In the Linux kernel, the following vulnerability has been resolved:
cgroup: cgroup_get_from_id() must check the looked-up kn is a directory
cgroup has to be one kernfs dir, otherwise kernel panic is caused,
especially cgroup id is provide from userspace.
[
{
"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
"vendor": "Linux",
"product": "Linux",
"versions": [
{
"status": "affected",
"version": "6b658c4863c1",
"lessThan": "8484a356cee8",
"versionType": "git"
},
{
"status": "affected",
"version": "6b658c4863c1",
"lessThan": "1e9571887f97",
"versionType": "git"
},
{
"status": "affected",
"version": "6b658c4863c1",
"lessThan": "df02452f3df0",
"versionType": "git"
}
],
"programFiles": [
"kernel/cgroup/cgroup.c"
],
"defaultStatus": "unaffected"
},
{
"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
"vendor": "Linux",
"product": "Linux",
"versions": [
{
"status": "affected",
"version": "5.14"
},
{
"status": "unaffected",
"version": "0",
"lessThan": "5.14",
"versionType": "custom"
},
{
"status": "unaffected",
"version": "5.15.72",
"versionType": "custom",
"lessThanOrEqual": "5.15.*"
},
{
"status": "unaffected",
"version": "5.19.12",
"versionType": "custom",
"lessThanOrEqual": "5.19.*"
},
{
"status": "unaffected",
"version": "6.0",
"versionType": "original_commit_for_fix",
"lessThanOrEqual": "*"
}
],
"programFiles": [
"kernel/cgroup/cgroup.c"
],
"defaultStatus": "affected"
}
]