Your submission was sent successfully! Close

You have successfully unsubscribed! Close

CVE-2015-1335

Published: 29 September 2015

lxc-start in lxc before 1.0.8 and 1.1.x before 1.1.4 allows local container administrators to escape AppArmor confinement via a symlink attack on a (1) mount target or (2) bind mount source.

Priority

Medium

Status

Package Release Status
lxc
Launchpad, Ubuntu, Debian
precise Does not exist
(precise was needed)
trusty Not vulnerable
(trusty was released [1.0.7-0ubuntu0.5])
upstream
Released (1.1.4)
vivid
Released (1.1.2-0ubuntu3.2)
wily Not vulnerable
(1.1.4-0ubuntu1)
xenial Not vulnerable
(1.1.4-0ubuntu1)
yakkety Not vulnerable
(1.1.4-0ubuntu1)
zesty Not vulnerable
(1.1.4-0ubuntu1)