Vulnerability in Linuxcontainers Lxc
CVE-2015-1334
attach.c in LXC 1.1.2 and earlier uses the proc filesystem in a container, which allows local container users to escape AppArmor or SELinux confinement by mounting a proc filesystem with a crafted (1) AppArmor profile or (2) SELinux label.
EPSS: 0.001 (27.5th percentile) — read the EPSS interpretation.
Affected products
- Linuxcontainers Lxc
- N/a — versions n/a
Weakness classification (CWE)
References
- DSA-3317 (vendor-advisory, x_refsource_DEBIAN)
- USN-2675-1 (x_refsource_UBUNTU, vendor-advisory)
- openSUSE-SU-2015:1315 (vendor-advisory, x_refsource_SUSE)
- 75998 (vdb-entry, x_refsource_BID)
- security@ubuntu.com (x_refsource_MISC)
- security@ubuntu.com (x_refsource_CONFIRM)
- openSUSE-SU-2015:1317 (vendor-advisory, x_refsource_SUSE)
- openSUSE-SU-2019:1481 (vendor-advisory, x_refsource_SUSE)