Linuxcontainers Lxc
8 CVEs affecting Linuxcontainers Lxc. Latest disclosed: 2026-05-05. Critical: 1, High: 1.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2016-8649 | Critical | 9.1 | 2017-05-01 | lxc-attach in LXC before 1.0.9 and 2.x before 2.0.6 allows an attacker inside of an unprivileged container to use an inherited file descriptor, of the host's /… |
CVE-2016-10124 | High | 8.6 | 2017-01-09 | An issue was discovered in Linux Containers (LXC) before 2016-02-22. When executing a program via lxc-attach, the nonpriv session can escape to the parent sess… |
CVE-2026-39402 | Medium | 6.5 | 2026-05-05 | lxc is a Linux container runtime. In the setuid helper lxc-user-nic, the delete path contains a logic flaw in the find_line() function that allows an unprivile… |
CVE-2017-5985 | Low | 3.3 | 2017-03-14 | lxc-user-nic in Linux Containers (LXC) allows local users with a lxc-usernet allocation to create network interfaces on the host and choose the name of those i… |
CVE-2015-1335 | | 2015-10-01 | lxc-start in lxc before 1.0.8 and 1.1.x before 1.1.4 allows local container administrators to escape AppArmor confinement via a symlink attack on a (1) mount t… | |
CVE-2015-1334 | | 2015-08-12 | attach.c in LXC 1.1.2 and earlier uses the proc filesystem in a container, which allows local container users to escape AppArmor or SELinux confinement by moun… | |
CVE-2015-1331 | | 2015-08-12 | lxclock.c in LXC 1.1.2 and earlier allows local users to create arbitrary files via a symlink attack on /run/lock/lxc/*. | |
CVE-2013-6441 | | 2014-02-14 | The lxc-sshd template (templates/lxc-sshd.in) in LXC before 1.0.0.beta2 uses read-write permissions when mounting /sbin/init, which allows local users to gain… |