-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 3.0 (quilt) Source: lxc Binary: lxc, lxc-dbg Architecture: linux-any Version: 1:1.0.6-6+deb8u1 Maintainer: Daniel Baumann <[email protected]> Homepage: http://linuxcontainers.org/ Standards-Version: 3.9.6 Vcs-Browser: http://daniel-baumann.ch/gitweb/?p=debian/packages/lxc.git Vcs-Git: git://daniel-baumann.ch/git/debian/packages/lxc.git Build-Depends: debhelper (>= 9), dh-autoreconf, dh-systemd, doxygen, autotools-dev, docbook2x, graphviz, libapparmor-dev, liblua5.2-dev, libcap-dev, libseccomp-dev [amd64 armhf i386], libselinux-dev, linux-libc-dev, pkg-config, python3-dev Package-List: lxc deb admin optional arch=linux-any lxc-dbg deb debug extra arch=linux-any Checksums-Sha1: 6ea61825e4edc71ddec56d3899d4f0e9dce1c509 508868 lxc_1.0.6.orig.tar.xz 84024f4d20b12d31825673cff81d6389e0f5a6a1 29668 lxc_1.0.6-6+deb8u1.debian.tar.xz Checksums-Sha256: 4a794c57ee852bcbb8f3d543eace6a86e75156c5681c9daf1b01d79407a70c74 508868 lxc_1.0.6.orig.tar.xz 7bfeab59ab2b111ca03096d1b7cf9a87314d94389b657a90ad90dda0ccaa1520 29668 lxc_1.0.6-6+deb8u1.debian.tar.xz Files: 30a70dfbbb7fa016febd26b33f12e20d 508868 lxc_1.0.6.orig.tar.xz 13e6e2ac25600e77b147941a81a2099b 29668 lxc_1.0.6-6+deb8u1.debian.tar.xz -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIcBAEBCgAGBQJVsSLXAAoJEAVMuPMTQ89EFR4P/imn1y6aYey8IZs8oAS0+Z3l 7I0WteVm3QZmcpbliKS7us8yg+QQHoM6DkZQ6SXxwuT+ZmQrgyUSaHJdILIBuWgc bKZw26vR8rzeiXg52QLi/OfOw7ONWYZdgTvKDnDPULHPQ2wlRbbUFEVeJy6NrBok kxgCgt+K/PDlEi9DIMrFA93K+aICKAsgS/YCm5zMvTiotvlt9x+Q+5YOQNmtn1eQ TwKbNu6xr76P/xIlIocCLZVjHVq/nr7i708BrKGHSq0teZyirJvwHo+uhn+sAgAm tFJcSYyJ7tGg+h6yJ66X2nssuVmjf1wwzpy6D642WcSCgVH8HAbdJL0VwovjgGgp c+Rd45tEx8Sq9t79dZTZHQEtZxjqr+NePYyfyO+eoBX/239DgTkbA4k0TpVzF37A pa/G7KdVZJwK3SuZVZMNDKv/F1LVfi47RRHZQbCNbtyJEmUZ5dJqNb5uAFngxaMB xjuIquLi/LlJrTJUXfzgH7Ox/0vHyeDHsWe15TqJgDZ8aoq4/PSywyJ0REebp8Yt cu8HJ1jRaJL5gkbd/ITDGVPWbouaVutRfJ80Wy7vVYuESHyi6o2yxXx63m6Ohj1c PIi9HPsIXGcWR0Lr9EfxKaaR+eryITvuLp1+c+Lurs/PTqYLWjQe8durer1GeSj7 7Soqe7AZlXxK+LgxSCMo =8s6t -----END PGP SIGNATURE----- Changes: lxc (1:1.0.6-6+deb8u1) jessie-security; urgency=high * Non-maintainer upload by the Security Team. * Add 0018-CVE-2015-1331-lxclock-use-run-lxc-lock-rather-than-r.patch. CVE-2015-1331: Directory traversal flaw that allows arbitrary file creation as the root user. (Closes: #793298) * Add 0019-CVE-2015-1334-Don-t-use-the-container-s-proc-during-.patch. CVE-2015-1334: Processes intended to be run inside of confined LXC containers could escape their AppArmor or SELinux confinement. (Closes: #793298) -- Salvatore Bonaccorso <[email protected]> Wed, 22 Jul 2015 18:12:27 +0200
