[Bug 1476662] Re: lxc-start symlink vulnerabilities may allow guest to read host filesystem, interfere with apparmor
Mike Gabriel
mike.gabriel at das-netzwerkteam.de
Fri Dec 4 15:31:59 UTC 2015
Hi all,
today I worked on backporting available fixes for CVE-2015-1335 to LXC
0.7.x (as found in Debian squeeze-lts).
The patch is attached, I am still in the testing-for-regressions phase.
Can any of the LXC devs take a look at the patch and maybe see if it is
suitable for Ubuntu 12.04, as well?
Greets,
Mike (aka sunweaver at debian.org)
** Patch added: "Backport fix for CVE-2015-1335 to LXC 0.7.x (Ubuntu 12.04 / Debian squeeze-lts)"
https://bugs.launchpad.net/ubuntu/+source/lxc/+bug/1476662/+attachment/4529631/+files/CVE-2015-1335.patch
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to lxc in Ubuntu.
https://bugs.launchpad.net/bugs/1476662
Title:
lxc-start symlink vulnerabilities may allow guest to read host
filesystem, interfere with apparmor
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/lxc/+bug/1476662/+subscriptions
More information about the Ubuntu-server-bugs
mailing list