Alerts This Week
Warning Icon 1 637
Alerts This Week
Warning Icon 1 637

Ubuntu 15.10 USN-2809-1 Moderate: LXD Privilege Escalation

Calendar Nov 12, 2015 User Avatar LinuxSecurity Advisories
1 min read
Ubuntu Large Esm H500
Topics%20covered

Topics Covered

security advisory privilege escalation ubuntu socket permissions lxd
LXD could be made to run programs as an administrator. 
=========================================================================Ubuntu Security Notice USN-2809-1
November 12, 2015

lxd vulnerability
=========================================================================
A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 15.10

Summary:

LXD could be made to run programs as an administrator.

Software Description:
- lxd: Container hypervisor based on LXC

Details:

Jeroen Simonetti discovered that LXD incorrectly set socket permissions. A
local attacker could use this issue to escalate privileges.

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 15.10:
  lxd                             0.20-0ubuntu4.1

In general, a standard system update will make all the necessary changes.

References:
  https://ubuntu.com/security/notices/USN-2809-1
  https://bugs.launchpad.net/ubuntu/+source/lxd/+bug/1515689

Package Information:
  https://launchpad.net/ubuntu/+source/lxd/0.20-0ubuntu4.1

Ubuntu 15.10 USN-2809-1 Moderate: LXD Privilege Escalation

ubuntu
Calendar Grey November 12, 2015
Dist Ubuntu Esm H88
LXD security flaw in Ubuntu 15.10 permits local adversaries to gain elevated privileges through improperly set socket permissions.
LXD could be made to run programs as an administrator.

Summary

Topics%20covered

Topics Covered

security advisory privilege escalation ubuntu socket permissions lxd

Update Instructions

The problem can be corrected by updating your system to the following package versions: Ubuntu 15.10: lxd 0.20-0ubuntu4.1 In general, a standard system update will make all the necessary changes.

References

https://ubuntu.com/security/notices/USN-2809-1

https://bugs.launchpad.net/ubuntu/+source/lxd/+bug/1515689

November 12, 2015

Topics%20covered

Topics Covered

security advisory privilege escalation ubuntu socket permissions lxd

Package Information

https://launchpad.net/ubuntu/+source/lxd/0.20-0ubuntu4.1

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Related News

Your message here