In nspawn in systemd 233 through 259 before 260, an escape-to-host action can occur via a crafted optional config file.

A flaw was found in nspawn, a container runtime environment within systemd. A local attacker or a process within an nspawn container could exploit this vulnerability by using a specially crafted optional configuration file. This could allow the attacker to escape the container's isolation and execute arbitrary actions on the host system.

In nspawn in systemd 233 through 259 before 260, an escape-to-host action can occur via a crafted optional config file.

In nspawn in systemd 233 through 259 before 260, an escape-to-host act ...

In nspawn in systemd 233 through 259 before 260, an escape-to-host action can occur via a crafted optional config file.