28 Sandlock sandbox escape & exploit PoCs found in current main branch (from code audit)

[ansnapx]

Summary

A total of 28 vulnerabilities have been identified in the current main branch of Sandlock, all of which are sandbox escape and exploit PoCs discovered via code audit.

Details

• Vulnerabilities: 28
• Branch: current main branch
• Type: Sandlock sandbox escape & exploit PoCs
• Discovery method: code audit
• PoC script: qmd-sandlock.py
• Fix patch: sandlock-security-fixes.patch

Files

• qmd-sandlock.py
• sandlock-security-fixes.patch

[congwang-mk]

Hi @ansnapx . Thanks for the report. Since you already have a patch, please submit a PR, I will review it there.

[Changaco]

The PR was opened in the wrong repository (ansnapx/sandlock#1).

[congwang-mk]

Right, @ansnapx please submit your PR to this repo (instead of your clone). :)

[ansnapx]

@congwang-mk Cross-fork PR failed for unknown reasons. I've already uploaded sandlock-security-fixes.patch earlier, so please use that instead.