Summary
Qualys researchers disclosed "CrackArmor," a set of nine critical vulnerabilities in the AppArmor Linux Security Module, which allow unprivileged users to achieve root access and break container isolation.
Take Action:
If you run Linux with AppArmor (Ubuntu, Debian, SUSE), plan a quick kernel update and patch su/sudo ASAP as these flaws let any local user escalate to root and defeat the purpose of AppArmor. If you can't patch right away, monitor for unexpected changes under /sys/kernel/security/apparmor/ and make sure your apparmor_parser tool is updated.
Read the full article on BeyondMachines
This article was originally published on BeyondMachines
Top comments (0)