Giters

google / security-research

This project hosts security advisories and their accompanying proof-of-concepts related to research conducted at Google which impact non-Google owned code.

Home Page:https://www.google.com/about/appsecurity/

Geek Repo:Geek Repo

Github PK Tool:Github PK Tool

How to build the reproducer from GHSA-mj4w-6495-6crx

casasnovas opened this issue · comments

commented

Hi Team,

Apologies I missed some obvious steps, but I couldn't find how to build the reproducer at:

GHSA-mj4w-6495-6crx

It seems to be missing some function definitions that I couldn't find in the repo, and I wasn't sure if that was on purpose, or if some files need to be included in order for others to play with the reproducer. e.g.:

$ gcc -o victim test.c -O0 -masm=intel -w                 -DVICTIM
test.c:10:10: fatal error: utils.h: No such file or directory
   10 | #include "utils.h"
      |          ^~~~~~~~~
compilation terminated.

Then trying to include another utils.h file from pocs/cpus/ret2aslr/src/utils.h, getting:

$ gcc -o victim test.c -O0 -masm=intel -w                 -DVICTIM
/usr/bin/ld: /tmp/cclLHZ8z.o: in function `poison':
test.c:(.text+0x215): undefined reference to `jitForLoop'
/usr/bin/ld: test.c:(.text+0x2aa): undefined reference to `rdmsr_on_cpu'
/usr/bin/ld: /tmp/cclLHZ8z.o: in function `main':
test.c:(.text+0x443): undefined reference to `SetCoreAffinity'
collect2: error: ld returned 1 exit status

Thanks in advance for your help!