Vulnerabilities > Canonical > Lxcfs

DATE CVE VULNERABILITY TITLE RISK
2015-12-07 CVE-2015-1344 Permissions, Privileges, and Access Controls vulnerability in Canonical Lxcfs and Ubuntu Linux
The do_write_pids function in lxcfs.c in LXCFS before 0.12 does not properly check permissions, which allows local users to gain privileges by writing a pid to the tasks file.
local
low complexity
canonical CWE-264
7.2
7.2
2015-12-07 CVE-2015-1342 Permissions, Privileges, and Access Controls vulnerability in Canonical Lxcfs and Ubuntu Linux
LXCFS before 0.12 does not properly enforce directory escapes, which might allow local users to gain privileges by (1) querying or (2) updating a cgroup.
local
low complexity
canonical CWE-264
4.6
4.6