CNNVD-202510-361 Information

CNNVD ID

CNNVD-202510-361

Related CVE

CVE-2025-54291

• CNNVD Published: 2025-10-02

Description (Chinese)

LXD是Canonical开源的一款基于Linux系统用于管理应用程序的容器。 LXD 6.5之前版本和5.21.4版本存在安全漏洞，该漏洞源于图像API存在信息泄露，可能导致远程攻击者确定项目存在。

Description (English)

LXD is an open-source section of Canonical based on the Linux system used to manage applications. There was a security loophole in the previous version of LXD 6.5 and in the version of 5.21.4, which stemmed from the leaking of the API presence of the image, which could lead to a long-range attacker determining the existence of the project.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

科能软件

Published

2025-10-02

Last Modified

2026-02-24

References

https://github.com/canonical/lxd/security/advisories/GHSA-xch9-h8qw-85c7 https://vigilance.fr/vulnerability/Canonical-LXD-Incus-multiple-vulnerabilities-dated-17-10-2025-48518

Patch

https://github.com/canonical/lxd/releases