Linux Kernel Privilege Escalation Vulnerability (CVE-2022-0847)

Mar 09, 2022 GMT+08:00

I.Overview

A privilege escalation vulnerability (CVE-2022-0847) which allows overwriting data in arbitrary read-only files was found in Linux Kernel 5.8 and later versions. Successful exploit could allow a common user to gain escalated privileges to run as the root user. The POC and EXP of this vulnerability have been disclosed, and the risk is high.

Huawei Cloud services and tenant images are not affected by this vulnerability. Check your internal environment and perform security hardening in a timely manner.

References:

https://dirtypipe.cm4all.com/

https://access.redhat.com/security/cve/cve-2022-0847

https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id =9d2231c5d74e13b2a0546fee6737ee4446017903

II.Severity

Severity: important

(Severity: low, moderate, important, and critical)

III. Affected Products

Affected versions:

5.8 <= Linux kernel < 5.16.11 / 5.15.25 / 5.10.102

Secure versions:

Linux kernel >= 5.16.11

Linux kernel >= 5.15.25

Linux kernel >= 5.10.102

IV.Vulnerability Handling

This vulnerability has been fixed in the newly released official versions. If your service version falls into the affected range, upgrade it to a latest secure version. Link: https://www.kernel.org/

Note: Before fixing vulnerabilities, back up your files and conduct a thorough test.