A vulnerability was found in the Linux kernel’s cgroupreleaseagentwrite in the kernel/cgroup/cgroup-v1.c function. This flaw, under certain circumstances, allows the use of the cgroups v1 releaseagent feature to escalate privileges and bypass the namespace isolation unexpectedly.
{ "vanir_signatures": [ { "target": { "file": "kernel/cgroup/cgroup-v1.c", "function": "cgroup1_parse_param" }, "digest": { "function_hash": "134548728680614534819933241881303355918", "length": 1850.0 }, "deprecated": false, "source": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git@24f6008564183aa120d07c03d9289519c2fe02af", "id": "CVE-2022-0492-42a4c947", "signature_version": "v1", "signature_type": "Function" }, { "target": { "file": "kernel/cgroup/cgroup-v1.c" }, "digest": { "threshold": 0.9, "line_hashes": [ "238254523702616850126560311509813294250", "157059274212838896000154803156815163899", "174300278333392147224303755150540873305", "141415503698213372879968326777367603779", "12997579405950647417830076297422745786", "162808277749719426819044582555901068058", "260927340299812238002653054130551779493" ] }, "deprecated": false, "source": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git@24f6008564183aa120d07c03d9289519c2fe02af", "id": "CVE-2022-0492-78a3c87b", "signature_version": "v1", "signature_type": "Line" }, { "target": { "file": "kernel/cgroup/cgroup-v1.c", "function": "cgroup_release_agent_write" }, "digest": { "function_hash": "112868412256739659133197325815908356257", "length": 485.0 }, "deprecated": false, "source": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git@24f6008564183aa120d07c03d9289519c2fe02af", "id": "CVE-2022-0492-fc0411e8", "signature_version": "v1", "signature_type": "Function" } ] }