CVE-2022-0492

Description from NVD

A vulnerability was found in the Linux kernel’s cgroup_release_agent_write in the kernel/cgroup/cgroup-v1.c function. This flaw, under certain circumstances, allows the use of the cgroups v1 release_agent feature to escalate privileges and bypass the namespace isolation unexpectedly.

Information Acquisition Date:2022-03-31T16:40Z
CVSS 2.0: 4.4 MEDIUM CVSS 3.x: 7.8 HIGH

▼ CVSS3 Vec CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

▼ CVSS2 Vec AV:L/AC:M/Au:N/C:P/I:P/A:P

NVD References

 https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=24f6008564183aa120d07c03d9289519c2fe02af
     source:MISC
     tags:Patch    Vendor Advisory    
 https://bugzilla.redhat.com/show_bug.cgi?id=2051505
     source:MISC
     tags:Issue Tracking    Patch    Third Party Advisory    
 [debian-lts-announce] 20220309 [SECURITY] [DLA 2941-1] linux-4.19 security update
     source:MLIST
     tags:Mailing List    Third Party Advisory    
 [debian-lts-announce] 20220309 [SECURITY] [DLA 2940-1] linux security update
     source:MLIST
     tags:Mailing List    Third Party Advisory    
 DSA-5096
     source:DEBIAN
     tags:Third Party Advisory    
 DSA-5095
     source:DEBIAN
     tags:Third Party Advisory    
 http://packetstormsecurity.com/files/166444/Kernel-Live-Patch-Security-Notice-LSN-0085-1.html
     source:MISC
     tags:

Refer to Information on External Sites

CVE InfomationExploits or more Infomation
mitreEXPLOIT DATABASE
NVD0day.today
vulmon.comgithub
CVE DetailsTwitter
JVN ENG JPN
Reconshell

Software Tag:

List of frequently cited URLs

URLNum of Times Referred to
https://alerts.vulmon.com/?utm_source=twitter&utm_medium=so...179
https://cvetrends.com48
http://cyberiqs.com/latestnews44
http://twinybots.ch33
https://thehackernews.com/2022/03/new-linux-kernel-cgroups-...6
https://news.ycombinator.com/item?id=305561886
https://pwning.systems/posts/escaping-containers-for-fun4
https://unit42.paloaltonetworks.jp/cve-2022-0492-cgroups4
https://bit.ly/36Trh3c3
https://ift.tt/DAQVbjK3
https://sysdig.com/blog/detecting-mitigating-cve-2021-0492-...3
https://opsmtrs.com/3fde7yI3
https://twitter.com/TheHackersNews/status/15000294998275727363
https://www.armosec.io/blog/privilege-escalation-vulnerabil...3
https://cloud.google.com/anthos/clusters/docs/on-prem/1.7/r...3
https://access.redhat.com/security/cve/cve-2022-04923
https://securityaffairs.co/wordpress/128742/security/cve-20...3
https://unit42.paloaltonetworks.com/cve-2022-0492-cgroups3

Information from Twitter

User URL Info Source Date
Programmatoris https://programmatic.solutions/ywfnib/container-escape-cve-... Source Programmatoris   1619907155645153283 2023/01/30
Prohacktiv3 https://github.com/followboy1999/CVE-2022-25365 Source Prohacktiv3      1627564125713797122 2023/02/20
Prohacktiv3 https://twitter.com/Prohacktiv3/status/1627564125713797122/... Source Prohacktiv3      1627564125713797122 2023/02/20

List of frequently cited URLs

URLNum of Times Referred to
alerts.vulmon.com179
cvetrends.com48
cyberiqs.com44
twinybots.ch33
thehackernews.com6
news.ycombinator.com6
pwning.systems4
unit42.paloaltonetworks.jp4
bit.ly3
ift.tt3
sysdig.com3
opsmtrs.com3
twitter.com3
www.armosec.io3
cloud.google.com3
access.redhat.com3
securityaffairs.co3
unit42.paloaltonetworks.com3

Information from Twitter

User URL Info Source
Programmatoris programmatic.solutions Show Tweet
Prohacktiv3 github.com Show Tweet
Prohacktiv3 twitter.com Show Tweet
GitHub Search Results: Up to 10
NameURL
PaloAltoNetworks/can-ctr-escape-cve-2022-0492 https://github.com/PaloAltoNetworks/can-ctr-escape-cve-2022-0492
SofianeHamlaoui/CVE-2022-0492-Checker https://github.com/SofianeHamlaoui/CVE-2022-0492-Checker
puckiestyle/CVE-2022-0492 https://github.com/puckiestyle/CVE-2022-0492
chenaotian/CVE-2022-0492 https://github.com/chenaotian/CVE-2022-0492
GitHub Search Results: Up to 10
NameURL
PaloAltoNetworks/can-ctr-escape-cve-2022-0492 github.com
SofianeHamlaoui/CVE-2022-0492-Checker github.com
puckiestyle/CVE-2022-0492 github.com
chenaotian/CVE-2022-0492 github.com
2023/02/20 Score : 0
Added Har-sia Database : 2022/02/05
Last Modified : 2023/02/20
Highest Scored Date : 2022/03/07
Highest Score : 71