The "Dirty Pipe Vulnerability" (CVE-2022-0847) was announced recently which leads to privilege escalation via the Linux kernel. The vulnerability was fixed in Linux 5.16.11, 5.15.25 and 5.10.102. Reproducible: Always Steps to Reproduce: see https://dirtypipe.cm4all.com/ Actual Results: read-only files can be written to Expected Results: read-only files should be read-only
As per $URL, kernels 5.8 and later are affected.
The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=a0ebdbbb91ad5f44aca1be190090890005f166d1 commit a0ebdbbb91ad5f44aca1be190090890005f166d1 Author: Mike Pagano <mpagano@gentoo.org> AuthorDate: 2022-03-07 19:56:58 +0000 Commit: Mike Pagano <mpagano@gentoo.org> CommitDate: 2022-03-07 19:56:58 +0000 sys-kernel/gentoo-sources: Del vul. kernels,auto-stable per policy Remove 5.10 kernels vulernable to root exploit. Auto-stabilize per policy CVE-2022-0847 Bug: https://bugs.gentoo.org/834729 Package-Manager: Portage-3.0.30, Repoman-3.0.3 Signed-off-by: Mike Pagano <mpagano@gentoo.org> sys-kernel/gentoo-sources/Manifest | 6 ----- .../gentoo-sources/gentoo-sources-5.10.100.ebuild | 28 ---------------------- .../gentoo-sources/gentoo-sources-5.10.101.ebuild | 28 ---------------------- .../gentoo-sources/gentoo-sources-5.10.103.ebuild | 2 +- 4 files changed, 1 insertion(+), 63 deletions(-) https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=8eb5de6821ec100bf65227d6953ed5c968a82056 commit 8eb5de6821ec100bf65227d6953ed5c968a82056 Author: Mike Pagano <mpagano@gentoo.org> AuthorDate: 2022-03-07 19:55:34 +0000 Commit: Mike Pagano <mpagano@gentoo.org> CommitDate: 2022-03-07 19:55:34 +0000 sys-kernel/gentoo-sources: Del vul. kernels,auto-stable per policy Remove 5.15 kernels vulernable to root exploit. Auto-stabilize per policy CVE-2022-0847 Bug: https://bugs.gentoo.org/834729 Package-Manager: Portage-3.0.30, Repoman-3.0.3 Signed-off-by: Mike Pagano <mpagano@gentoo.org> sys-kernel/gentoo-sources/Manifest | 6 ----- .../gentoo-sources/gentoo-sources-5.15.23.ebuild | 28 ---------------------- .../gentoo-sources/gentoo-sources-5.15.24.ebuild | 28 ---------------------- .../gentoo-sources/gentoo-sources-5.15.26.ebuild | 2 +- 4 files changed, 1 insertion(+), 63 deletions(-) https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=06cb72f05b8783ea19f8fdd9e0f10ce1b3cbee0e commit 06cb72f05b8783ea19f8fdd9e0f10ce1b3cbee0e Author: Mike Pagano <mpagano@gentoo.org> AuthorDate: 2022-03-07 19:52:42 +0000 Commit: Mike Pagano <mpagano@gentoo.org> CommitDate: 2022-03-07 19:52:42 +0000 sys-kernel/gentoo-sources: Remove kernels vulerable to CVE-2022-0847. Bug: https://bugs.gentoo.org/834729 Package-Manager: Portage-3.0.30, Repoman-3.0.3 Signed-off-by: Mike Pagano <mpagano@gentoo.org> sys-kernel/gentoo-sources/Manifest | 6 ----- .../gentoo-sources/gentoo-sources-5.16.10.ebuild | 28 ---------------------- .../gentoo-sources/gentoo-sources-5.16.9.ebuild | 28 ---------------------- 3 files changed, 62 deletions(-)
