One Article Review
| Source |  Vuln GCP |
|---|---|
| Identifiant | 8296088 |
| Date de publication | 2022-12-21 17:12:56 (vue: 2022-12-30 21:12:37) |
| Titre | GCP-2022-014 |
| Texte | Published: 2022-04-26 Updated: 2022-11-22Description
Description
Severity
Notes
2022-11-22 Update: GKE Autopilot clusters and workloads running in GKE Sandbox are unaffected. 2022-05-12 Update: The Anthos clusters on AWS and Anthos on Azure versions have been updated. For instructions and more details, see the:Anthos clusters on AWS security bulletin Anthos on bare metal security bulletin Two security vulnerabilities, CVE-2022-1055 and CVE-2022-27666 have been discovered in the Linux kernel. Each can lead to a local attacker being able to perform a container breakout, privilege escalation on the host, or both. These vulnerabilities affect all GKE node operating systems (Container-Optimized OS and Ubuntu). For instructions and more details, see the following security bulletins: GKE security bulletin Anthos clusters on VMware security bulletin Anthos clusters on AWS security bulletin Anthos on Azure security bulletin Anthos on bare metal security bulletin High CVE-2022-1055 CVE-2022-27666 |
| Notes | ★★★ |
| Envoyé | Oui |
| Condensat | 014 1055 2022 22description 27666 able affect all and anthos are attacker autopilot aws azure bare been being both breakout bulletin bulletins: can clusters container cve description details discovered each escalation following for gcp gke have high host instructions kernel lead linux local metal more node notes operating optimized perform privilege published: running sandbox security see severity systems the the:anthos these two ubuntu unaffected update: updated updated: versions vmware vulnerabilities workloads |
| Tags | Guideline |
| Stories | Uber |
| Move | 
|
L'article ne semble pas avoir été repris aprés sa publication.
L'article ne semble pas avoir été repris sur un précédent.