diff options
author | Salvatore Bonaccorso <carnil@debian.org> | 2022-03-08 16:34:52 +0100 |
---|---|---|
committer | Salvatore Bonaccorso <carnil@debian.org> | 2022-03-08 16:34:52 +0100 |
commit | 85c256172533fd06dfb1cfc015bf5d0ef188095f (patch) | |
tree | 3e589174c2331813da726ce53efd22abe71b33f4 /dsa-texts | |
parent | 6f241ec644850170857b44b8e05918cff7772629 (diff) |
Add description for CVE-2022-0492
Diffstat (limited to 'dsa-texts')
-rw-r--r-- | dsa-texts/4.19.232-1 | 5 | ||||
-rw-r--r-- | dsa-texts/4.9.303-1 | 5 | ||||
-rw-r--r-- | dsa-texts/5.10.103-1 | 5 |
3 files changed, 12 insertions, 3 deletions
diff --git a/dsa-texts/4.19.232-1 b/dsa-texts/4.19.232-1 index ac233342e..22984e9b7 100644 --- a/dsa-texts/4.19.232-1 +++ b/dsa-texts/4.19.232-1 @@ -241,7 +241,10 @@ CVE-2022-0487 CVE-2022-0492 - Description + Yiqi Sun and Kevin Wang reported that the cgroup-v1 subsystem does + not properly restrict access to the release-agent feature. A local + user can take advantage of this flaw for privilege escalation and + bypass of namespace isolation. CVE-2022-0617 diff --git a/dsa-texts/4.9.303-1 b/dsa-texts/4.9.303-1 index fec4e0152..77c5ffbbb 100644 --- a/dsa-texts/4.9.303-1 +++ b/dsa-texts/4.9.303-1 @@ -122,7 +122,10 @@ CVE-2022-0487 CVE-2022-0492 - Description + Yiqi Sun and Kevin Wang reported that the cgroup-v1 subsystem does + not properly restrict access to the release-agent feature. A local + user can take advantage of this flaw for privilege escalation and + bypass of namespace isolation. CVE-2022-0617 diff --git a/dsa-texts/5.10.103-1 b/dsa-texts/5.10.103-1 index eb12a541b..d378a7d11 100644 --- a/dsa-texts/5.10.103-1 +++ b/dsa-texts/5.10.103-1 @@ -35,7 +35,10 @@ CVE-2022-0487 CVE-2022-0492 - Description + Yiqi Sun and Kevin Wang reported that the cgroup-v1 subsystem does + not properly restrict access to the release-agent feature. A local + user can take advantage of this flaw for privilege escalation and + bypass of namespace isolation. CVE-2022-0617 |