VDB

GCVE-VVD-MAGEIA-2017-167

GCVE-VVD-MAGEIA-2017-167
Advisory Published
Vulnetix · Advisory published June 12, 2017
Roman Fiedler discovered a directory traversal flaw in lxc-attach. An attacker with access to an LXC container could exploit this flaw to access files outside of the container (CVE-2016-8649). Jann Horn discovered that LXC incorrectly verified permissions when creating virtual network interfaces. A local attacker could possibly use this issue to create virtual network interfaces in network namespaces that they do not own (CVE-2017-5985). The lxc package has been updated to version 1.0.10 to fix these issues and other bugs.

Affected Products

VendorProductVersionsPlatforms
Mageialxc0 (affected), 1.0.10-1.mga5 (unaffected)

Browse GCVE Records

78,808 records in the GCVE database · Updated July 13, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›