RHSA-2022:0819HighCVSS 8.8
Red Hat Security Advisory: kernel-rt security and bug fix update
🔗 CVE IDs covered (7)
📋 Description
CVE-2021-0920 — kernel: Use After Free in unix_gc() which could result in a local privilege escalation CVE-2021-4154 — kernel: local privilege escalation by exploiting the fsconfig syscall parameter leads to container breakout CVE-2022-0330 — kernel: possible privileges escalation due to missing TLB flush CVE-2022-0435 — kernel: remote stack overflow via kernel panic on systems using TIPC may lead to DoS CVE-2022-0492 — kernel: cgroups v1 release_agent feature may allow privilege escalation CVE-2022-0847 — kernel: improper initialization of the "flags" member of the new pipe_buffer CVE-2022-22942 — kernel: failing usercopy allows for use-after-free exploitation
🔗 References (11)
- selfhttps://access.redhat.com/errata/RHSA-2022:0819
- externalhttps://access.redhat.com/security/updates/classification/#important
- externalhttps://access.redhat.com/security/vulnerabilities/RHSB-2022-002
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2031930
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2034514
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2042404
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2044809
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2048738
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2051505
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2060795
- selfhttps://security.access.redhat.com/data/csaf/v2/advisories/2022/rhsa-2022_0819.json