The lxc-sshd template (templates/lxc-sshd.in) in LXC before 1.0.0.beta2 uses read-write permissions when mounting /sbin/init, which allows local users to gain privileges by modifying the init file.
2014-02-14T15:55:05.237
2025-04-11T00:51:21.963
Deferred
CVSSv2: 7.2 (HIGH)
AV:L/AC:L/Au:N/C:C/I:C/A:C
3.9
10.0
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Application | linuxcontainers | lxc | ≤ 0.9.0 | Yes |
| Application | linuxcontainers | lxc | 0.1.0 | Yes |
| Application | linuxcontainers | lxc | 0.2.0 | Yes |
| Application | linuxcontainers | lxc | 0.2.1 | Yes |
| Application | linuxcontainers | lxc | 0.3.0 | Yes |
| Application | linuxcontainers | lxc | 0.4.0 | Yes |
| Application | linuxcontainers | lxc | 0.5.0 | Yes |
| Application | linuxcontainers | lxc | 0.5.1 | Yes |
| Application | linuxcontainers | lxc | 0.5.2 | Yes |
| Application | linuxcontainers | lxc | 0.6.0 | Yes |
| Application | linuxcontainers | lxc | 0.6.1 | Yes |
| Application | linuxcontainers | lxc | 0.6.2 | Yes |
| Application | linuxcontainers | lxc | 0.6.3 | Yes |
| Application | linuxcontainers | lxc | 0.6.4 | Yes |
| Application | linuxcontainers | lxc | 0.6.5 | Yes |
| Application | linuxcontainers | lxc | 0.7.0 | Yes |
| Application | linuxcontainers | lxc | 0.7.1 | Yes |
| Application | linuxcontainers | lxc | 0.7.2 | Yes |
| Application | linuxcontainers | lxc | 0.7.3 | Yes |
| Application | linuxcontainers | lxc | 0.7.4 | Yes |
| Application | linuxcontainers | lxc | 0.7.4.1 | Yes |
| Application | linuxcontainers | lxc | 0.7.4.2 | Yes |
| Application | linuxcontainers | lxc | 0.7.5 | Yes |
| Application | linuxcontainers | lxc | 0.8.0 | Yes |