lukas Maar, Stefan Gast, Martin Unterguggenberger, Mathias Oberhuber, and Stefan Mangard, Graz University of Technology, and first presented at USENIX 2024 symposium.




Vulnerable platforms


The technique is demonstrated on Linux kernel versions 5.19 and 6.2 on the x86_64 and x86 platform, but is assumed to be possible in all Linux versions on those platforms. Also Linux kernels running on virtual machines on those platforms are considered vulnerable.




Further reading


SLUBStick demonstration code
Anatomy of the SLUBStick technique
SLUBStick explained




References

Kata Kunci Pencarian:

• SLUBStick
• Fur Affinity
• List of security hacking incidents
• Emotet
• Timeline of computing 2020–present
• JBS S.A. ransomware attack
• Account pre-hijacking