lxc 1.0.7-0ubuntu0.5 source package in Ubuntu
Changelog
lxc (1.0.7-0ubuntu0.5) trusty-security; urgency=medium
* SECURITY UPDATE: Arbitrary host file access and AppArmor
confinement breakout via lxc-start following symlinks while
setting up mounts within a malicious container (LP: #1476662).
- debian/patches/0003-CVE-2015-1335.patch: block mounts to paths
containing symlinks and block bind mounts from relative paths
containing symlinks. Patch from upstream.
- CVE-2015-1335
-- Steve Beattie <email address hidden> Tue, 22 Sep 2015 15:07:00 -0700
Upload details
- Uploaded by:
- Steve Beattie
- Uploaded to:
- Trusty
- Original maintainer:
- Ubuntu Developers
- Architectures:
- linux-any
- Section:
- admin
- Urgency:
- Medium Urgency
See full publishing history Publishing
| Series | Published | Component | Section |
|---|
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| lxc_1.0.7.orig.tar.gz | 779.0 KiB | 3c0cb2d95d9d8a8d59c7189d237a45cde77f38ea180fbff2c148d59e176e9dab |
| lxc_1.0.7-0ubuntu0.5.debian.tar.gz | 54.3 KiB | 0efe99056a4151231dd3aab5658a198ee767154050906f0c3b871759cab87e99 |
| lxc_1.0.7-0ubuntu0.5.dsc | 2.2 KiB | 936fb05b388c9ca89a10339acc0d557a2be1328a0a7c8658b4a929fe587ea2c1 |
Available diffs
Binary packages built by this source
- liblxc1: Linux Containers userspace tools (library)
Containers are insulated areas inside a system, which have their own namespace
for filesystem, network, PID, IPC, CPU and memory allocation and which can be
created using the Control Group and Namespace features included in the Linux
kernel.
.
This package contains the libraries.
- liblxc1-dbgsym: debug symbols for package liblxc1
Containers are insulated areas inside a system, which have their own namespace
for filesystem, network, PID, IPC, CPU and memory allocation and which can be
created using the Control Group and Namespace features included in the Linux
kernel.
.
This package contains the libraries.
- lxc: Transitional package for lxc1
This is a transitional dummy package. It can safely be removed.
.
The currently recommended LXC experience is available as lxc2 and is
provided by LXD using the LXC backend.
- lxc-dbg: Linux Containers userspace tools (debug)
Containers are insulated areas inside a system, which have their own namespace
for filesystem, network, PID, IPC, CPU and memory allocation and which can be
created using the Control Group and Namespace features included in the Linux
kernel.
.
This package contains the debugging symbols.
- lxc-dbgsym: debug symbols for package lxc
Containers are insulated areas inside a system, which have their own namespace
for filesystem, network, PID, IPC, CPU and memory allocation and which can be
created using the Control Group and Namespace features included in the Linux
kernel.
.
This package provides the lxc-* tools, which can be used to start a single
daemon in a container, or to boot an entire "containerized" system, and to
manage and debug your containers.
- lxc-dev: Linux Containers userspace tools (development)
Containers are insulated areas inside a system, which have their own namespace
for filesystem, network, PID, IPC, CPU and memory allocation and which can be
created using the Control Group and Namespace features included in the Linux
kernel.
.
This package contains the development files.
- lxc-dev-dbgsym: debug symbols for package lxc-dev
Containers are insulated areas inside a system, which have their own namespace
for filesystem, network, PID, IPC, CPU and memory allocation and which can be
created using the Control Group and Namespace features included in the Linux
kernel.
.
This package contains the development files.
- lxc-templates: Linux Containers userspace tools (templates)
Containers are insulated areas inside a system, which have their own namespace
for filesystem, network, PID, IPC, CPU and memory allocation and which can be
created using the Control Group and Namespace features included in the Linux
kernel.
.
This package contains the templates.
- lxc-templates-dbgsym: debug symbols for package lxc-templates
Containers are insulated areas inside a system, which have their own namespace
for filesystem, network, PID, IPC, CPU and memory allocation and which can be
created using the Control Group and Namespace features included in the Linux
kernel.
.
This package contains the templates.
- lxc-tests: Linux Containers userspace tools (test binaries)
Containers are insulated areas inside a system, which have their own namespace
for filesystem, network, PID, IPC, CPU and memory allocation and which can be
created using the Control Group and Namespace features included in the Linux
kernel.
.
This package contains the test binaries. Those binaries are primarily
used for autopkgtest and by some developers. They are not meant to be
installed on regular user systems.
- lxc-tests-dbgsym: debug symbols for package lxc-tests
Containers are insulated areas inside a system, which have their own namespace
for filesystem, network, PID, IPC, CPU and memory allocation and which can be
created using the Control Group and Namespace features included in the Linux
kernel.
.
This package contains the test binaries. Those binaries are primarily
used for autopkgtest and by some developers. They are not meant to be
installed on regular user systems.
- python3-lxc: Linux Containers userspace tools (Python 3.x bindings)
Containers are insulated areas inside a system, which have their own namespace
for filesystem, network, PID, IPC, CPU and memory allocation and which can be
created using the Control Group and Namespace features included in the Linux
kernel.
.
This package contains the Python 3.x bindings.
- python3-lxc-dbgsym: debug symbols for package python3-lxc
Containers are insulated areas inside a system, which have their own namespace
for filesystem, network, PID, IPC, CPU and memory allocation and which can be
created using the Control Group and Namespace features included in the Linux
kernel.
.
This package contains the Python 3.x bindings.
