Network in Ubuntu recovery mode
In the afternoon I needed a working network in Ubuntu 20.04 recovery mode. This was as simple as entering the following line at the command prompt:
/etc/init.d/network-manager start
The Dirty Pipe Vulnerability
This is the story of CVE-2022-0847, a vulnerability in the Linux kernel since 5.8 which allows overwriting data in arbitrary read-only files. This leads to privilege escalation because unprivileged processes can inject code into root processes.
Source: The Dirty Pipe Vulnerability, an article by Max Kellermann.
Escaping privileged containers for fun
Despite the fact that it is not a ‘real’ vulnerability, escaping privileged Docker containers is nevertheless pretty funny. And because there will always be people who will come up with reasons or excuses to run a privileged container (even though you really shouldn’t), this could really be handy at some point in the future.
Source: Escaping privileged containers for fun, an article by Jordy Zomer.