rpm package
suse/lxcfs&distro=SUSE Package Hub 15
pkg:rpm/suse/lxcfs&distro=SUSE%20Package%20Hub%2015
Vulnerabilities (2)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2019-5736 | — | < 3.0.3-bp150.3.3.1 | 3.0.3-bp150.3.3.1 | Feb 11, 2019 | runc through 1.0-rc6, as used in Docker before 18.09.2 and other products, allows attackers to overwrite the host runc binary (and consequently obtain host root access) by leveraging the ability to execute a command as root within one of these types of containers: (1) a new conta | ||
| CVE-2018-6556 | Low | 3.3 | < 3.0.3-bp150.3.3.1 | 3.0.3-bp150.3.3.1 | Aug 10, 2018 | lxc-user-nic when asked to delete a network interface will unconditionally open a user provided path. This code path may be used by an unprivileged user to check for the existence of a path which they wouldn't otherwise be able to reach. It may also be used to trigger side effect |
- CVE-2019-5736Feb 11, 2019affected < 3.0.3-bp150.3.3.1fixed 3.0.3-bp150.3.3.1
runc through 1.0-rc6, as used in Docker before 18.09.2 and other products, allows attackers to overwrite the host runc binary (and consequently obtain host root access) by leveraging the ability to execute a command as root within one of these types of containers: (1) a new conta
- affected < 3.0.3-bp150.3.3.1fixed 3.0.3-bp150.3.3.1
lxc-user-nic when asked to delete a network interface will unconditionally open a user provided path. This code path may be used by an unprivileged user to check for the existence of a path which they wouldn't otherwise be able to reach. It may also be used to trigger side effect