Chad Waters via plug on 20 Jan 2022 08:00:56 -0800

[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]

Re: [PLUG] patch Ubuntu now, Wine

‐‐‐‐‐‐‐ Original Message ‐‐‐‐‐‐‐

On Thursday, January 20th, 2022 at 10:47 AM, jeffv via plug <> wrote:

> 'Now' would be the right time to patch Ubuntu container hosts and ditch

> 21.04 thanks to heap buffer overflow bug [21.04 reaching EOL anyway]


> The CVE-2022-0185 vulnerability in Ubuntu is severe enough that Red Hat

> is also advising immediate patching.

> The flaw allows a process inside a Linux user namespace to escape, which

> means it potentially affects any machine running containers.

Its not just Ubuntu. MITRE and NVD don't have details yet, but Debian's tracker references other distros:

Attachment: publickey - - 0x93D3331B.asc
Description: application/pgp-keys

Attachment: signature.asc
Description: OpenPGP digital signature

Philadelphia Linux Users Group         --
Announcements -
General Discussion  --