*** Bug 834730 has been marked as a duplicate of this bug. ***
The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=0b656cfa35462138782df05d7aa3ad18de81e59d commit 0b656cfa35462138782df05d7aa3ad18de81e59d Author: Sam James <sam@gentoo.org> AuthorDate: 2022-03-12 16:56:49 +0000 Commit: Sam James <sam@gentoo.org> CommitDate: 2022-03-12 16:57:37 +0000 virtual/dist-kernel: drop 5.16.9, 5.16.10 Bug: https://bugs.gentoo.org/834729 Signed-off-by: Sam James <sam@gentoo.org> virtual/dist-kernel/dist-kernel-5.16.10.ebuild | 19 ------------------- virtual/dist-kernel/dist-kernel-5.16.9.ebuild | 19 ------------------- 2 files changed, 38 deletions(-) https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=41566aba7d33b2916d2892b8c28c9bddc54ba100 commit 41566aba7d33b2916d2892b8c28c9bddc54ba100 Author: Sam James <sam@gentoo.org> AuthorDate: 2022-03-12 16:56:40 +0000 Commit: Sam James <sam@gentoo.org> CommitDate: 2022-03-12 16:57:35 +0000 virtual/dist-kernel: drop 5.15.23, 5.15.24 Bug: https://bugs.gentoo.org/834729 Signed-off-by: Sam James <sam@gentoo.org> virtual/dist-kernel/dist-kernel-5.15.23.ebuild | 19 ------------------- virtual/dist-kernel/dist-kernel-5.15.24.ebuild | 19 ------------------- 2 files changed, 38 deletions(-) https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=dde87d1bf90001047f8fe26fd1b0a28167763ac0 commit dde87d1bf90001047f8fe26fd1b0a28167763ac0 Author: Sam James <sam@gentoo.org> AuthorDate: 2022-03-12 16:56:32 +0000 Commit: Sam James <sam@gentoo.org> CommitDate: 2022-03-12 16:57:33 +0000 virtual/dist-kernel: drop 5.10.100, 5.10.101 Bug: https://bugs.gentoo.org/834729 Signed-off-by: Sam James <sam@gentoo.org> virtual/dist-kernel/dist-kernel-5.10.100.ebuild | 19 ------------------- virtual/dist-kernel/dist-kernel-5.10.101.ebuild | 19 ------------------- 2 files changed, 38 deletions(-) https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=d0e4c7844d50afdcc4ed623486c91fe057b97356 commit d0e4c7844d50afdcc4ed623486c91fe057b97356 Author: Sam James <sam@gentoo.org> AuthorDate: 2022-03-12 16:55:51 +0000 Commit: Sam James <sam@gentoo.org> CommitDate: 2022-03-12 16:57:27 +0000 sys-kernel/vanilla-kernel: drop 5.15.23, 5.15.24 Bug: https://bugs.gentoo.org/834729 Signed-off-by: Sam James <sam@gentoo.org> sys-kernel/vanilla-kernel/Manifest | 4 - .../vanilla-kernel/vanilla-kernel-5.15.23.ebuild | 130 --------------------- .../vanilla-kernel/vanilla-kernel-5.15.24.ebuild | 130 --------------------- 3 files changed, 264 deletions(-) https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=e3b840cbd436e35014642ac6456a26101b0854e6 commit e3b840cbd436e35014642ac6456a26101b0854e6 Author: Sam James <sam@gentoo.org> AuthorDate: 2022-03-12 16:55:40 +0000 Commit: Sam James <sam@gentoo.org> CommitDate: 2022-03-12 16:57:25 +0000 sys-kernel/vanilla-kernel: drop 5.10.100, 5.10.101 Bug: https://bugs.gentoo.org/834729 Signed-off-by: Sam James <sam@gentoo.org> sys-kernel/vanilla-kernel/Manifest | 4 - .../vanilla-kernel/vanilla-kernel-5.10.100.ebuild | 131 --------------------- .../vanilla-kernel/vanilla-kernel-5.10.101.ebuild | 131 --------------------- 3 files changed, 266 deletions(-) https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=31df3f6281fe45b9a2a1312b1299e2cecc6c78eb commit 31df3f6281fe45b9a2a1312b1299e2cecc6c78eb Author: Sam James <sam@gentoo.org> AuthorDate: 2022-03-12 16:54:43 +0000 Commit: Sam James <sam@gentoo.org> CommitDate: 2022-03-12 16:57:20 +0000 sys-kernel/gentoo-kernel: drop 5.16.9, 5.16.10 Bug: https://bugs.gentoo.org/834729 Signed-off-by: Sam James <sam@gentoo.org> sys-kernel/gentoo-kernel/Manifest | 4 - .../gentoo-kernel/gentoo-kernel-5.16.10.ebuild | 126 --------------------- .../gentoo-kernel/gentoo-kernel-5.16.9.ebuild | 126 --------------------- 3 files changed, 256 deletions(-) https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=bc42bd2bca1c733ffd743ed62aa758f46df4b312 commit bc42bd2bca1c733ffd743ed62aa758f46df4b312 Author: Sam James <sam@gentoo.org> AuthorDate: 2022-03-12 16:54:29 +0000 Commit: Sam James <sam@gentoo.org> CommitDate: 2022-03-12 16:57:18 +0000 sys-kernel/gentoo-kernel: drop 5.15.23, 5.15.24 Bug: https://bugs.gentoo.org/834729 Signed-off-by: Sam James <sam@gentoo.org> sys-kernel/gentoo-kernel/Manifest | 4 - .../gentoo-kernel/gentoo-kernel-5.15.23.ebuild | 126 --------------------- .../gentoo-kernel/gentoo-kernel-5.15.24.ebuild | 126 --------------------- 3 files changed, 256 deletions(-) https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=4a020766bb8ccd88a9f909b12127fd341ce55b58 commit 4a020766bb8ccd88a9f909b12127fd341ce55b58 Author: Sam James <sam@gentoo.org> AuthorDate: 2022-03-12 16:54:11 +0000 Commit: Sam James <sam@gentoo.org> CommitDate: 2022-03-12 16:57:16 +0000 sys-kernel/gentoo-kernel: drop 5.10.100, 5.10.101 Bug: https://bugs.gentoo.org/834729 Signed-off-by: Sam James <sam@gentoo.org> sys-kernel/gentoo-kernel/Manifest | 4 - .../gentoo-kernel/gentoo-kernel-5.10.100.ebuild | 127 --------------------- .../gentoo-kernel/gentoo-kernel-5.10.101.ebuild | 127 --------------------- 3 files changed, 258 deletions(-) https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=6fb2b8b4147514e0461478a0a3b8518ab267df8b commit 6fb2b8b4147514e0461478a0a3b8518ab267df8b Author: Sam James <sam@gentoo.org> AuthorDate: 2022-03-12 16:53:40 +0000 Commit: Sam James <sam@gentoo.org> CommitDate: 2022-03-12 16:57:12 +0000 sys-kernel/gentoo-kernel-bin: drop 5.16.9, 5.16.10 Bug: https://bugs.gentoo.org/834729 Signed-off-by: Sam James <sam@gentoo.org> sys-kernel/gentoo-kernel-bin/Manifest | 12 -- .../gentoo-kernel-bin-5.16.10.ebuild | 131 --------------------- .../gentoo-kernel-bin-5.16.9.ebuild | 131 --------------------- 3 files changed, 274 deletions(-) https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=e09d3edc9f3b7989994c4e8ff48a631589190d64 commit e09d3edc9f3b7989994c4e8ff48a631589190d64 Author: Sam James <sam@gentoo.org> AuthorDate: 2022-03-12 16:53:21 +0000 Commit: Sam James <sam@gentoo.org> CommitDate: 2022-03-12 16:57:10 +0000 sys-kernel/gentoo-kernel-bin: drop 5.15.23, 5.15.24 Bug: https://bugs.gentoo.org/834729 Signed-off-by: Sam James <sam@gentoo.org> sys-kernel/gentoo-kernel-bin/Manifest | 12 -- .../gentoo-kernel-bin-5.15.23.ebuild | 131 --------------------- .../gentoo-kernel-bin-5.15.24.ebuild | 131 --------------------- 3 files changed, 274 deletions(-) https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=7da0d7047c22a89e781043a05b17d13a3bc9a252 commit 7da0d7047c22a89e781043a05b17d13a3bc9a252 Author: Sam James <sam@gentoo.org> AuthorDate: 2022-03-12 16:52:55 +0000 Commit: Sam James <sam@gentoo.org> CommitDate: 2022-03-12 16:57:08 +0000 sys-kernel/gentoo-kernel-bin: drop 5.10.100, 5.10.101 Bug: https://bugs.gentoo.org/834729 Signed-off-by: Sam James <sam@gentoo.org> sys-kernel/gentoo-kernel-bin/Manifest | 12 -- .../gentoo-kernel-bin-5.10.100.ebuild | 131 --------------------- .../gentoo-kernel-bin-5.10.101.ebuild | 131 --------------------- 3 files changed, 274 deletions(-)
Cleanup done, all done.
