14 DAY TRIAL // Canonical released details about a couple of LXC vulnerabilities that have been found and corrected in Ubuntu 15.04, Ubuntu 14.10, and Ubuntu 14.04 LTS, operating system.
This latest update for LXC brings a number of security fixes. It's not a major update and one of the few that have landed for this particular package. It's a good idea to upgrade as soon as possible.
"Roman Fiedler discovered that LXC incorrectly trusted the container's proc filesystem to set up AppArmor profile changes and SELinux domain transitions. A local attacker could exploit this flaw to run programs inside the container that are not confined by AppArmor or SELinux," reads the security notice.
This is just one of the vulnerabilities found and fixed. For a more detailed description of the problems, you can see Canonical's security notification. Users have been advised to upgrade their systems as soon as possible.
The flaws can be fixed if you upgrade your system to the latest lxc and liblxc1 packages specific to each distribution. To apply the patch, users will have to run the Update Manager application. In general, a standard system update will make all the necessary changes, and there is no need for a restart. Any kind of running LXC containers need to be restarted.