Vulnerabilities > Canonical > LXD > Medium

DATE CVE VULNERABILITY TITLE RISK
2016-06-09 CVE-2016-1582 Information Exposure vulnerability in Canonical LXD and Ubuntu Linux
LXD before 2.0.2 does not properly set permissions when switching an unprivileged container into privileged mode, which allows local users to access arbitrary world readable paths in the container directory via unspecified vectors.
local
low complexity
canonical CWE-200
5.5
2016-06-09 CVE-2016-1581 Improper Access Control vulnerability in Canonical LXD and Ubuntu Linux
LXD before 2.0.2 uses world-readable permissions for /var/lib/lxd/zfs.img when setting up a loop based ZFS pool, which allows local users to copy and read data from arbitrary containers via unspecified vectors.
local
low complexity
canonical CWE-284
5.5