[SECURITY] Fedora 33 Update: containernetworking-plugins-1.0.0-0.2.rc1.fc33

The CNI Container Network Interface project consists of a specification and libraries for writing plugins to configure network interfaces in Linux containers, along with a number of supported plugins. CNI concerns itself only with network connectivity of containers and removing allocated resource...

CVE-2021-22555

A flaw was discovered in processing setsockopt IPTSOSETREPLACE or IP6TSOSETREPLACE for 32 bit processes on 64 bit systems. This flaw will allow local user to gain privileges or cause a DoS through user name space. This action is usually restricted to root-privileged users but can also be leverage...

[SECURITY] Fedora 33 Update: containernetworking-plugins-0.9.1-2.fc33

The CNI Container Network Interface project consists of a specification and libraries for writing plugins to configure network interfaces in Linux containers, along with a number of supported plugins. CNI concerns itself only with network connectivity of containers and removing allocated resourc ...

Fedora: Security Advisory for containernetworking-plugins (FEDORA-2021-fb466fb623)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Cloud Native Computing Foundation CNI Path Traversal Vulnerability

Cloud Native Computing Foundation CNI is a plugin from the Cloud Native Computing Foundation Foundation for providing network support for containers in Linux environments. The application only deals with network connectivity for containers and deletion of allocated resources when deleting...

Target Vela Operating System Command Injection Vulnerability

Target Vela is a pipeline automation CI/CD framework based on Go language, Linux container technology from Target Canada. Vela suffers from a security vulnerability that allows the disclosure of server configuration. An attacker could exploit the vulnerability to retrieve configuration informatio...

Moderate: Red Hat Security Advisory: containernetworking-plugins security update

An update for containernetworking-plugins is now available for Red Hat Enterprise Linux 7 Extras. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

DEBIAN-CVE-2017-18641

In LXC 2.0, many template scripts download code over cleartext HTTP, and omit a digital-signature check, before running it to bootstrap containers...

[SECURITY] Fedora 29 Update: containernetworking-plugins-0.7.5-1.fc29

The CNI Container Network Interface project consists of a specification and libraries for writing plugins to configure network interfaces in Linux containers, along with a number of supported plugins. CNI concerns itself only with network connectivity of containers and removing allocated resourc ...

Fedora Update for containernetworking-plugins FEDORA-2019-24217abfdf

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Fedora Update for containernetworking-plugins FEDORA-2019-d2b57d3b19

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

[SECURITY] Fedora 30 Update: containernetworking-plugins-0.7.5-1.fc30

The CNI Container Network Interface project consists of a specification and libraries for writing plugins to configure network interfaces in Linux containers, along with a number of supported plugins. CNI concerns itself only with network connectivity of containers and removing allocated resourc ...

openSUSE Security Update : lxc / lxcfs (openSUSE-2019-1275)

This update for lxc, lxcfs to version 3.1.0 fixes the following issues : Security issues fixed : - CVE-2019-5736: Fixed a container breakout vulnerability boo1122185. - CVE-2018-6556: Enable setuid bit on lxc-user-nic boo988348. Non-security issues fixed : - Update to LXC 3.1.0. The changelog is...

GLSA-201808-02 : LinuX Containers user space utilities: Arbitrary file read

The remote host is affected by the vulnerability described in GLSA-201808-02 LinuX Containers user space utilities: Arbitrary file read lxc-user-nic when asked to delete a network interface will unconditionally open a user provided path. This code path may be used by an unprivileged user to check...

LinuX Containers user space utilities: Arbitrary file read

Background LinuX Containers user space utilities. Description lxc-user-nic when asked to delete a network interface will unconditionally open a user provided path. This code path may be used by an unprivileged user to check for the existence of a path which they wouldn’t otherwise be able to reac...

DEBIAN-CVE-2018-6556

lxc-user-nic when asked to delete a network interface will unconditionally open a user provided path. This code path may be used by an unprivileged user to check for the existence of a path which they wouldn't otherwise be able to reach. It may also be used to trigger side effects by causing a...

USN-3730-1 lxc vulnerability

Matthias Gerstner discovered that LXC incorrectly handled the lxc-user-nic utility. A local attacker could possibly use this issue to open arbitrary files...

USN-3730-1: LXC vulnerability

Matthias Gerstner discovered that LXC incorrectly handled the lxc-user-nic utility. A local attacker could possibly use this issue to open arbitrary files...

The vulnerability of the Apport software for generating and sending error reports on the Ubuntu operating system allows a perpetrator to trigger a service failure, exit from LXC, or gain root privileges.

The vulnerability of the Apport software for generating and sending error reports on the Ubuntu operating system is related to an uncontrolled resource consumption. Exploiting this vulnerability can allow a hacker to cause service failures, trigger exits from LXC Linux Containers, or gain root...

LXC: Remote security bypass

Background LinuX Containers userspace utilities Description Previous versions of lxc-attach ran a shell or the specified command without allocating a pseudo terminal making it vulnerable to input faking via a TIOCSTI ioctl call. Impact Remote attackers can escape the container and perform...