VDB
GCVE-VVD-MAGEIA-2017-167
GCVE-VVD-MAGEIA-2017-167
Advisory Published
Roman Fiedler discovered a directory traversal flaw in lxc-attach. An
attacker with access to an LXC container could exploit this flaw to
access files outside of the container (CVE-2016-8649).
Jann Horn discovered that LXC incorrectly verified permissions when
creating virtual network interfaces. A local attacker could possibly use
this issue to create virtual network interfaces in network namespaces
that they do not own (CVE-2017-5985).
The lxc package has been updated to version 1.0.10 to fix these issues
and other bugs.
Affected Products
| Vendor | Product | Versions | Platforms |
|---|---|---|---|
| Mageia | lxc | 0 (affected), 1.0.10-1.mga5 (unaffected) | — |
References
Browse GCVE Records
78,808 records in the GCVE database · Updated July 13, 2026
No matching records found.
Explore Further
Investigate this vulnerability in the interactive console or download the raw GCVE record.