Yiqi Sun

**Name of the Vulnerable Software and Affected Versions** apport-cli versions 2.26.0 and earlier **Description** A privilege escalation attack was found, similar to a known issue, which can be exploited by a local attacker if the system is specially configured. This configuration includes allowing unprivileged users to run `sudo apport-cli`, having `less` configured as the pager, and the ability to set the terminal size. It is unlikely that a system administrator would configure `sudo` to allow unprivileged users to perform this class of exploit. **Recommendations** For apport-cli versions 2.26.0 and earlier, consider restricting the use of `sudo apport-cli` to privileged users only, and review the configuration of the pager and terminal settings to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Linux Kernel versions 2.6.24 through 5.16.11 Linux Kernel versions 5.15.0 through 5.15.25 Linux Kernel versions 5.10.0 through 5.10.96 Linux Kernel versions 5.4.0 through 5.4.176 Linux Kernel versions 4.19.0 through 4.19.228 Linux Kernel versions 4.14.0 through 4.14.265 Linux Kernel versions 4.9.0 through 4.9.300 **Description** An improper authentication flaw exists in the `cgroup release agent write` function within the `kernel/cgroup/cgroup-v1.c` file of the Linux kernel. This issue stems from a lack of privilege control when configuring the `release agent` feature of cgroups v1 (Control Groups v1), which are Linux functions used to limit, account for, and isolate resource use for sets of processes. Under certain circumstances, this allows an attacker to execute arbitrary commands with elevated privileges, bypass namespace isolation, and escape containerized environments to gain root-level access on the host system. This flaw has been actively exploited in real-world attacks. **Recommendations** Update the kernel to versions 5.16.12, 5.15.26, 5.10.97, 5.4.177, 4.19.229, 4.14.266, or 4.9.301 depending on the current release branch. Enable AppArmor or SELinux. Enable Seccomp.