21 matches found
Debian: Security Advisory (DLA-442-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2015:1829-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora 23 : lxc-1.1.4-2.fc23 (2015-9f8f4b182a)
Update LXC to the latest stable release. The full list of changes can be found here. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without...
Debian DLA-442-1 : lxc security update
Brief introduction CVE-2013-6441 The template script lxc-sshd used to mount itself as /sbin/init in the container using a writable bind-mount. This update resolved the above issue by using a read-only bind-mount instead preventing any form of potentially accidental damage. CVE-2015-1335 On...
[SECURITY] [DLA 442-1] lxc security update
Package : lxc Version : 0.7.2-1+deb6u1 CVE ID : CVE-2013-6441 CVE-2015-1335 Debian Bug : 800471 Brief introduction CVE-2013-6441 The template script lxc-sshd used to mount itself as /sbin/init in the container using a writable bind-mount. This update resolved the above issue by using a read-only...
DLA-442-1 lxc - security update
Bulletin has no description...
Mageia: Security Advisory (MGASA-2016-0036)
The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
MGASA-2016-0036 Updated lxc packages fix security vulnerability
A directory traversal flaw while lxc-start in lxc before 1.0.8 in initially setting up the mounts for a container CVE-2015-1335...
Updated lxc packages fix security vulnerability
A directory traversal flaw while lxc-start in lxc before 1.0.8 in initially setting up the mounts for a container CVE-2015-1335...
Debian DSA-3400-1 : lxc - security update
Roman Fiedler discovered a directory traversal flaw in LXC, the Linux Containers userspace tools. A local attacker with access to a LXC container could exploit this flaw to run programs inside the container that are not confined by AppArmor or expose unintended files in the host to the container...
[SECURITY] [DSA 3400-1] lxc security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3400-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso November 19, 2015 https://www.debian.org/security/faq -...
[SECURITY] [DSA 3400-1] lxc security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3400-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso November 19, 2015 https://www.debian.org/security/faq -...
SUSE SLED11 / SLES11 Security Update : lxc (SUSE-SU-2015:1829-1)
lxc was update to fix one security issue. The following vulnerability was fixed : - CVE-2015-1335: A directory traversal flaw while lxc-start is initially setting up the mounts for a container bsc946744 Note that Tenable Network Security has extracted the preceding description block directly from...
Oracle: Security Advisory (ELSA-2015-3087)
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
lxc security update
1.0.7-2.0.12 - Orabug 22011867 ol6 ct shutdown script remounts /dev/pts/ devices as ro on host system. 1.0.7-2.0.11 - Orabug 21842483 failed to create directory '/RUN/LXC/LOCK//CONTAINER/OL7.1/SNAPS' - CVE-2015-1335: Protect container mounts against symlinks. - Fixed build failure on OL6...
openSUSE Security Update : lxc (openSUSE-2015-648)
lxc was update to fix one security issue. The following vulnerability was fixed : - CVE-2015-1335: A directory traversal flaw while lxc-start is initially setting up the mounts for a container boo946744 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks i...
SUSE-SU-2015:1829-1 Security update for lxc
lxc was update to fix one security issue. The following vulnerability was fixed: CVE-2015-1335: A directory traversal flaw while lxc-start is initially setting up the mounts for a container bsc946744...
CVE-2015-1335
lxc-start in lxc before 1.0.8 and 1.1.x before 1.1.4 allows local container administrators to escape AppArmor confinement via a symlink attack on a 1 mount target or 2 bind mount source...
CVE-2015-1335
CVE-2015-1335 affects LXC (lxc-start) before 1.0.8 and 1.1.x before 1.1.4, enabling a local container administrator to escape AppArmor confinement via a symlink attack on a mount target or bind mount source. The connected documents corroborate a container breakout/unsafe mounting scenario and sho...
CVE-2015-1335
lxc-start in lxc before 1.0.8 and 1.1.x before 1.1.4 allows local container administrators to escape AppArmor confinement via a symlink attack on a 1 mount target or 2 bind mount source...