CVE-2013-6441 Information

Description

The lxc-sshd template (templates/lxc-sshd.in) in LXC before 1.0.0.beta2 uses read-write permissions when mounting /sbin/init which allows local users to gain privileges by modifying the init file.

Reference

http://www.ubuntu.com/usn/USN-2104-1 https://bugs.launchpad.net/ubuntu/2Bsource/lxc/2Bbug/1261045 https://github.com/dotcloud/lxc/pull/1 https://github.com/lxc/lxc/commit/f4d5cc8e1f39d132b61e110674528cac727ae0e2