vulnerability
Oracle Linux: CVE-2022-0492: ELSA-2022-9180: Unbreakable Enterprise kernel-container security update (IMPORTANT) (Multiple Advisories)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 6 | (AV:L/AC:H/Au:S/C:C/I:C/A:C) | Feb 7, 2022 | Feb 9, 2022 | Jan 23, 2025 |
Severity
6
CVSS
(AV:L/AC:H/Au:S/C:C/I:C/A:C)
Published
Feb 7, 2022
Added
Feb 9, 2022
Modified
Jan 23, 2025
Description
A vulnerability was found in the Linux kernel’s cgroup_release_agent_write in the kernel/cgroup/cgroup-v1.c function. This flaw, under certain circumstances, allows the use of the cgroups v1 release_agent feature to escalate privileges and bypass the namespace isolation unexpectedly.
Solution(s)
oracle-linux-upgrade-kerneloracle-linux-upgrade-kernel-uek
References
- CVE-2022-0492
- https://attackerkb.com/topics/CVE-2022-0492
- ELSA-ELSA-2022-9180
- ELSA-ELSA-2022-9244
- ELSA-ELSA-2022-0825
- ELSA-ELSA-2022-9667
- ELSA-ELSA-2022-9142
- ELSA-ELSA-2022-9781
- ELSA-ELSA-2022-9141
- ELSA-ELSA-2022-9314
- ELSA-ELSA-2022-9245
- ELSA-ELSA-2022-9148
- ELSA-ELSA-2022-4642
- ELSA-ELSA-2022-9313
- ELSA-ELSA-2022-9179
- ELSA-ELSA-2022-9147
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.