3 matches found
CVE-2019-5736
CVE-2019-5736 affects runc as shipped in Docker before 18.09.2 and other products, enabling a container to overwrite the host runc binary via /proc/self/exe and gain host root. Root cause: file-descriptor mishandling in runc leading to command execution as root inside a container. Affected versio...
CVE-2016-8649
CVE-2016-8649 affects the LXC project: vulnerable in lxc-attach within LXC before 1.0.9 and 2.x before 2.0.6, allowing an unprivileged container to escape to the host filesystem via an inherited host /proc fd. Underlying issue is a guest escape Vulnerability via ptrace of lxc-attach. Affected ver...
CVE-2026-39402
Summary: CVE-2026-39402 affects the LXC user network helper (lxc-user-nic) in multi-tenant setups using Open vSwitch bridges. The delete path in the setuid helper contains a logic flaw in find_line() that can authorize deletion based on a name match even when ownership/type/link fields belong to ...