CVE-2015-1342

Publication date 17 November 2015

Last updated 24 July 2024


Ubuntu priority

LXCFS before 0.12 does not properly enforce directory escapes, which might allow local users to gain privileges by (1) querying or (2) updating a cgroup.

Status

Package Ubuntu Release Status
lxcfs 15.10 wily
Fixed 0.10-0ubuntu2.1
15.04 vivid
Fixed 0.7-0ubuntu4.1
14.04 LTS trusty Not in release
12.04 LTS precise Not in release

References

Related Ubuntu Security Notices (USN)

    • USN-2813-1
    • LXCFS vulnerabilities
    • 17 November 2015

Other references