Download
| Alert*
oval:org.secpod.oval:def:52589
lxc: Linux Containers userspace tools Details: USN-2753-1 fixed a vulnerability in LXC. The update caused a regression that prevented some containers from starting. This regression only affected containers that had an absolute path specified as a bind mount target in their configuration file. This u ... oval:org.secpod.oval:def:52596 lxc: Linux Containers userspace tools Details: USN-2753-1 fixed a vulnerability in LXC. The update caused a regression that prevented some containers from starting. This regression only affected containers that had a path that contained a "/./" directory specified as a bind mount target in their con ... oval:org.secpod.oval:def:602180 lxc is installed oval:org.secpod.oval:def:1501107 lxc is installed oval:org.secpod.oval:def:704253 lxc: Linux Containers userspace tools LXC would allow unintended access to files. oval:org.secpod.oval:def:51103 lxc: Linux Containers userspace tools LXC would allow unintended access to files. oval:org.secpod.oval:def:109414 Linux Resource Containers provide process and resource isolation without the overhead of full virtualization. oval:org.secpod.oval:def:109392 Linux Resource Containers provide process and resource isolation without the overhead of full virtualization. oval:org.secpod.oval:def:602178 Several vulnerabilities have been discovered in LXC, the Linux Containers userspace tools. The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2015-1331 Roman Fiedler discovered a directory traversal flaw in LXC when creating lock files. A local attacker could exp ... oval:org.secpod.oval:def:1501113 Important: Oracle Linux 7 lxc security update. oval:org.secpod.oval:def:1501106 Important: Oracle Linux 6 lxc security update. oval:org.secpod.oval:def:1501190 lxc-start in lxc before 1.0.8 and 1.1.x before 1.1.4 allows local container administrators to escape AppArmor confinement via a symlink attack on a (1) mount target or (2) bind mount source. oval:org.secpod.oval:def:52585 lxc: Linux Containers userspace tools LXC could be made to start containers without AppArmor confinement or access the host filesystem. oval:org.secpod.oval:def:109724 Linux Resource Containers provide process and resource isolation without the overhead of full virtualization. oval:org.secpod.oval:def:109729 Linux Resource Containers provide process and resource isolation without the overhead of full virtualization. oval:org.secpod.oval:def:602280 Roman Fiedler discovered a directory traversal flaw in LXC, the Linux Containers userspace tools. A local attacker with access to a LXC container could exploit this flaw to run programs inside the container that are not confined by AppArmor or expose unintended files in the host to the container. oval:org.secpod.oval:def:1501189 lxc-start in lxc before 1.0.8 and 1.1.x before 1.1.4 allows local container administrators to escape AppArmor confinement via a symlink attack on a (1) mount target or (2) bind mount source. oval:org.secpod.oval:def:702782 lxc: Linux Containers userspace tools Details: USN-2753-1 fixed a vulnerability in LXC. The update caused a regression that prevented some containers from starting. This regression only affected containers that had a path that contained a "/./" directory specified as a bind mount target in their con ... oval:org.secpod.oval:def:702763 lxc: Linux Containers userspace tools LXC could be made to start containers without AppArmor confinement or access the host filesystem. oval:org.secpod.oval:def:702771 lxc: Linux Containers userspace tools Details: USN-2753-1 fixed a vulnerability in LXC. The update caused a regression that prevented some containers from starting. This regression only affected containers that had an absolute path specified as a bind mount target in their configuration file. This u ... oval:org.secpod.oval:def:111751 Linux Resource Containers provide process and resource isolation without the overhead of full virtualization. oval:org.secpod.oval:def:111752 Linux Resource Containers provide process and resource isolation without the overhead of full virtualization. oval:org.secpod.oval:def:111764 Linux Resource Containers provide process and resource isolation without the overhead of full virtualization. oval:org.secpod.oval:def:51740 lxc: Linux Containers userspace tools LXC could be made to create arbitrary virtual network interfaces as an administrator. oval:org.secpod.oval:def:703508 lxc: Linux Containers userspace tools LXC could be made to create arbitrary virtual network interfaces as an administrator. oval:org.secpod.oval:def:50663 runc through 1.0-rc6, as used in Docker before 18.09.2 and other products, allows attackers to overwrite the host runc binary (and consequently obtain host root access) by leveraging the ability to execute a command as root within one of these types of containers: (1) a new container with an attacke ... oval:org.secpod.oval:def:117051 Linux Resource Containers provide process and resource isolation without the overhead of full virtualization. oval:org.secpod.oval:def:117052 Linux Resource Containers provide process and resource isolation without the overhead of full virtualization. |