安全公告详情

NS-SA-2022-0024

2022-05-08 20:12:47

简介

important: kernel security update

严重级别

important

主题

An update for kernel is now available for NewStart CGSL MAIN 5.04.
NewStart Security has rated this update as having a security impact of important. A Common Vunlnerability Scoring System(CVSS)base score, which gives a detailed severity rating, is available for each vulnerability from the CVElink(s) in the References section.

详细描述

kernel: This package contains the development files for the tools/ directory from the kernel source.


Security Fix(es):
kernel: A vulnerability was found in the Linux kernel’s cgroup_release_agent_write in the kernel/cgroup/cgroup-v1.c function. This flaw, under certain circumstances, allows the use of the cgroups v1 release_agent feature to escalate privileges and bypass the namespace isolation unexpectedly.(CVE-2022-0492)
kernel: bugfix


Solution:
For details on how to apply this update, which includes the changes described in this advisory, refer to:
http://security.gd-linux.com/how_to_apply_patch.html
Remember the build tag is 5.04.F41CP1B1.

影响组件

  • kernel

影响产品

  • CGSL MAIN 5.04

更新包

{"fix":[{"product":"CGSL MAIN 5.04","pkgs":[{"binary":["perf-debuginfo-3.10.0-693.21.1.el7.cgslv5_4.55.1119.1.gb946884.x86_64.rpm","kernel-tools-debuginfo-3.10.0-693.21.1.el7.cgslv5_4.55.1119.1.gb946884.x86_64.rpm","kernel-tools-libs-devel-3.10.0-693.21.1.el7.cgslv5_4.55.1119.1.gb946884.x86_64.rpm","kernel-sign-keys-3.10.0-693.21.1.el7.cgslv5_4.55.1119.1.gb946884.x86_64.rpm","kernel-debug-debuginfo-3.10.0-693.21.1.el7.cgslv5_4.55.1119.1.gb946884.x86_64.rpm","kernel-debug-3.10.0-693.21.1.el7.cgslv5_4.55.1119.1.gb946884.x86_64.rpm","python-perf-debuginfo-3.10.0-693.21.1.el7.cgslv5_4.55.1119.1.gb946884.x86_64.rpm","kernel-headers-3.10.0-693.21.1.el7.cgslv5_4.55.1119.1.gb946884.x86_64.rpm","kernel-3.10.0-693.21.1.el7.cgslv5_4.55.1119.1.gb946884.x86_64.rpm","kernel-devel-3.10.0-693.21.1.el7.cgslv5_4.55.1119.1.gb946884.x86_64.rpm","kernel-doc-3.10.0-693.21.1.el7.cgslv5_4.55.1119.1.gb946884.noarch.rpm","python-perf-3.10.0-693.21.1.el7.cgslv5_4.55.1119.1.gb946884.x86_64.rpm","kernel-tools-libs-3.10.0-693.21.1.el7.cgslv5_4.55.1119.1.gb946884.x86_64.rpm","kernel-tools-3.10.0-693.21.1.el7.cgslv5_4.55.1119.1.gb946884.x86_64.rpm","kernel-debuginfo-3.10.0-693.21.1.el7.cgslv5_4.55.1119.1.gb946884.x86_64.rpm","kernel-abi-whitelists-3.10.0-693.21.1.el7.cgslv5_4.55.1119.1.gb946884.noarch.rpm","perf-3.10.0-693.21.1.el7.cgslv5_4.55.1119.1.gb946884.x86_64.rpm","kernel-debuginfo-common-x86_64-3.10.0-693.21.1.el7.cgslv5_4.55.1119.1.gb946884.x86_64.rpm","kernel-debug-devel-3.10.0-693.21.1.el7.cgslv5_4.55.1119.1.gb946884.x86_64.rpm"],"source":"kernel-3.10.0-693.21.1.el7.cgslv5_4.55.1119.1.gb946884.src.rpm"}]}]}

CVE

参考