Lucene search
RedhatCVELIST:CVE-2022-3466HistorySep 15, 2023 - 1:18 p.m.
CVE-2022-3466 Cri-o: security regression of cve-2022-27652
2023-09-1513:18:27
CWE-276
redhat
raw.githubusercontent.com
2
cri-o
security regression
missing fix
The version of cri-o as released for Red Hat OpenShift Container Platform 4.9.48, 4.10.31, and 4.11.6 via RHBA-2022:6316, RHBA-2022:6257, and RHBA-2022:6658, respectively, included an incorrect version of cri-o missing the fix for CVE-2022-27652, which was previously fixed in OCP 4.9.41 and 4.10.12 via RHBA-2022:5433 and RHSA-2022:1600. This issue could allow an attacker with access to programs with inheritable file capabilities to elevate those capabilities to the permitted set when execve(2) runs. For more details, see https://access.redhat.com/security/cve/CVE-2022-27652.
Related
prion
prion
Design/Logic Flaw
2023-09-15 14:15:00
Default credentials
2022-04-18 17:15:00
redhatcve
redhatcve
CVE-2022-3466
2022-10-13 20:01:19
CVE-2022-27652
2022-03-31 20:48:35
cve
cve
CVE-2022-3466
2023-09-15 14:15:08
CVE-2022-27652
2022-04-18 17:15:00
osv
osv
CVE-2022-27652
2022-04-18 17:15:16
Incorrect Default Permissions in CRI-O
2022-04-22 20:42:46
cvelist
cvelist
CVE-2022-27652
2022-04-18 16:20:29
veracode
veracode
Insecure Defaults
2022-04-25 08:12:13
Privilege Escalation
2023-01-31 00:46:09
github
github
Incorrect Default Permissions in CRI-O
2022-04-22 20:42:46
altlinux
altlinux
Security fix for the ALT Linux 10 package cri-o version 1.26.2-alt1
2023-03-29 00:00:00
nessus
nessus
RHEL 8 : OpenShift Container Platform 4.10.12 (RHSA-2022:1600)
2022-05-02 00:00:00
RHCOS 4 : OpenShift Container Platform 4.12.0 (RHSA-2022:7398)
2024-01-24 00:00:00
RHEL 8 / 9 : OpenShift Container Platform 4.12.0 (RHSA-2022:7398)
2024-04-28 00:00:00
redhat
redhat