USN-3730-1: LXC vulnerability

06 August 2018

LXC would allow unintended access to files.

Releases

Packages

  • lxc - Linux Containers userspace tools

Details

Matthias Gerstner discovered that LXC incorrectly handled the lxc-user-nic
utility. A local attacker could possibly use this issue to open arbitrary
files.

Update instructions

The problem can be corrected by updating your system to the following package versions:

Ubuntu 18.04

After a standard system update you need to restart LXC containers to make
all the necessary changes.

References