CVE-2024-6156 Information

Description

Mark Laing discovered that LXD’s PKI mode until version 5.21.2 could be bypassed if the client’s certificate was present in the trust store.

Reference

https://github.com/canonical/lxd/security/advisories/GHSA-4c49-9fpc-hc3v https://www.cve.org/CVERecord?id=CVE-2024-6156