LSN-0085-1

Advisory lineage Upstream: 4 Downstream: 0
Published: 23 Mar 2022, 07:58
Last modified:03 Jun 2026, 13:33

Vulnerability Summary

Overall Risk (default)
minimal
0/100
CVSS Score
No data
EPSS Score
No data
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected

Timeline

23 Mar 2022, 07:58
Published
Vulnerability first disclosed
03 Jun 2026, 13:33
Last Modified
Vulnerability information updated

Description

Kernel Live Patch Security Notice Yiqi Sun and Kevin Wang discovered that the cgroups implementation in the Linux kernel did not properly restrict access to the cgroups v1 release_agent feature. A local attacker could use this to gain administrative privileges.(CVE-2022-0492) Nick Gregory discovered that the Linux kernel incorrectly handled network offload functionality. A local attacker could use this to cause a denial of service or possibly execute arbitrary code.(CVE-2022-25636)

Affected Systems

  • ubuntulinux

    all | < 4.4.0-222.255 | < 4.15.0-173.182 | < 5.4.0-105.119

  • ubuntulinux-aws

    all | < 4.4.0-1138.152 | < 4.15.0-1124.133 | < 5.4.0-1069.73

  • ubuntulinux-azure

    all | < 4.15.0-1134.147~16.04.1 | < 5.4.0-1073.76

  • ubuntulinux-azure-4.15

    all | < 4.15.0-1134.147

  • ubuntulinux-gcp

    all | < 5.4.0-1068.72

  • ubuntulinux-gke

    all | < 5.4.0-1066.69

  • ubuntulinux-gke-4.15

    all

  • ubuntulinux-gke-5.4

    all | < 5.4.0-1066.69~18.04.1

  • ubuntulinux-gkeop

    all | < 5.4.0-1037.38

  • ubuntulinux-gkeop-5.4

    all | < 5.4.0-1037.38~18.04.1

  • ubuntulinux-hwe

    all | < 4.15.0-173.182~16.04.1

  • ubuntulinux-hwe-5.4

    all | < 5.4.0-105.119~18.04.1

  • ubuntulinux-ibm

    all | < 5.4.0-1018.20

  • ubuntulinux-ibm-5.4

    all | < 5.4.0-1018.20~18.04.1

  • ubuntulinux-lts-xenial

    all | < 4.4.0-222.255~14.04.1

  • ubuntulinux-oem

    all

References (3)