Vulnerability in Linuxcontainers Lxc
CVE-2015-1331
lxclock.c in LXC 1.1.2 and earlier allows local users to create arbitrary files via a symlink attack on /run/lock/lxc/*.
EPSS: 0.000 (15.5th percentile) — read the EPSS interpretation.
Affected products
- Linuxcontainers Lxc
- N/a — versions n/a
Weakness classification (CWE)
References
- DSA-3317 (vendor-advisory, x_refsource_DEBIAN)
- 75999 (vdb-entry, x_refsource_BID)
- USN-2675-1 (x_refsource_UBUNTU, vendor-advisory)
- openSUSE-SU-2015:1315 (vendor-advisory, x_refsource_SUSE)
- security@ubuntu.com (x_refsource_MISC)
- security@ubuntu.com (x_refsource_CONFIRM)
- security@ubuntu.com (x_refsource_CONFIRM, Exploit)
- openSUSE-SU-2019:1481 (vendor-advisory, x_refsource_SUSE)