CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:L/AC:L/Au:N/C:N/I:P/A:N
AI Score
Confidence
High
EPSS
Percentile
5.1%
Serge Hallyn discovered that cgmanager did not consistently enforce
proper nesting when modifying cgroup properties. A local attacker in a
privileged container could use this to set cgroup values for all cgroups.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Ubuntu | 14.10 | noarch | cgmanager | < 0.32-4ubuntu1.1 | UNKNOWN |
Ubuntu | 14.10 | noarch | libcgmanager-dev | < 0.32-4ubuntu1.1 | UNKNOWN |
Ubuntu | 14.10 | noarch | libcgmanager0 | < 0.32-4ubuntu1.1 | UNKNOWN |
Ubuntu | 14.04 | noarch | cgmanager | < 0.24-0ubuntu7.1 | UNKNOWN |
Ubuntu | 14.04 | noarch | cgmanager-tests | < 0.24-0ubuntu7.1 | UNKNOWN |
Ubuntu | 14.04 | noarch | cgmanager-utils | < 0.24-0ubuntu7.1 | UNKNOWN |
Ubuntu | 14.04 | noarch | libcgmanager-dev | < 0.24-0ubuntu7.1 | UNKNOWN |
Ubuntu | 14.04 | noarch | libcgmanager0 | < 0.24-0ubuntu7.1 | UNKNOWN |