CVE-2022-0492 PoC — Linux kernel 授权问题漏洞

Source

https://github.com/PaloAltoNetworks/can-ctr-escape-cve-2022-0492

Associated Vulnerability

Title:Linux kernel 授权问题漏洞 (CVE-2022-0492)
Description:Linux kernel是美国Linux基金会的开源操作系统Linux所使用的内核。 Linux kernel 存在授权问题漏洞，该漏洞源于软件对用权限限制存在问题。攻击者可利用该漏洞可以通过Cgroups Release Agent 绕过Linux内核的限制，以升级他的权限。

Description

Test whether a container environment is vulnerable to container escapes via CVE-2022-0492

Readme

A container image that tests whether a container enviroment is vulnerable to escapes via CVE-2022-0492. Best to execute under a new container running an image built with:

```
$ cd can-ctr-escape-cve-2022-0492
$ docker build -t can-ctr-escape-cve-2022-0492:latest .
```

A pre-built image is available at `us-central1-docker.pkg.dev/twistlock-secresearch/public/can-ctr-escape-cve-2022-0492:latest`.

### Running in Kubernetes

```
kubectl run --restart Never --rm -it --image=us-central1-docker.pkg.dev/twistlock-secresearch/public/can-ctr-escape-cve-2022-0492:latest test-for-cve-2022-0492
```

File Snapshot


 [4.0K]  /data/pocs/1cf934d0d926b0a36d7557adccaefa99ea01c502
├── [1.2K]  can-ctr-escape-cve-2022-0492.sh
├── [ 256]  Dockerfile
├── [1.0K]  LICENSE
└── [ 596]  README.md

0 directories, 4 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!