This is a proof-of-concept exploit for the vulnerability in the usb-midi Linux kernel driver (CVE-2016-2384). Requires physical access to the machine. Check out the writeup and the demo video!
Timeline:
- 13 Feb 2016: the issue reported to security@kernel.org
- 13 Feb 2016: the fix is upstream
- 14 Feb 2016: a CVE id is assigned
- 22 Feb 2016: a writeup is published