2 matches found
UBUNTU-CVE-2026-34179
In Canonical LXD versions 4.12 through 6.7, the doCertificateUpdate function in lxd/certificates.go does not validate the Type field when handling PUT/PATCH requests to /1.0/certificates/fingerprint for restricted TLS certificate users, allowing a remote authenticated attacker to escalate...
Ubuntu lxd package mode error vulnerability
The Ubuntu lxd package is a Linux Container Daemon OpenStack working environment package developed by Canonical UK and the Ubuntu Foundation. A security vulnerability exists in the lxd-unix.socket systemd unit file in versions of the Ubuntu lxd package prior to 0.20-0ubuntu4.1. Since the program...