]> git.ipfire.org Git - thirdparty/lxc.git/commit
projects / thirdparty / lxc.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 3d6347a) | patch
CVE-2015-1331: lxclock: use /run/lxc/lock rather than /run/lock/lxc
authorSerge Hallyn <serge.hallyn@ubuntu.com>
Fri, 3 Jul 2015 14:26:17 +0000 (09:26 -0500)
committerStéphane Graber <stgraber@ubuntu.com>
Wed, 22 Jul 2015 14:10:52 +0000 (10:10 -0400)
commit61ecf69d7834921cc078e14d1b36c459ad8f91c7
tree9f84767f70ebfe27977838259a0d49854fb46ee4tree
parent3d6347a4cd69f5593b233fcba8354986df4c1767commit | diff
CVE-2015-1331: lxclock: use /run/lxc/lock rather than /run/lock/lxc

This prevents an unprivileged user to use LXC to create arbitrary file
on the filesystem.

Signed-off-by: Serge Hallyn <serge.hallyn@ubuntu.com>
Signed-off-by: Tyler Hicks <tyhicks@canonical.com>
Acked-by: Stéphane Graber <stgraber@ubuntu.com>
src/lxc/lxclock.c diff | blob | blame | history
src/tests/locktests.c diff | blob | blame | history
Mirror of https://github.com/lxc/lxc.git