.. / CVE-2022-0492

Exploit for Linux kernel cgroup_release_agent_write - Local Privilege Escalation (CVE-2022-0492)

Description:

A vulnerability was found in the Linux kernel’s cgroup_release_agent_write in the kernel/cgroup/cgroup-v1.c function. This flaw, under certain circumstances, allows the use of the cgroups v1 release_agent feature to escalate privileges and bypass the namespace isolation unexpectedly.

Proof of Concept

PoC exploit

https://github.com/T1erno/CVE-2022-0492-Docker-Breakout-Checker-and-PoC

Try the exploit in a lab environment:

Lab	Machine	Link
Hack The Box	Carpediem	Go to Practice

References:

https://nvd.nist.gov/vuln/detail/CVE-2022-0492
https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=24f6008564183aa120d07c03d9289519c2fe02af
https://packetstormsecurity.com/files/166444/Kernel-Live-Patch-Security-Notice-LSN-0085-1.html
https://packetstormsecurity.com/files/167386/Kernel-Live-Patch-Security-Notice-LSN-0086-1.html
https://packetstormsecurity.com/files/176099/Docker-cgroups-Container-Escape.html
https://unit42.paloaltonetworks.com/cve-2022-0492-cgroups/

.. / CVE-2022-0492 if(localStorage["style"]=="true"){ document.getElementById('pagestyle').setAttribute('href','/assets/styleDark.css'); document.querySelector('input[type="checkbox"]').checked = true }

Exploit for Linux kernel cgroup_release_agent_write - Local Privilege Escalation (CVE-2022-0492)

Description:

Proof of Concept

PoC exploit

Try the exploit in a lab environment:

.. / CVE-2022-0492