]> git.ipfire.org Git - thirdparty/lxc.git/commit
projects / thirdparty / lxc.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 4056340) | patch
CVE-2015-1331: lxclock: use /run/lxc/lock rather than /run/lock/lxc
authorSerge Hallyn <serge.hallyn@ubuntu.com>
Fri, 3 Jul 2015 14:26:17 +0000 (09:26 -0500)
committerStéphane Graber <stgraber@ubuntu.com>
Wed, 22 Jul 2015 14:12:15 +0000 (10:12 -0400)
commitf547349ea7ef3a6eae6965a95cb5986cd921bd99
treeb9947065e375c088493ae2a8db12095036a2c148tree
parent4056340ae7ac5b3a6b31a47c5324df7328dccba0commit | diff
CVE-2015-1331: lxclock: use /run/lxc/lock rather than /run/lock/lxc

This prevents an unprivileged user to use LXC to create arbitrary file
on the filesystem.

Signed-off-by: Serge Hallyn <serge.hallyn@ubuntu.com>
Signed-off-by: Tyler Hicks <tyhicks@canonical.com>
Acked-by: Stéphane Graber <stgraber@ubuntu.com>
src/lxc/lxclock.c diff | blob | blame | history
src/tests/locktests.c diff | blob | blame | history
Mirror of https://github.com/lxc/lxc.git