Launchpad CVE tracker

CVE 2017-5985

lxc-user-nic in Linux Containers (LXC) allows local users with a lxc-usernet allocation to create network interfaces on the host and choose the name of those interfaces by leveraging lack of netns ownership check.

Related bugs and status

CVE-2017-5985 (Candidate) is related to these bugs:

Bug #1654676: lxc-user-nic does not ensure that target netns is caller-owned

Summary				In	Importance	Status
	1654676	lxc-user-nic does not ensure that target netns is caller-owned		lxc (Ubuntu)	Undecided	Fix Released

Bug #1693002: SRU of LXC 1.0.10 (upstream bugfix release)

Summary				In	Importance	Status
	1693002	SRU of LXC 1.0.10 (upstream bugfix release)		lxc (Ubuntu)	Undecided	Invalid
	1693002	SRU of LXC 1.0.10 (upstream bugfix release)		lxc (Ubuntu Trusty)	Undecided	Fix Released

See the

CVE page on Mitre.org for more details.

References

MLIST: [lxc-devel] 20170309 S...
MLIST: [oss-security] 2017030...
CONFIRM: https://bugs.launchpad...
CONFIRM: https://github.com/lxc...
UBUNTU: USN-3224-1
BID: 96777
SUSE: openSUSE-SU-2019:1481

Launchpad.net

CVE 2017-5985

Related bugs and status

Related bugs

References