CVE-2015-6927

vzctl before 4.9.4 determines the virtual environment VE layout based on the presence of root.hdd/DiskDescriptor.xml in the VE private directory, which allows local simfs container CT root users to change the root password for arbitrary ploop containers, as demonstrated by a symlink attack on the...

vzctl privilege escalation

It's possible to get control over ploop-based containers...

DSA-3357-1 vzctl - security update

Bulletin has no description...

LXC Code Injection Vulnerability

LXC LinuX Containers is a user-space interface to the Linux kernel's container functionality that makes it easy for Linux users to create and manage system or application containers through a powerful API and simple tools. A security vulnerability exists in the attach.c file in LXC 1.1.2 and...

DEBIAN-CVE-2015-1334

attach.c in LXC 1.1.2 and earlier uses the proc filesystem in a container, which allows local container users to escape AppArmor or SELinux confinement by mounting a proc filesystem with a crafted 1 AppArmor profile or 2 SELinux label...

[SECURITY] Fedora 21 Update: lxc-1.0.7-2.fc21

Linux Resource Containers provide process and resource isolation without the overhead of full virtualization...

[SECURITY] Fedora 23 Update: lxc-1.1.2-2.fc23

Linux Resource Containers provide process and resource isolation without the overhead of full virtualization...

Debian DSA-3317-1 : lxc - security update

Several vulnerabilities have been discovered in LXC, the Linux Containers userspace tools. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2015-1331 Roman Fiedler discovered a directory traversal flaw in LXC when creating lock files. A local attacker cou...

Debian Security Advisory DSA 3317-1 (lxc - security update)

Several vulnerabilities have been discovered in LXC, the Linux Containers userspace tools. The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2015-1331 Roman Fiedler discovered a directory traversal flaw in LXC when creating lock files. A local attacker could...

Debian: Security Advisory (DSA-3317-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

USN-2675-1 lxc vulnerabilities

Roman Fiedler discovered that LXC had a directory traversal flaw when creating lock files. A local attacker could exploit this flaw to create an arbitrary file as the root user. CVE-2015-1331 Roman Fiedler discovered that LXC incorrectly trusted the container's proc filesystem to set up AppArmor...

USN-2569-2: Apport vulnerability

USN-2569-1 fixed a vulnerability in Apport. Tavis Ormandy discovered that the fixed packages were still vulnerable to a privilege escalation attack. This update completely disables crash report handling for containers until a more complete solution is available. Original advisory details: Stéphan...

USN-2569-2 apport vulnerability

USN-2569-1 fixed a vulnerability in Apport. Tavis Ormandy discovered that the fixed packages were still vulnerable to a privilege escalation attack. This update completely disables crash report handling for containers until a more complete solution is available. Original advisory details: Stéphan...

openSUSE Security Update : libvirt (openSUSE-2015-112)

This update fixes the following security issues : - CVE-2015-0236: libvirt: access control bypass bsc914693 - bnc905086: libvirt cannot properly determine cpu flags with qemu-kvm - Fixed allowing devices for containers. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and...

Unspecified Vulnerability in Oracle Containers for J2EE

Oracle Containers for J2EE is a lightweight SOA container. A security vulnerability exists in Oracle Containers for J2EE that could be exploited by remote attackers to compromise system confidentiality...

CVE-2015-0372

Unspecified vulnerability in the Oracle Containers for J2EE component in Oracle Fusion Middleware 10.1.3.5 allows remote attackers to affect confidentiality via unknown vectors...

CVE-2015-0372

Technical details for CVE-2015-0372 are not publicly available in the provided documents; no affected product/version or root cause is specified here. Monitor for updates.

Docker Containers Enumeration (deprecated)

Binary data 7163.pasl...

CVE-2014-6408

Docker 1.3.0 through 1.3.1 allows remote attackers to modify the default run profile of image containers and possibly bypass the container by applying unspecified security options to an image...

PT-2014-7211 · Docker +1 · Docker +1

Name of the Vulnerable Software and Affected Versions: Docker versions 1.3.0 through 1.3.1 Description: The issue allows remote attackers to modify the default run profile of image containers. This could possibly lead to bypassing the container by applying unspecified security options to an image...