Matthias Gerstner discovered that LXC incorrectly handled the lxc-user-nic utility. A local attacker could possibly use this issue to open arbitrary files.
{ "availability": "No subscription required", "binaries": [ { "liblxc1-dbgsym": "3.0.1-0ubuntu1~18.04.2", "libpam-cgfs": "3.0.1-0ubuntu1~18.04.2", "liblxc1": "3.0.1-0ubuntu1~18.04.2", "lxc-dev": "3.0.1-0ubuntu1~18.04.2", "lxc-utils": "3.0.1-0ubuntu1~18.04.2", "lxc-utils-dbgsym": "3.0.1-0ubuntu1~18.04.2", "liblxc-dev": "3.0.1-0ubuntu1~18.04.2", "libpam-cgfs-dbgsym": "3.0.1-0ubuntu1~18.04.2", "lxc1": "3.0.1-0ubuntu1~18.04.2", "liblxc-common": "3.0.1-0ubuntu1~18.04.2", "liblxc-common-dbgsym": "3.0.1-0ubuntu1~18.04.2", "lxc": "3.0.1-0ubuntu1~18.04.2" } ] }