{"id":"USN-2675-1","summary":"lxc vulnerabilities","details":"Roman Fiedler discovered that LXC had a directory traversal flaw when creating\nlock files. A local attacker could exploit this flaw to create an arbitrary\nfile as the root user. (CVE-2015-1331)\n\nRoman Fiedler discovered that LXC incorrectly trusted the container's proc\nfilesystem to set up AppArmor profile changes and SELinux domain transitions. A\nlocal attacker could exploit this flaw to run programs inside the container\nthat are not confined by AppArmor or SELinux. (CVE-2015-1334)\n","modified":"2026-04-22T09:13:47.488988Z","published":"2015-07-22T15:01:39Z","related":["UBUNTU-CVE-2015-1331","UBUNTU-CVE-2015-1334"],"upstream":["CVE-2015-1331","CVE-2015-1334","UBUNTU-CVE-2015-1331","UBUNTU-CVE-2015-1334"],"references":[{"type":"ADVISORY","url":"https://ubuntu.com/security/notices/USN-2675-1"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2015-1331"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2015-1334"}],"affected":[{"package":{"name":"lxc","ecosystem":"Ubuntu:14.04:LTS","purl":"pkg:deb/ubuntu/lxc@1.0.7-0ubuntu0.2?arch=source&distro=trusty"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1.0.7-0ubuntu0.2"}]}],"versions":["1.0.0~alpha1-0ubuntu11","1.0.0~alpha2-0ubuntu1","1.0.0~alpha2-0ubuntu3","1.0.0~alpha2-0ubuntu4","1.0.0~alpha2-0ubuntu5","1.0.0~alpha2-0ubuntu6","1.0.0~alpha3-0ubuntu1","1.0.0~alpha3-0ubuntu2","1.0.0~alpha3-0ubuntu3","1.0.0~alpha3-0ubuntu4","1.0.0~alpha3-0ubuntu5","1.0.0~alpha3-0ubuntu6","1.0.0~alpha3-0ubuntu7","1.0.0~alpha3-0ubuntu8","1.0.0~beta1-0ubuntu1","1.0.0~beta1-0ubuntu2","1.0.0~beta1-0ubuntu3","1.0.0~beta2-0ubuntu1","1.0.0~beta2-0ubuntu2","1.0.0~beta3-0ubuntu1","1.0.0~beta4-0ubuntu1","1.0.0~beta4-0ubuntu2","1.0.0~rc1-0ubuntu2","1.0.0~rc3-0ubuntu1","1.0.0~rc4-0ubuntu1","1.0.0-0ubuntu1","1.0.0-0ubuntu2","1.0.0-0ubuntu3","1.0.0-0ubuntu4","1.0.1-0ubuntu1","1.0.2-0ubuntu1","1.0.2-0ubuntu2","1.0.3-0ubuntu1","1.0.3-0ubuntu2","1.0.3-0ubuntu3","1.0.4-0ubuntu0.1","1.0.5-0ubuntu0.1","1.0.6-0ubuntu0.1","1.0.7-0ubuntu0.1"],"ecosystem_specific":{"availability":"No subscription required","binaries":[{"binary_name":"liblxc1","binary_version":"1.0.7-0ubuntu0.2"},{"binary_name":"lxc","binary_version":"1.0.7-0ubuntu0.2"},{"binary_name":"lxc-templates","binary_version":"1.0.7-0ubuntu0.2"},{"binary_name":"lxc-tests","binary_version":"1.0.7-0ubuntu0.2"},{"binary_name":"python3-lxc","binary_version":"1.0.7-0ubuntu0.2"}]},"database_specific":{"cves_map":{"cves":[{"id":"CVE-2015-1331","severity":[{"type":"Ubuntu","score":"medium"}]},{"id":"CVE-2015-1334","severity":[{"type":"Ubuntu","score":"medium"}]}],"ecosystem":"Ubuntu:14.04:LTS"},"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-2675-1.json"}}],"schema_version":"1.7.5"}