CVE-2016-10124

An issue was discovered in Linux Containers (LXC) before 2016-02-22. When executing a program via lxc-attach, the nonpriv session can escape to the parent session by using the TIOCSTI ioctl to push characters into the terminal's input buffer, allowing an attacker to escape the container.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
8.6 HIGH
NETWORK
LOW
NONE
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:N
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 50%
VendorProductVersion
linuxcontainerslxc
𝑥
≤ 2.0.0
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
lxc
bullseye
1:4.0.6-2+deb11u2
fixed
jessie
no-dsa
wheezy
no-dsa
bookworm
1:5.0.2-1+deb12u2
fixed
sid
1:6.0.2-1
fixed
trixie
1:6.0.2-1
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
lxc
zesty
not-affected
yakkety
not-affected
xenial
not-affected
trusty
Fixed 1.0.10-0ubuntu1.1
released
precise
ignored
Common Weakness Enumeration
References
http://www.openwall.com/lists/oss-security/2014/12/15/5
http://www.openwall.com/lists/oss-security/2015/09/03/5
http://www.securityfocus.com/bid/95404
https://github.com/lxc/lxc/commit/e986ea3dfa4a2957f71ae9bfaed406dd6e1ffff6
https://security.gentoo.org/glsa/201711-09
http://www.openwall.com/lists/oss-security/2014/12/15/5
http://www.openwall.com/lists/oss-security/2015/09/03/5
http://www.securityfocus.com/bid/95404
https://github.com/lxc/lxc/commit/e986ea3dfa4a2957f71ae9bfaed406dd6e1ffff6
https://security.gentoo.org/glsa/201711-09