DF-0011 / run.sh
#!/bin/sh # DF-0011 PoC run. Run as an UNPRIVILEGED user. # EXPECTED TO PANIC THE KERNEL (local DoS). On a patched kernel (NULL check # after sbcreatecontrol) the trigger send returns ENOBUFS instead and the # program prints "no panic". Capture the panic on the serial console. cd "$(dirname "$0")" ./nopasscred_panic |