CVE-2022-0492
First published: Mon Feb 07 2022(Updated: )
A vulnerability was found in cgroup_release_agent_write in kernel/cgroup/cgroup-v1.c in the Linux kernel. In this flaw, under certain circumstances, the cgroups v1 release_agent feature can be used to escalate privilege and bypass namespace isolation unexpectedly. Upstream Commit: <a href="https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=24f6008564183aa120d07c03d9289519c2fe02af">https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=24f6008564183aa120d07c03d9289519c2fe02af</a>
Credit: secalert@redhat.com secalert@redhat.com secalert@redhat.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| redhat/kernel | <0:2.6.32-754.47.1.el6 | 0:2.6.32-754.47.1.el6 |
| redhat/kernel-rt | <0:3.10.0-1160.66.1.rt56.1207.el7 | 0:3.10.0-1160.66.1.rt56.1207.el7 |
| redhat/kernel | <0:3.10.0-1160.66.1.el7 | 0:3.10.0-1160.66.1.el7 |
| redhat/kernel | <0:3.10.0-514.101.1.el7 | 0:3.10.0-514.101.1.el7 |
| redhat/kernel | <0:3.10.0-693.103.1.el7 | 0:3.10.0-693.103.1.el7 |
| redhat/kernel | <0:3.10.0-957.94.1.el7 | 0:3.10.0-957.94.1.el7 |
| redhat/kernel | <0:3.10.0-1062.67.1.el7 | 0:3.10.0-1062.67.1.el7 |
| redhat/kernel-rt | <0:4.18.0-348.20.1.rt7.150.el8_5 | 0:4.18.0-348.20.1.rt7.150.el8_5 |
| redhat/kernel | <0:4.18.0-348.20.1.el8_5 | 0:4.18.0-348.20.1.el8_5 |
| redhat/kernel | <0:4.18.0-147.64.1.el8_1 | 0:4.18.0-147.64.1.el8_1 |
| redhat/kernel-rt | <0:4.18.0-193.79.1.rt13.129.el8_2 | 0:4.18.0-193.79.1.rt13.129.el8_2 |
| redhat/kernel | <0:4.18.0-193.79.1.el8_2 | 0:4.18.0-193.79.1.el8_2 |
| redhat/kernel-rt | <0:4.18.0-305.45.1.rt7.117.el8_4 | 0:4.18.0-305.45.1.rt7.117.el8_4 |
| redhat/kernel | <0:4.18.0-305.45.1.el8_4 | 0:4.18.0-305.45.1.el8_4 |
| redhat/kernel | <5.17 | 5.17 |
| debian/linux | 5.10.223-1 5.10.234-1 6.1.123-1 6.1.128-1 6.12.12-1 6.12.16-1 | |
| Linux Kernel | >=2.6.24<4.9.301 | |
| Linux Kernel | >=4.10<4.14.266 | |
| Linux Kernel | >=4.15<4.19.229 | |
| Linux Kernel | >=4.20<5.4.177 | |
| Linux Kernel | >=5.5<5.10.97 | |
| Linux Kernel | >=5.11<5.15.20 | |
| Linux Kernel | >=5.16<5.16.6 | |
| Linux Kernel | =5.17-rc1 | |
| Linux Kernel | =5.17-rc2 | |
| Debian | =9.0 | |
| Debian | =10.0 | |
| Debian | =11.0 | |
| Red Hat CodeReady Linux Builder | =8.0 | |
| Red Hat CodeReady Linux Builder | =8.2 | |
| Red Hat CodeReady Linux Builder for Power, little endian | =8.0 | |
| Red Hat CodeReady Linux Builder for Power, little endian | =8.2 | |
| Red Hat Virtualization Host EUS | =4.0 | |
| Red Hat Enterprise Linux | =8.0 | |
| Red Hat Enterprise Linux Server EUS | =8.2 | |
| Red Hat Enterprise Linux for IBM Z Systems | =8.0 | |
| Red Hat Enterprise Linux for IBM Z Systems (s390x) | =8.0 | |
| Red Hat Enterprise Linux for Power, little endian | =8.0 | |
| Red Hat Enterprise Linux for Power, little endian - Extended Update Support | =8.0 | |
| Red Hat Enterprise Linux for Real Time for NFV | =8.0 | |
| Red Hat Enterprise Linux for Real Time for NFV | =8.2 | |
| Red Hat Enterprise Linux for Real Time | =8.0 | |
| Red Hat Enterprise Linux for Real Time | =8.2 | |
| Red Hat Enterprise Linux Server | =8.2 | |
| Red Hat Enterprise Linux for SAP Applications for Power, little endian - Extended Update Support | =8.1 | |
| Red Hat Enterprise Linux for SAP Applications for Power, little endian - Extended Update Support | =8.2 | |
| Red Hat Enterprise Linux Server | =8.2 | |
| Red Hat Enterprise Linux Server Update Services for SAP Solutions | =8.1 | |
| Red Hat Enterprise Linux Server Update Services for SAP Solutions | =8.2 | |
| Ubuntu | =14.04 | |
| Ubuntu | =16.04 | |
| Ubuntu | =18.04 | |
| Ubuntu | =20.04 | |
| Ubuntu | =22.04 | |
| Fedora | =35 | |
| NetApp SolidFire Enterprise SDS | ||
| NetApp SolidFire & HCI Management Node | ||
| NetApp H300E Firmware | ||
| NetApp H300S Firmware | ||
| NetApp H410C Firmware | ||
