Mageia 2022-0192: opencontainers-runc security update | LinuxSecuri...

What Are You Looking For?

Popular Tags

Contribute
MGASA-2022-0192 - Updated opencontainers-runc packages fix security vulnerability

Publication date: 21 May 2022
URL: https://advisories.mageia.org/MGASA-2022-0192.html
Type: security
Affected Mageia releases: 8
CVE: CVE-2022-29162

A bug was found in runc where runc exec --cap executed processes with
non-empty inheritable Linux process capabilities, creating an atypical
Linux environment and enabling programs with inheritable file capabilities
to elevate those capabilities to the permitted set during execve(2). This
bug did not affect the container security sandbox as the inheritable set
never contained more capabilities than were included in the container's
bounding set. (CVE-2022-29162)

References:
- https://bugs.mageia.org/show_bug.cgi?id=30421
- https://github.com/opencontainers/runc/security/advisories/GHSA-f3fp-gc8g-vw66
- https://www.openwall.com/lists/oss-security/2022/05/12/1
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-29162

SRPMS:
- 8/core/opencontainers-runc-1.1.2-2.mga8

Mageia 2022-0192: opencontainers-runc security update

A bug was found in runc where runc exec --cap executed processes with non-empty inheritable Linux process capabilities, creating an atypical Linux environment and enabling programs...

Summary

A bug was found in runc where runc exec --cap executed processes with non-empty inheritable Linux process capabilities, creating an atypical Linux environment and enabling programs with inheritable file capabilities to elevate those capabilities to the permitted set during execve(2). This bug did not affect the container security sandbox as the inheritable set never contained more capabilities than were included in the container's bounding set. (CVE-2022-29162)

References

- https://bugs.mageia.org/show_bug.cgi?id=30421

- https://github.com/opencontainers/runc/security/advisories/GHSA-f3fp-gc8g-vw66

- https://www.openwall.com/lists/oss-security/2022/05/12/1

- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-29162

Resolution

MGASA-2022-0192 - Updated opencontainers-runc packages fix security vulnerability

SRPMS

- 8/core/opencontainers-runc-1.1.2-2.mga8

Severity
Publication date: 21 May 2022
URL: https://advisories.mageia.org/MGASA-2022-0192.html
Type: security
CVE: CVE-2022-29162

Related News

New ShellBot DDoS Malware Variants Targeting Poorly Managed Linux Servers

It’s Not Just Windows that Gets Malware

Amazon Linux 2023, a Cloud-Optimized Linux Distro, Is Now Available

Linux 6.3-rc3 Adding Protection From Malicious Guests Hammering AMD's Secure Processor

News

Advisories

HOWTOs

Features

Verifying Linux Server Security: What Every Admin Needs to Know
What Linux, Windows & Mac OS Users Need to Know About VPNs
Complete Guide to Vulnerability Basics
How To Get Live Updates on Critical Linux Security Advisories
Best Linux Backup Solutions to Prevent Data Loss in A Ransomware Attack

About Us

Powered By

Footer Logo

We use cookies to provide and improve our services. By using our site, you consent to our Cookie Policy. 

Learn More About Our Cookie Policy