Jann Horn discovered that LXC incorrectly verified permissions when creating virtual network interfaces. A local attacker could possibly use this issue to create virtual network interfaces in network namespaces that they do not own.
{ "availability": "No subscription required", "binaries": [ { "lxc": "1.0.9-0ubuntu3", "python3-lxc": "1.0.9-0ubuntu3", "lxc-dbgsym": "1.0.9-0ubuntu3", "liblxc1": "1.0.9-0ubuntu3", "python3-lxc-dbgsym": "1.0.9-0ubuntu3", "lxc-dev": "1.0.9-0ubuntu3", "liblxc1-dbgsym": "1.0.9-0ubuntu3", "lxc-tests": "1.0.9-0ubuntu3", "lxc-templates-dbgsym": "1.0.9-0ubuntu3", "lxc-templates": "1.0.9-0ubuntu3", "lxc-dbg": "1.0.9-0ubuntu3", "lxc-tests-dbgsym": "1.0.9-0ubuntu3", "lxc-dev-dbgsym": "1.0.9-0ubuntu3" } ] }
{ "availability": "No subscription required", "binaries": [ { "lxc-common": "2.0.7-0ubuntu1~16.04.2", "python3-lxc": "2.0.7-0ubuntu1~16.04.2", "liblxc1": "2.0.7-0ubuntu1~16.04.2", "lua-lxc": "2.0.7-0ubuntu1~16.04.2", "lxc1": "2.0.7-0ubuntu1~16.04.2", "lxc1-dbgsym": "2.0.7-0ubuntu1~16.04.2", "lxc": "2.0.7-0ubuntu1~16.04.2", "lxc-dev": "2.0.7-0ubuntu1~16.04.2", "lxc-common-dbgsym": "2.0.7-0ubuntu1~16.04.2", "lua-lxc-dbgsym": "2.0.7-0ubuntu1~16.04.2", "lxc-templates-dbgsym": "2.0.7-0ubuntu1~16.04.2", "lxc-tests": "2.0.7-0ubuntu1~16.04.2", "lxc-templates": "2.0.7-0ubuntu1~16.04.2", "lxc-tests-dbgsym": "2.0.7-0ubuntu1~16.04.2", "liblxc1-dbgsym": "2.0.7-0ubuntu1~16.04.2" } ] }