| NetApp H410S Firmware | ||
| NetApp H500e Firmware | ||
| NetApp H500e Firmware | ||
| NetApp H700E | ||
| NetApp H700S | ||
| NetApp HCI Compute Node | ||
| NetApp Baseboard Management Controller H300E | ||
| NetApp Baseboard Management Controller H300S | ||
| NetApp Baseboard Management Controller H410C Firmware | ||
| NetApp Baseboard Management Controller H410S | ||
| NetApp Baseboard Management Controller H500E Firmware | ||
| NetApp Baseboard Management Controller H500S | ||
| NetApp Baseboard Management Controller H700E Firmware | ||
| NetApp Baseboard Management Controller H700S |
Remedy
Mitigation for this issue is either not available or the currently available options don't meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://www.cve.org/CVERecord?id=CVE-2022-0492 https://nvd.nist.gov/vuln/detail/CVE-2022-0492 https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=24f6008564183aa120d07c03d9289519c2fe02af
- https://bugzilla.redhat.com/show_bug.cgi?id=2051505
- https://access.redhat.com/errata/RHSA-2022:1417
- https://access.redhat.com/errata/RHSA-2022:4644
- https://access.redhat.com/errata/RHSA-2022:4642
- https://access.redhat.com/errata/RHSA-2022:4655
- https://access.redhat.com/errata/RHSA-2022:2189
- https://access.redhat.com/errata/RHSA-2022:5157
- https://access.redhat.com/errata/RHSA-2022:2186
- https://access.redhat.com/errata/RHSA-2022:2211
- https://access.redhat.com/errata/RHSA-2022:4717
- https://access.redhat.com/errata/RHSA-2022:4721
- https://access.redhat.com/errata/RHSA-2022:0819
- https://access.redhat.com/errata/RHSA-2022:0825
- https://access.redhat.com/errata/RHSA-2022:0849
- https://access.redhat.com/errata/RHSA-2022:0823
- https://access.redhat.com/errata/RHSA-2022:0851
- https://access.redhat.com/errata/RHSA-2022:0958
- https://access.redhat.com/errata/RHSA-2022:0821
- https://access.redhat.com/errata/RHSA-2022:0820
- https://access.redhat.com/errata/RHSA-2022:0925
- https://access.redhat.com/errata/RHSA-2022:1413
- https://access.redhat.com/errata/RHSA-2022:1418
- https://access.redhat.com/errata/RHSA-2022:1455
- https://access.redhat.com/security/cve/cve-2022-0492
- https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=24f6008564183aa120d07c03d9289519c2fe02af
- https://www.debian.org/security/2022/dsa-5095
- https://www.debian.org/security/2022/dsa-5096
- https://lists.debian.org/debian-lts-announce/2022/03/msg00011.html
- https://lists.debian.org/debian-lts-announce/2022/03/msg00012.html
- http://packetstormsecurity.com/files/166444/Kernel-Live-Patch-Security-Notice-LSN-0085-1.html
- https://security.netapp.com/advisory/ntap-20220419-0002/
- http://packetstormsecurity.com/files/167386/Kernel-Live-Patch-Security-Notice-LSN-0086-1.html
- http://packetstormsecurity.com/files/176099/Docker-cgroups-Container-Escape.html
- https://launchpad.net/bugs/cve/CVE-2022-0492
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=2051506
- https://access.redhat.com/security/cve/CVE-2022-0492
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0492
- https://nvd.nist.gov/vuln/detail/CVE-2022-0492
- https://security-tracker.debian.org/tracker/CVE-2022-0492
- https://ubuntu.com/security/CVE-2022-0492
- https://www.openwall.com/lists/oss-security/2022/02/04/1
- https://git.kernel.org/linus/24f6008564183aa120d07c03d9289519c2fe02af
Parent vulnerabilities
(Appears in the following advisories)
- RHSA-2022:1417
- RHSA-2022:4644
- RHSA-2022:4642
- RHSA-2022:4655
- RHSA-2022:2189
- RHSA-2022:5157
- RHSA-2022:2186
- RHSA-2022:2211
- RHSA-2022:4717
- RHSA-2022:4721
- RHSA-2022:0819
- RHSA-2022:0825
- RHSA-2022:0849
- RHSA-2022:0823
- RHSA-2022:0851
- RHSA-2022:0958
- RHSA-2022:0821
- RHSA-2022:0820
- RHSA-2022:0925
- RHSA-2022:1413
- RHSA-2022:1418
- RHSA-2022:1455
Frequently Asked Questions
What is the severity of CVE-2022-0492?
