An unprivileged write to the file handler flaw in the Linux kernel's control groups and namespaces subsystem was found in the way users have access to some less privileged process that are controlled by cgroups and have higher privileged parent process. It is actually both for cgroup2 and cgroup1 versions of control groups. A local user could use this flaw to crash the system or escalate their privileges on the system.
References
Link | Resource |
---|---|
https://bugzilla.redhat.com/show_bug.cgi?id=2035652 | Issue Tracking Third Party Advisory |
https://lore.kernel.org/lkml/20211209214707.805617-1-tj%40kernel.org/T/ | |
https://security.netapp.com/advisory/ntap-20220602-0006/ | Third Party Advisory |
https://www.debian.org/security/2022/dsa-5127 | Third Party Advisory |
https://www.debian.org/security/2022/dsa-5173 | Third Party Advisory |
https://www.oracle.com/security-alerts/cpujul2022.html | Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: redhat
Published: 2022-03-23T19:46:43
Updated: 2022-07-25T16:43:38
Reserved: 2022-01-03T00:00:00
Link: CVE-2021-4197
JSON object: View
NVD Information
Status : Modified
Published: 2022-03-23T20:15:10.200
Modified: 2023-11-07T03:40:21.077
Link: CVE-2021-4197
JSON object: View
Redhat Information
No data.
CWE