CVE-2018-5333

This PoC demonstrates a NULL pointer dereference vulnerability in the Linux kernel's RDS socket implementation (CVE-2018-5333). It exploits improper handling of ancillary data in the `rds_cmsg_atomic` function, leading to a crash when `rds_atomic_free_op` is called on an uninitialized scatterlist.

This Metasploit module exploits a NULL pointer dereference in the `rds_atomic_free_op` function in the Linux kernel's RDS module (CVE-2018-5333) to achieve local privilege escalation. It combines this with a MAP_GROWSDOWN mmap_min_addr bypass (CVE-2019-9213) and includes KASLR/SMEP bypasses.