CVE-2022-0492 has a high severity rating due to its potential to escalate privileges and bypass namespace isolation.
How do I fix CVE-2022-0492?
To fix CVE-2022-0492, update to the latest version of the Linux kernel as specified in Red Hat's errata.
Which versions of the Linux kernel are affected by CVE-2022-0492?
CVE-2022-0492 affects various versions of the Linux kernel, including 2.6.32 and all versions up to 5.17.
Is CVE-2022-0492 a remote exploit?
CVE-2022-0492 is not classified as a remote exploit; it requires local access to exploit the vulnerability.
What types of systems are vulnerable to CVE-2022-0492?
CVE-2022-0492 affects systems running affected versions of the Linux kernel, including various distributions like Red Hat and Debian.
- collector/redhat-cve
- agent/type
- collector/launchpad-cve
- source/Launchpad
- agent/first-publish-date
- agent/weakness
- agent/author
- agent/severity
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2022-0492
- agent/software-canonical-lookup
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/references
- agent/remedy
- agent/trending
- agent/source
- collector/usn-cve
- source/Ubuntu
- agent/description
- agent/softwarecombine
- agent/tags
- agent/event
- collector/security-tracker-debian
- source/Debian
- collector/nvd-cve
- source/NVD
- agent/software-canonical-lookup-request
- collector/nvd-api
- collector/nvd-index
- package-manager/redhat
- package-manager/debian
- vendor/linux
- canonical/linux kernel
- version/linux kernel/2.6.24
- version/linux kernel/4.10
- version/linux kernel/4.15
- version/linux kernel/4.20
- version/linux kernel/5.5
- version/linux kernel/5.11
- version/linux kernel/5.16
- version/linux kernel/5.17-rc1
- version/linux kernel/5.17-rc2
- vendor/debian
- canonical/debian
- version/debian/9.0
- version/debian/10.0
- version/debian/11.0
- vendor/redhat
- canonical/red hat codeready linux builder
- version/red hat codeready linux builder/8.0
- version/red hat codeready linux builder/8.2
- canonical/red hat codeready linux builder for power, little endian
- version/red hat codeready linux builder for power, little endian/8.0
- version/red hat codeready linux builder for power, little endian/8.2
- canonical/red hat virtualization host eus
- version/red hat virtualization host eus/4.0
- canonical/red hat enterprise linux
- version/red hat enterprise linux/8.0
- canonical/red hat enterprise linux server eus
- version/red hat enterprise linux server eus/8.2
- canonical/red hat enterprise linux for ibm z systems
- version/red hat enterprise linux for ibm z systems/8.0
- canonical/red hat enterprise linux for ibm z systems (s390x)
- version/red hat enterprise linux for ibm z systems (s390x)/8.0
- canonical/red hat enterprise linux for power, little endian
- version/red hat enterprise linux for power, little endian/8.0
- canonical/red hat enterprise linux for power, little endian - extended update support
- version/red hat enterprise linux for power, little endian - extended update support/8.0
- canonical/red hat enterprise linux for real time for nfv
- version/red hat enterprise linux for real time for nfv/8.0
- version/red hat enterprise linux for real time for nfv/8.2
- canonical/red hat enterprise linux for real time
- version/red hat enterprise linux for real time/8.0
- version/red hat enterprise linux for real time/8.2
- canonical/red hat enterprise linux server
- version/red hat enterprise linux server/8.2
- canonical/red hat enterprise linux for sap applications for power, little endian - extended update support
- version/red hat enterprise linux for sap applications for power, little endian - extended update support/8.1
- version/red hat enterprise linux for sap applications for power, little endian - extended update support/8.2
- canonical/red hat enterprise linux server update services for sap solutions
- version/red hat enterprise linux server update services for sap solutions/8.1
- version/red hat enterprise linux server update services for sap solutions/8.2
- vendor/canonical
- canonical/ubuntu
- version/ubuntu/14.04
- version/ubuntu/16.04
- version/ubuntu/18.04
- version/ubuntu/20.04
- version/ubuntu/22.04
- vendor/fedoraproject
- canonical/fedora
- version/fedora/35
- vendor/netapp
- canonical/netapp solidfire enterprise sds
- canonical/netapp solidfire & hci management node
- canonical/netapp h300e firmware
- canonical/netapp h300s firmware
- canonical/netapp h410c firmware
- canonical/netapp h410s firmware
- canonical/netapp h500e firmware
- canonical/netapp h700e
- canonical/netapp h700s
- canonical/netapp hci compute node
- canonical/netapp baseboard management controller h300e
- canonical/netapp baseboard management controller h300s
- canonical/netapp baseboard management controller h410c firmware
- canonical/netapp baseboard management controller h410s
- canonical/netapp baseboard management controller h500e firmware
- canonical/netapp baseboard management controller h500s
- canonical/netapp baseboard management controller h700e firmware
- canonical/netapp baseboard management controller h700s