13 matches found
CVE-2017-18641
In LXC 2.0, many template scripts download code over cleartext HTTP, and omit a digital-signature check, before running it to bootstrap containers...
EUVD-2015-1474
Malware in sbrugna...
EUVD-2018-18308
Malware in sbrugna...
EUVD-2016-9488
Malware in sbrugna...
EUVD-2013-6249
Malware in sbrugna...
EUVD-2022-50682
Malicious code in bioql PyPI...
Security update for lxc (moderate)
openSUSE Security Update: Security update for lxc Announcement ID: openSUSE-SU-2024:0342-1 Rating: moderate References: 1204842 1206779 Cross-References: CVE-2022-47952 CVSS scores: CVE-2022-47952 SUSE: 6.3 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N Affected Products: openSUSE Backports...
OPENSUSE-SU-2019:1230-1 Security update for lxc
This update for lxc fixes the following issues: The following security vulnerability was fixed: - CVE-2018-6556: Fixed an information leak and possible open side effects to regular users via lxc-user-nic boo988348 This update was imported from the openSUSE:Leap:15.0:Update update project...
Ubuntu 18.04 LTS : LXC vulnerability (USN-3730-1)
The remote Ubuntu 18.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-3730-1 advisory. Matthias Gerstner discovered that LXC incorrectly handled the lxc-user-nic utility. A local attacker could possibly use this issue to open arbitrary files. Tenabl...
Ubuntu 14.04 LTS : LXC vulnerability (USN-3375-1)
The remote Ubuntu 14.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-3375-1 advisory. It was discovered that LXC incorrectly handled the TIOCSTI ioctl. An attacker could possibly use this issue to escape LXC containers. Tenable has extracted the...
Ubuntu 14.04 LTS : LXC vulnerability (USN-2753-1)
The remote Ubuntu 14.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-2753-1 advisory. Roman Fiedler discovered a directory traversal flaw in lxc-start. A local attacker with access to an LXC container could exploit this flaw to run programs inside...
CVE-2013-6441
The lxc-sshd template templates/lxc-sshd.in in LXC before 1.0.0.beta2 uses read-write permissions when mounting /sbin/init, which allows local users to gain privileges by modifying the init file...
Ubuntu 13.10 : lxc vulnerability (USN-2104-1)
Florian Sagar discovered that the LXC sshd template set incorrect mount permissions. An attacker could possibly use this flaw to cause privilege escalation on the host. Note that Tenable Network Security has extracted the preceding description block directly from the Ubuntu security advisory...