Explore top 10 tips to secure your open-source projects now. Read More
×
cgmanager could be made to expose sensitive information or devices to
containers running on the system.
Software Description:
- cgmanager: Central cgroup manager daemon
Details:
Serge Hallyn discovered that cgmanager did not consistently enforce
proper nesting when modifying cgroup properties. A local attacker in a
privileged container could use this to set cgroup values for all cgroups.
The problem can be corrected by updating your system to the following package versions: Ubuntu 14.10: cgmanager 0.32-4ubuntu1.1 Ubuntu 14.04 LTS: cgmanager 0.24-0ubuntu7.1 After a standard system update you need to reboot your computer to make all the necessary changes.
https://ubuntu.com/security/notices/USN-2451-1
CVE-2014-1425
Get the latest Linux and open source security news straight to your inbox.