Dirty Clone and pedit COW
We are aware of the recent Local Privilege Escalations (LPEs) exploits impacting the Linux kernel (Dirty Clone and pedit COW).
It is important to note that these exploits requires local access to a system to be exploited, something that would require an issue with the running micro-services or associated services to have been exposed and exploited in the first instance.
Both vulnerabilities (and associated exploits) are mitigated by having the user.max_user_namespaces set to 0. This is the default value for the 4.x VQCM, as such no action should need to be taken by customers.
If customers believe there is a chance their kernel value has been changed or they wish to discuss these vulnerabilities (or any other security issues) please get in contact via support@vqcomms.com

