NS-SA-2022-0024
2022-05-08 20:12:47
简介
important: kernel security update
严重级别
important
主题
An update for kernel is now available for NewStart CGSL MAIN 5.04.
NewStart Security has rated this update as having a security impact of important. A Common Vunlnerability Scoring System(CVSS)base score, which gives a detailed severity rating, is available for each vulnerability from the CVElink(s) in the References section.
详细描述
kernel: This package contains the development files for the tools/ directory from the kernel source.
Security Fix(es):
kernel: A vulnerability was found in the Linux kernel’s cgroup_release_agent_write in the kernel/cgroup/cgroup-v1.c function. This flaw, under certain circumstances, allows the use of the cgroups v1 release_agent feature to escalate privileges and bypass the namespace isolation unexpectedly.(CVE-2022-0492)
kernel: bugfix
Solution:
For details on how to apply this update, which includes the changes described in this advisory, refer to:
http://security.gd-linux.com/how_to_apply_patch.html
Remember the build tag is 5.04.F41CP1B1.
影响组件
影响产品
更新包
{"fix":[{"product":"CGSL MAIN 5.04","pkgs":[{"binary":["perf-debuginfo-3.10.0-693.21.1.el7.cgslv5_4.55.1119.1.gb946884.x86_64.rpm","kernel-tools-debuginfo-3.10.0-693.21.1.el7.cgslv5_4.55.1119.1.gb946884.x86_64.rpm","kernel-tools-libs-devel-3.10.0-693.21.1.el7.cgslv5_4.55.1119.1.gb946884.x86_64.rpm","kernel-sign-keys-3.10.0-693.21.1.el7.cgslv5_4.55.1119.1.gb946884.x86_64.rpm","kernel-debug-debuginfo-3.10.0-693.21.1.el7.cgslv5_4.55.1119.1.gb946884.x86_64.rpm","kernel-debug-3.10.0-693.21.1.el7.cgslv5_4.55.1119.1.gb946884.x86_64.rpm","python-perf-debuginfo-3.10.0-693.21.1.el7.cgslv5_4.55.1119.1.gb946884.x86_64.rpm","kernel-headers-3.10.0-693.21.1.el7.cgslv5_4.55.1119.1.gb946884.x86_64.rpm","kernel-3.10.0-693.21.1.el7.cgslv5_4.55.1119.1.gb946884.x86_64.rpm","kernel-devel-3.10.0-693.21.1.el7.cgslv5_4.55.1119.1.gb946884.x86_64.rpm","kernel-doc-3.10.0-693.21.1.el7.cgslv5_4.55.1119.1.gb946884.noarch.rpm","python-perf-3.10.0-693.21.1.el7.cgslv5_4.55.1119.1.gb946884.x86_64.rpm","kernel-tools-libs-3.10.0-693.21.1.el7.cgslv5_4.55.1119.1.gb946884.x86_64.rpm","kernel-tools-3.10.0-693.21.1.el7.cgslv5_4.55.1119.1.gb946884.x86_64.rpm","kernel-debuginfo-3.10.0-693.21.1.el7.cgslv5_4.55.1119.1.gb946884.x86_64.rpm","kernel-abi-whitelists-3.10.0-693.21.1.el7.cgslv5_4.55.1119.1.gb946884.noarch.rpm","perf-3.10.0-693.21.1.el7.cgslv5_4.55.1119.1.gb946884.x86_64.rpm","kernel-debuginfo-common-x86_64-3.10.0-693.21.1.el7.cgslv5_4.55.1119.1.gb946884.x86_64.rpm","kernel-debug-devel-3.10.0-693.21.1.el7.cgslv5_4.55.1119.1.gb946884.x86_64.rpm"],"source":"kernel-3.10.0-693.21.1.el7.cgslv5_4.55.1119.1.gb946884.src.rpm"}]}]}
CVE
参考