https://mohandacherir.github.io/Qdiv7/tags/exploit/Recent content in Exploit on Moe's VR blogHugoenMon, 20 Apr 2026 00:00:00 +0000https://mohandacherir.github.io/Qdiv7/posts/cve-2026-31419/Wed, 15 Apr 2026 00:00:00 +0000https://mohandacherir.github.io/Qdiv7/posts/cve-2026-31419/<h2 id="introduction">Introduction</h2> <p>Linux offers a way to synchronize multiple network interfaces, physical or virtual, and make them run a single logical NIC. The bonding driver handles of all that work. It is present in all major distros and this bug is exploitable in the ones that allow usernamespaces for unprivileged users like in RedHat or Fedora; that is, it&rsquo;s reachable from any code path that can send packets out of the bonding device.</p>https://mohandacherir.github.io/Qdiv7/posts/io_uring_exploitation/Tue, 20 Jan 2026 00:00:00 +0000https://mohandacherir.github.io/Qdiv7/posts/io_uring_exploitation/<h2 id="introduction">Introduction</h2> <p><code>io_uring</code> is one of the most ambitious kernel interfaces added in recent years: a shared-memory asynchronous I/O engine designed to avoid the syscall-heavy overhead of traditional <code>read</code>, <code>write</code>, and networking paths. That performance-oriented design also makes it unusually interesting from a security perspective, because the subsystem is full of long-lived shared state, lifetime-sensitive objects, and fast paths that interact closely with core kernel memory-management code.</p>