安全公告详情

NS-SA-2022-0004

2022-05-07 16:06:16

简介

important: kernel security update

严重级别

important

主题

An update for kernel is now available for NewStart CGSL MAIN 4.05.
NewStart Security has rated this update as having a security impact of important. A Common Vunlnerability Scoring System(CVSS)base score, which gives a detailed severity rating, is available for each vulnerability from the CVElink(s) in the References section.

详细描述

kernel: Kernel-headers includes the C header files that specify the interface between the Linux kernel and userspace libraries and programs. The header files define structures and constants that are needed for building most standard programs and are also needed for rebuilding the glibc package.


Security Fix(es):
kernel: A vulnerability was found in the Linux kernel’s cgroup_release_agent_write in the kernel/cgroup/cgroup-v1.c function. This flaw, under certain circumstances, allows the use of the cgroups v1 release_agent feature to escalate privileges and bypass the namespace isolation unexpectedly.(CVE-2022-0492)
kernel: bugfix


Solution:
For details on how to apply this update, which includes the changes described in this advisory, refer to:
http://security.gd-linux.com/how_to_apply_patch.html
Remember the build tag is 4.05.F19CP4B1.

影响组件

  • kernel

影响产品

  • CGSL MAIN 4.05

更新包

{"fix":[{"product":"CGSL MAIN 4.05","pkgs":[{"binary":["kernel-2.6.32-642.13.1.el6.cgslv4_5.0.181.gd10df9b.x86_64.rpm","perf-debuginfo-2.6.32-642.13.1.el6.cgslv4_5.0.181.gd10df9b.x86_64.rpm","kernel-devel-2.6.32-642.13.1.el6.cgslv4_5.0.181.gd10df9b.x86_64.rpm","kernel-debuginfo-2.6.32-642.13.1.el6.cgslv4_5.0.181.gd10df9b.x86_64.rpm","python-perf-2.6.32-642.13.1.el6.cgslv4_5.0.181.gd10df9b.x86_64.rpm","kernel-headers-2.6.32-642.13.1.el6.cgslv4_5.0.181.gd10df9b.x86_64.rpm","kernel-debuginfo-common-x86_64-2.6.32-642.13.1.el6.cgslv4_5.0.181.gd10df9b.x86_64.rpm","python-perf-debuginfo-2.6.32-642.13.1.el6.cgslv4_5.0.181.gd10df9b.x86_64.rpm","perf-2.6.32-642.13.1.el6.cgslv4_5.0.181.gd10df9b.x86_64.rpm"],"source":"kernel-2.6.32-642.13.1.el6.cgslv4_5.0.181.gd10df9b.src.rpm"}]}]}

CVE

参考