CVE-2022-0492: A vulnerability was found in the Linux kernel’s cgroup_release_agent_write in the kernel/cgroup/cgroup-v1.c function. This flaw, under certain circumstances…

high7.8CVSS 3.1

AVLACLPRLUINSUCHIHAH

KEVEXPLOIT

CISA Known Exploited Vulnerabilitydue 2026-06-05

A vulnerability was found in the Linux kernel’s cgroup_release_agent_write in the kernel/cgroup/cgroup-v1.c function. This flaw, under certain circumstances, allows the use of the cgroups v1 release_agent feature to escalate privileges and bypass the namespace isolation unexpectedly.

Affected

56 ranges· showing 25

Vendor	Product	Version range	Fixed in
canonical	ubuntu_linux	—	—
canonical	ubuntu_linux	—	—
canonical	ubuntu_linux	—	—
canonical	ubuntu_linux	—	—
canonical	ubuntu_linux	—	—
debian	debian_linux	—	—
debian	debian_linux	—	—
debian	debian_linux	—	—
debian	linux	< linux 5.16.7-1 (bookworm)	linux 5.16.7-1 (bookworm)
fedoraproject	fedora	—	—
linux	linux_kernel	—	—
linux	linux_kernel	—	—
linux	linux_kernel	>= 0 < 5.10.103-1	5.10.103-1
linux	linux_kernel	>= 0 < 5.16.7-1	5.16.7-1
linux	linux_kernel	>= 0 < 5.16.7-1	5.16.7-1
linux	linux_kernel	>= 0 < 5.16.7-1	5.16.7-1
linux	linux_kernel	>= 0 < 4.15.0-173.182	4.15.0-173.182
linux	linux_kernel	>= 0 < 5.4.0-105.119	5.4.0-105.119
linux	linux_kernel	>= 0 < 4.4.0-222.255	4.4.0-222.255
linux	linux_kernel	>= 0 < 4.4.0-227.261	4.4.0-227.261
linux	linux_kernel	>= 0 < 4.15.0-180.189	4.15.0-180.189
linux	linux_kernel	>= 0 < 4.15.0-173.182	4.15.0-173.182
linux	linux_kernel	>= 0 < 5.4.0-117.132	5.4.0-117.132
linux	linux_kernel	>= 0 < 5.4.0-105.119	5.4.0-105.119
linux	linux_kernel	>= 0 < 5.15.0-37.39	5.15.0-37.39

CVSS provenance

nvdv3.17.8HIGHCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

osv7.8HIGH

vulncheck7.8HIGH

cisa7.8HIGH