{"uuid": "ba9d9394-e60b-4467-9056-f2897f39dca2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-0492", "type": "seen", "source": "https://t.me/conservativejblQck1776/70982", "content": "New Linux Kernel cgroups Vulnerability Could Let Attackers Escape Container\n\nDetails have emerged about a now-patched high-severity vulnerability in the Linux kernel that could potentially be abused to escape a container in order to execute arbitrary commands on the container host.\n\nThe shortcoming resides in a Linux kernel feature called control groups, also referred to as cgroups version 1 (v1), which allows processes to be organized into hierarchical groups, thereby making it possible to limit and monitor the usage of resources such as CPU, memory, disk I/O, and network.\n\nTracked as CVE-2022-0492 (CVSS score: 7.0), the issue concerns a case of privilege escalation in the cgroups v1 release_agent functionality, a script that's executed following the termination of any process in the cgroup. (continued at the link below)\n\nhttps://thehackernews.com/2022/03/new-linux-kernel-cgroups-vulnerability.html", "creation_timestamp": "2022-03-05T22:52:04.000000Z"}