Published: 14/03/2017 Updated: 03/10/2019

CVSS v2 Base Score: 2.1 | Impact Score: 2.9 | Exploitability Score: 3.9

CVSS v3 Base Score: 3.3 | Impact Score: 1.4 | Exploitability Score: 1.8

VMScore: 187

Vector: AV:L/AC:L/Au:N/C:N/I:P/A:N

lxc-user-nic in Linux Containers (LXC) allows local users with a lxc-usernet allocation to create network interfaces on the host and choose the name of those interfaces by leveraging lack of netns ownership check.

Vulnerable Product	Search on Vulmon	Subscribe to Product
linuxcontainers lxc

Debian Bug report logs - #857295 lxc: CVE-2017-5985: lxc-user-nic didn't verify network namespace ownership Package: src:lxc; Maintainer for src:lxc is pkg-lxc <pkg-lxc-devel@listsaliothdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Thu, 9 Mar 2017 18:00:02 UTC Severity: grave Tags: patch ...

LXC could be made to create arbitrary virtual network interfaces as an administrator ...

This security issue was reported by Jann Horn and has to do with a lack of netns ownership check in lxc-user-nic, which would allow any user with a lxc-usernet allocation to create network interfaces on the host including choosing the name of that network interface The created interface wouldn't be UP so is unlikely to be automatically brought up ...

CWE-862 https://lists.linuxcontainers.org/pipermail/lxc-devel/2017-March/015535.html https://github.com/lxc/lxc/commit/16af238036a5464ae8f2420ed3af214f0de875f9 https://bugs.launchpad.net/ubuntu/+source/lxc/+bug/1654676 http://www.ubuntu.com/usn/USN-3224-1 http://www.securityfocus.com/bid/96777 http://www.openwall.com/lists/oss-security/2017/03/09/4 http://lists.opensuse.org/opensuse-security-announce/2019-05/msg00073.html https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=857295 https://usn.ubuntu.com/3224-1/https://nvd.nist.gov

CVE-2017-5985

Vulnerability Summary

Vendor Advisories

References

Vulmon Search

About

Products

Connect