CVE-2015-1335
Published: 29 September 2015
lxc-start in lxc before 1.0.8 and 1.1.x before 1.1.4 allows local container administrators to escape AppArmor confinement via a symlink attack on a (1) mount target or (2) bind mount source.
Priority
Status
Package | Release | Status |
---|---|---|
lxc Launchpad, Ubuntu, Debian |
precise |
Does not exist
(precise was needed)
|
trusty |
Not vulnerable
(trusty was released [1.0.7-0ubuntu0.5])
|
|
upstream |
Released
(1.1.4)
|
|
vivid |
Released
(1.1.2-0ubuntu3.2)
|
|
wily |
Not vulnerable
(1.1.4-0ubuntu1)
|
|
xenial |
Not vulnerable
(1.1.4-0ubuntu1)
|
|
yakkety |
Not vulnerable
(1.1.4-0ubuntu1)
|
|
zesty |
Not vulnerable
(1.1.4-0ubuntu1)
|