logo
DATABASE RESOURCES PRICING ABOUT US

Oracle Linux 9 : kernel (ELSA-2022-7318)

Description

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2022-7318 advisory. - The Linux kernel before 5.17.2 mishandles seccomp permissions. The PTRACE_SEIZE code path allows attackers to bypass intended restrictions on setting the PT_SUSPEND_SECCOMP flag. (CVE-2022-30594) - kernel: posix cpu timer use-after-free may lead to local privilege escalation (CVE-2022-2585) Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.


Related