CVE-2022-0492: flaw in Linux Kernel cgroups feature allows container escape #2834
Labels
Comments
|
@miwithro Any ETA on this please? |
|
@saffiali it will be in all Azure regions by 3/25 |
|
Hello! It appears that the fix for CVE-2022-0492 missed it's original release in 5.4.0-1072 and was released in 1073.76: https://launchpad.net/ubuntu/+source/linux-azure-5.4/+changelog It is also pointing to 1073.76 in the CVE database (though, it was originally 1072): https://ubuntu.com/security/CVE-2022-0492 |
|
@justbert you are right. I updated our guidance. |
miwithro
added
the
resolution/answer-provided
|
Thanks for reaching out. I'm closing this issue as it was marked with "Answer Provided" and it hasn't had activity for 2 days. |
ghost
closed this as This issue was closed.
Sign up for free
to subscribe to this conversation on GitHub.
Already have an account?
Sign in.
It has been discovered that under certain circumstances, the Linux kernel’s cgroups v1 release_agent feature can be used to escalate privilege and bypass namespace isolation unexpectedly.
https://ubuntu.com/security/CVE-2022-0492
AKS Information:
Update your node image to 2022.03.29 to remediate this vulnerability.
The text was updated successfully, but these errors were encountered: