Linux Kernel Bug Allows Kubernetes Container Escape

Advisories

Discover Cloud Security News

Linux Kernel Bug Allows Kubernetes Container Escape

8.Locks HexConnections CodeGlobe

Hackers could exploit a Linux kernel bug to escape Kubernetes containers and access critical resources; however, the threat is minimized as any attacker needs to have the specific Linux capability CAP_SYS_ADMIN.

The high-severity Common Vulnerabilities and Exposures (CVE) 2022-0185, first reported by security publication BleepingComputer, affects all Linux kernel versions from 5.1-rc1 to the latest releases (5.4.173, 5.10.93, 5.15.1).

The public exploit code for the issue is expected to be released soon by Crusaders of Rust (CoR), the team which discovered the vulnerability, meaning all systems at risk from this issue should apply the patch as soon as possible.

We use cookies to provide and improve our services. By using our site, you consent to our Cookie Policy.