Tag
dirty-pipe
Safeguard articles tagged "dirty-pipe" — guides, analysis, and best practices for software supply chain and application security.
3 articles
Vulnerability Analysis
Dirty Pipe (CVE-2022-0847) Explained: Overwriting Read-Only Files in the Linux Kernel
CVE-2022-0847, Dirty Pipe, let unprivileged users overwrite data in read-only files through an uninitialized pipe flag — a clean path to root. Here is the page-cache mechanism behind it.
Jul 6, 20265 min read
Vulnerability Analysis
Dirty Pipe Linux kernel arbitrary write (CVE-2022-0847)
Dirty Pipe (CVE-2022-0847) lets local attackers overwrite read-only files via a pipe buffer flaw, enabling fast, reliable root escalation on Linux and Android.
Jan 10, 20268 min read
Vulnerability Analysis
Dirty Pipe (CVE-2022-0847): A Deep Dive into the Linux Kernel Vulnerability
Dirty Pipe allowed any local user to overwrite data in read-only files, including SUID binaries, leading to trivial root escalation. The bug was elegant, dangerous, and surprisingly recent.
Mar 7, 20225 min read