CVE-2015-1344

Publication date 17 November 2015

Last updated 24 July 2024

Ubuntu priority

The do_write_pids function in lxcfs.c in LXCFS before 0.12 does not properly check permissions, which allows local users to gain privileges by writing a pid to the tasks file.

Status

Show unmaintained releases

Package	Ubuntu Release	Status
lxcfs	15.10 wily	Fixed 0.10-0ubuntu2.1
	15.04 vivid	Fixed 0.7-0ubuntu4.1
	14.04 LTS trusty	Not in release
	12.04 LTS precise	Not in release

How can I get the fixes?
What do statuses mean?

References

MITRE
NVD
Launchpad
Debian

Related Ubuntu Security Notices (USN)

USN-2813-1
LXCFS vulnerabilities
17 November 2015

Other references

https://www.cve.org/CVERecord?id=CVE-2015-1344