Permissions, Privileges, and Access Controls in Linux kernel

#VU61245 Permissions, Privileges, and Access Controls in Linux kernel

Published: 2022-03-10 | Updated: 2022-08-28

Vulnerability identifier: #VU61245

Vulnerability risk: Low

CVSSv3.1:

CVE-ID: CVE-2022-0492

CWE-ID:

Exploitation vector: Local

Exploit availability:

Vulnerable software:
Linux kernel
Operating systems & Components / Operating system

Vendor:

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a logic error within the cgroup_release_agent_write() function in kernel/cgroup/cgroup-v1.c. A local user can use the cgroups v1 release_agent feature to escalate privileges and bypass the namespace isolation.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

External links
http://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=24f6008564183aa120d07c03d9289519c2fe02af
http://bugzilla.redhat.com/show_bug.cgi?id=2051505

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

Latest bulletins with this vulnerability

Multiple vulnerabilities in Oracle Communications Diameter Signaling Router

Multiple vulnerabilities in IBM QRadar SIEM

Multiple vulnerabilities in Junos Space

Multiple Linux kernel vulnerabilities in Hitachi Energy Lumada APM Edge

Multiple vulnerabilities in DELL Secure Connect Gateway Security

Multiple vulnerabilities in Red Hat Advanced Cluster Management 2.3

Red Hat Enterprise Linux 7.4 Advanced Update Support update for kernel

Multiple vulnerabilities in Google Pixel

Multiple vulnerabilities in IBM Netezza Host Management