164 matches found
PT-2018-3455 · Linux Containers +3 · Lxc +3
Name of the Vulnerable Software and Affected Versions: LXC versions 2.0.9 and above LXC versions 3.0.0 and above, prior to 3.0.2 Description: The issue is related to the lxc-user-nic when deleting a network interface, which unconditionally opens a user-provided path. This can be used by an...
USN-3375-1 lxc vulnerability
It was discovered that LXC incorrectly handled the TIOCSTI ioctl. An attacker could possibly use this issue to escape LXC containers...
Heroku Dynos Explained
What are Heroku Dynos? If youve ever hosted an application on Heroku, the popular platform as a service, youre likely at least aware of the existence of "Dynos". But what exactly are Heroku Dynos and why are they important? As explained in Herokus docs, Dynos are simply lightweight Linux containe...
PYSEC-2017-21
OpenStack Nova-LXD before 13.1.1 uses the wrong name for the veth pairs when applying Neutron security group rules for instances, which allows remote attackers to bypass intended security restrictions...
LXC 'lxc/lxc_user_nic.c' elevation of privilege vulnerability
XC LinuX Containers is a user-space interface to the Linux kernel's container functionality that makes it easy for Linux users to create and manage system or application containers through a powerful API and simple tools. An elevation of privilege vulnerability exists in LXC 'lxc/lxcusernic.c'. A...
CVE-2017-5985
lxc-user-nic in Linux Containers LXC allows local users with a lxc-usernet allocation to create network interfaces on the host and choose the name of those interfaces by leveraging lack of netns ownership check...
CVE-2017-5985
lxc-user-nic in Linux Containers LXC allows local users with a lxc-usernet allocation to create network interfaces on the host and choose the name of those interfaces by leveraging lack of netns ownership check...
Code injection
lxc-user-nic in Linux Containers LXC allows local users with a lxc-usernet allocation to create network interfaces on the host and choose the name of those interfaces by leveraging lack of netns ownership check...
DEBIAN-CVE-2017-5985
lxc-user-nic in Linux Containers LXC allows local users with a lxc-usernet allocation to create network interfaces on the host and choose the name of those interfaces by leveraging lack of netns ownership check...
CVE-2017-5985
CVE-2017-5985 affects LXC’s lxc-user-nic component, where missing netns ownership checks let a local user with a lxc-usernet allocation create host interfaces and pick their names. The issue is documented across multiple vendors and advisories (openSUSE, Mageia, Arch Linux) with fixes in updated ...
CVE-2017-5985
lxc-user-nic in Linux Containers LXC allows local users with a lxc-usernet allocation to create network interfaces on the host and choose the name of those interfaces by leveraging lack of netns ownership check...
CVE-2017-5985
lxc-user-nic in Linux Containers LXC allows local users with a lxc-usernet allocation to create network interfaces on the host and choose the name of those interfaces by leveraging lack of netns ownership check...
Linux Containers Unauthorized Vulnerability
Linux Containers LXC is a set of container-based virtualization technologies at the operating system level. A security vulnerability exists in versions of LXC prior to 2016-02-22. An attacker could exploit the vulnerability to perform unauthorized operations...
CVE-2016-10124
An issue was discovered in Linux Containers LXC before 2016-02-22. When executing a program via lxc-attach, the nonpriv session can escape to the parent session by using the TIOCSTI ioctl to push characters into the terminal's input buffer, allowing an attacker to escape the container...
Input validation
An issue was discovered in Linux Containers LXC before 2016-02-22. When executing a program via lxc-attach, the nonpriv session can escape to the parent session by using the TIOCSTI ioctl to push characters into the terminal's input buffer, allowing an attacker to escape the container...
CVE-2016-10124
An issue was discovered in Linux Containers LXC before 2016-02-22. When executing a program via lxc-attach, the nonpriv session can escape to the parent session by using the TIOCSTI ioctl to push characters into the terminal's input buffer, allowing an attacker to escape the container...
CVE-2016-10124
CVE-2016-10124 affects Linux Containers (LXC) prior to 2016-02-22. When executing a program via lxc-attach, a non-privileged session can escape to the parent session by abusing the TIOCSTI ioctl to push characters into the terminal input buffer, enabling the attacker to escape the container. Mult...
CVE-2016-10124
An issue was discovered in Linux Containers LXC before 2016-02-22. When executing a program via lxc-attach, the nonpriv session can escape to the parent session by using the TIOCSTI ioctl to push characters into the terminal's input buffer, allowing an attacker to escape the container...
CVE-2016-10124
An issue was discovered in Linux Containers LXC before 2016-02-22. When executing a program via lxc-attach, the nonpriv session can escape to the parent session by using the TIOCSTI ioctl to push characters into the terminal's input buffer, allowing an attacker to escape the container...
CVE-2016-10124
An issue was discovered in Linux Containers LXC before 2016-02-22. When executing a program via lxc-attach, the nonpriv session can escape to the parent session by using the TIOCSTI ioctl to push characters into the terminal's input buffer, allowing an attacker to escape the container...