The Microsoft Windows Kernel Cryptography Driver (cng.sys) exposes a \Device\CNG device to user-mode programs and supports a variety of IOCTLs with non-trivial input structures. It constitutes a locally accessible attack surface that can be exploited for privilege escalation (such as sandbox escape).
dcd9bb74f157ccd45992a6aeffd77f590ad19684a1b4e9e165f72d39d919d700
Red Hat Security Advisory 2020-0800-01 - Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments. An issue was resolved where /etc/passwd was given incorrect privileges.
5ffd80ff9819bf83b174716e61e3124720d5ed509107ba0337c3d63516435f1d
Red Hat Security Advisory 2020-0694-01 - Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments. An issue was resolved where /etc/passwd was given incorrect privileges.
864159f2ff7a7923c48fdd9ed7f78eb2e164ecdb986d8857eaab7d39c85989fd
Red Hat Security Advisory 2020-0681-01 - Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments. An issue was resolved where /etc/passwd was given incorrect privileges.
f00832bbdd2bea19cf0bf7318dd3385bd3ae918780abc6faa5c7fe029529e15f
Red Hat Security Advisory 2020-0617-01 - Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments. An issue where /etc/passwd was given incorrect privileges has been addressed.
6a548a878b9738f64e407ec0791fd34f97a41c4572ebfe95d5f14c496374a7c4