CVE-2015-6927
Published: 28 September 2015
vzctl before 4.9.4 determines the virtual environment (VE) layout based on the presence of root.hdd/DiskDescriptor.xml in the VE private directory, which allows local simfs container (CT) root users to change the root password for arbitrary ploop containers, as demonstrated by a symlink attack on the ploop container root.hdd file and then access a control panel.
Priority
Status
Package | Release | Status |
---|---|---|
vzctl Launchpad, Ubuntu, Debian |
artful |
Ignored
(end of life)
|
bionic |
Not vulnerable
(4.9.4-1)
|
|
cosmic |
Not vulnerable
(4.9.4-1)
|
|
disco |
Not vulnerable
(4.9.4-1)
|
|
precise |
Not vulnerable
|
|
trusty |
Does not exist
(trusty was needed)
|
|
upstream |
Released
(4.9.4-1)
|
|
vivid |
Ignored
(end of life)
|
|
wily |
Ignored
(end of life)
|
|
xenial |
Not vulnerable
(4.9.4-1)
|
|
yakkety |
Ignored
(end of life)
|
|
zesty |
Ignored
(end of life)
|
|
Patches: upstream: https://src.openvz.org/projects/OVZL/repos/vzctl/commits/9e98ea630ac0e88b44e3e23c878a5166aeb74e1c |