CDK v1.0.6

💣 Awesome CVE-2022-0492 Exploit!

Release Date: 2022-03-10

📜 Changelog

💣 Exploits

• Chore(exp & release): build mount cgroup only in linux
• Fix(exp): unprivileged_userns_clone sysctl file do not exist in CentOS
• Feat(exploit/abuse-unpriv-userns): exploit of CVE-2022-0492 (#41)
• Feat(exp/mount_cgroup.go): completely fix #35 in golang-style
• Fix #38 (exp): shim-pwn protobuf panic after run exploit

🔍 About Evaluate

• Feat(caps): find out add caps

✨ Others

• Chore(cli): add version info & commit id for debug

🔑 Hash Table

SHA256	EXECTUE FILE
b5fb2c18b9720d0bfc5f0d25a9922b6f0b88230e1005664885391ef140d7d489	cdk_darwin_amd64
371226668baa95b330676a6268145ad25bfc28f59710f35fc1888aa6b70a74a4	cdk_linux_386
0bb79f2fe4c5f6d451822a26cff27b172270bce29d7430e01bebe904cde0c215	cdk_linux_386_thin
fa7433173643095d5266fd465f88de45d6d157d72dc5915ab1334c03af63b4ba	cdk_linux_386_thin_upx
0976936c3c02be348ea926ce86c7204c7e9e59a092477e924c1a1d5bd97cfced	cdk_linux_386_upx
eae7c7548d28517d099afef1bc7664f098bfa3c533ee5a0cf763ab28480ebeeb	cdk_linux_amd64
ebab27736848eb90409384d231b939702ce97482cc231aba7d0acf58e02db438	cdk_linux_amd64_thin
72f7e33c5313aa5ab15b99778b1f3c4d50d4710b171a635994d0d01e47e8173b	cdk_linux_amd64_thin_upx
d697ea397da7603417baaf232512864bd8ecedde47dd199c2d32f653619f0f3b	cdk_linux_amd64_upx
cdf9041ba0603c7d7452a2866eee0eaa115ad5d8488d92c1c388c36d321301b1	cdk_linux_arm
4f52fb4cf7dd744b01695e5356442182bc9fdb635da8f766537c12e0d83ad18f	cdk_linux_arm64
68080b2cbfd4488f96e0c315ea7e8bf6204de010a05eeb2da621f78caa7254b9	cdk_linux_arm64_thin

PR

• Implement mount-cgroup in Golang style by kmahyyg in #40
• feat(exploit/abuse_unpriv_userns.go): exploit of CVE-2022-0492 by kmahyyg in #41

New Contributors

• @kmahyyg made their first contribution in #40