This bug was fixed in the package lxc - 2.0.11-0ubuntu1~16.04.3
---------------
lxc (2.0.11-0ubuntu1~16.04.3) xenial; urgency=medium
* Cherry-pick upstream bugfix (fixes regression on attach with uid/gid):
- attach: improve id switching
- utils: make id switching functions return bool
lxc (2.0.11-0ubuntu1~16.04.2) xenial; urgency=medium
* Use clean LDFLAGS when building the static init.lxc, otherwise we
end up with broken binaries on some architectures.
lxc (2.0.11-0ubuntu1~16.04.1) xenial; urgency=medium
* New upstream bugfix release (2.0.11) (LP: #1816642)
- Security fix for CVE-2018-6556 (affecting 2.0.9+)
- Mitigation for CVE-2019-5736
- Full changelog available at:
https://discuss.linuxcontainers.org/t/lxc-2-0-11-has-been-released/4238
-- Stéphane Graber <[email protected]> Tue, 09 Apr 2019 13:58:10
-0400
** Changed in: lxc (Ubuntu Xenial)
Status: Fix Committed => Fix Released
** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2018-6556
** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2019-5736
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1816642
Title:
SRU of LXC 2.0.11
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/golang-gopkg-lxc-go-lxc.v2/+bug/1816642/+subscriptions
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
