CVE-2015-1334

EPSS 0.10%

Published: 8/12/2015Modified: 4/28/2026

Also known as:DEBIAN-CVE-2015-1334

Description

attach.c in LXC 1.1.2 and earlier uses the proc filesystem in a container, which allows local container users to escape AppArmor or SELinux confinement by mounting a proc filesystem with a crafted (1) AppArmor profile or (2) SELinux label.

Affected packages (1)

Debian/lxcfrom 0, < 1:1.0.7-4

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2015-1334