CVE-2022-0532
published 2022-02-09CVE-2022-0532: An incorrect sysctls validation vulnerability was found in CRI-O 1.18 and earlier. The sysctls from the list of "safe" sysctls specified for the cluster will…
medium4.2CVSS 3.1
AVNACHPRLUINSUCLINAL
An incorrect sysctls validation vulnerability was found in CRI-O 1.18 and earlier. The sysctls from the list of "safe" sysctls specified for the cluster will be applied to the host if an attacker is able to create a pod with a hostIPC and hostNetwork kernel namespace.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| github.com | cri-o_cri-o | >= 0 < 1.23.1 | 1.23.1 |
| kubernetes | cri-o | <= 1.18 | — |
| kubernetes | cri-o | — | — |
| redhat | openshift_container_platform | — | — |