blob: 69191d927a4e3749953e868bd1ae78773170c113 [file] [log] [blame]
module: github.com/lxc/lxd
package: github.com/lxc/lxd/shared
versions:
- fixed: v0.0.0-20151004155856-19c6961cc101
description: |
A race between chown and chmod operations during a container
filesystem shift may allow a user who can modify the filesystem to
chmod an arbitrary path of their choice, rather than the expected
path.
cves:
- CVE-2015-1340
credit: Seth Arnold
symbols:
- IdmapSet.doUidshiftIntoContainer
links:
pr: https://github.com/lxc/lxd/pull/1189
commit: https://github.com/lxc/lxd/commit/19c6961cc1012c8a529f20807328a9357f5034f4
context:
- https://bugs.launchpad.net/ubuntu/+source/lxd/+bug/1502270