CVEs-PoC/2020/CVE-2020-10757.md

### [CVE-2020-10757](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10757)
![](https://img.shields.io/static/v1?label=Product&message=Kernel&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=%3D%20All%20versions%20after%204.5-rc1.%20&color=brighgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=Improper%20Restriction%20of%20Operations%20within%20the%20Bounds%20of%20a%20Memory%20Buffer.&color=brighgreen)

### Description

A flaw was found in the Linux Kernel in versions after 4.5-rc1 in the way mremap handled DAX Huge Pages. This flaw allows a local attacker with access to a DAX enabled storage to escalate their privileges on the system.

### POC

#### Reference
- https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=5bfea2d9b17f1034a68147a8b03b9789af5700f9
- https://usn.ubuntu.com/4426-1/

#### Github
- https://github.com/ShaikUsaf/linux-4.19.72_CVE-2020-10757
- https://github.com/nomi-sec/PoC-in-GitHub