Damus
BeyondMachines :verified: profile picture
BeyondMachines :verified:
@BeyondMachines :verified:
CISA Warns of Active Exploitation of Linux Container Escape Flaw

CISA has added a Linux kernel container escape vulnerability (CVE-2022-0492) to its list of known exploited flaws. This flaw allow attackers to bypass security isolations and gain root-level privileges on host systems.

**Update your Linux kernel to a patched version that restricts release_agent writes, and where possible move to cgroups v2 which removes the vulnerable feature entirely. As an extra layer, enable security profiles like AppArmor, SELinux, or Seccomp, and don't run containers with the --privileged flag or unnecessary admin capabilities.**
#cybersecurity #infosec #attack #activeexploit
https://beyondmachines.net/event_details/cisa-warns-of-active-exploitation-of-linux-container-escape-flaw-e-f-a-4-k/gD2P6Ple2L