Описание
ELSA-2015-3087: lxc security update (IMPORTANT)
[1.0.7-2.0.12]
- [Orabug 22011867] ol6 ct shutdown script remounts /dev/pts/* devices as ro on host system.
[1.0.7-2.0.11]
- [Orabug 21842483] failed to create directory '/RUN/LXC/LOCK//CONTAINER/OL7.1/SNAPS'
- CVE-2015-1335: Protect container mounts against symlinks.
- Fixed build failure on OL6.
Обновленные пакеты
Oracle Linux 6
Oracle Linux x86_64
lxc
1.0.7-2.0.12.el6
lxc-devel
1.0.7-2.0.12.el6
lxc-libs
1.0.7-2.0.12.el6
Oracle Linux 7
Oracle Linux x86_64
lxc
1.0.7-2.0.12.el7
lxc-devel
1.0.7-2.0.12.el7
lxc-libs
1.0.7-2.0.12.el7
Связанные CVE
Связанные уязвимости
lxc-start in lxc before 1.0.8 and 1.1.x before 1.1.4 allows local container administrators to escape AppArmor confinement via a symlink attack on a (1) mount target or (2) bind mount source.
lxc-start in lxc before 1.0.8 and 1.1.x before 1.1.4 allows local container administrators to escape AppArmor confinement via a symlink attack on a (1) mount target or (2) bind mount source.
lxc-start in lxc before 1.0.8 and 1.1.x before 1.1.4 allows local cont ...
lxc-start in lxc before 1.0.8 and 1.1.x before 1.1.4 allows local container administrators to escape AppArmor confinement via a symlink attack on a (1) mount target or (2) bind mount source.