Your submission was sent successfully! Close

CVE-2015-1331

Published: 22 July 2015

lxclock.c in LXC 1.1.2 and earlier allows local users to create arbitrary files via a symlink attack on /run/lock/lxc/*.

Priority

Medium

Status

Package Release Status
lxc
Launchpad, Ubuntu, Debian
precise Not vulnerable

trusty Not vulnerable
(trusty was released [1.0.7-0ubuntu0.2])
upstream
Released (1.1.3)
utopic
Released (1.1.0~alpha2-0ubuntu3.3)
vivid
Released (1.1.2-0ubuntu3.1)