CVE-2016-8649

Priority
Description
lxc-attach in LXC before 1.0.9 and 2.x before 2.0.6 allows an attacker
inside of an unprivileged container to use an inherited file descriptor, of
the host's /proc, to access the rest of the host's filesystem via the
openat() family of syscalls.
Assigned-to
tyhicks
Notes
Package
Source: lxc (LP Ubuntu Debian)
Upstream:needed
Ubuntu 12.04 ESM (Precise Pangolin):DNE (precise was needs-triage)
Ubuntu 14.04 ESM (Trusty Tahr):not-affected (trusty was released [1.0.8-0ubuntu0.4])
Ubuntu 16.04 LTS (Xenial Xerus):released (2.0.5-0ubuntu1~ubuntu16.04.3)
More Information

Updated: 2020-09-10 05:32:44 UTC (commit 81a23a978c4436cd99e1d040e9e73e9146876281)