Security Advisories for github.com/canonical/lxd in go
Critical
2 months ago
LXD: VM lowlevel restriction bypass via raw.apparmor and raw.qemu.conf
go
github.com/canonical/lxd
Critical
2 months ago
LXD: Importing a crafted backup leads to project restriction bypass
go
github.com/canonical/lxd
Critical
2 months ago
LXD: Update of type field in restricted TLS certificate allows privilege escalation to cluster admin
go
github.com/canonical/lxd
Moderate
3 months ago
lxd's non-recursive certificate listing bypasses per-object authorization and leaks all fingerprints
go
github.com/canonical/lxd
High
7 months ago
LXD vulnerable to a local privilege escalation through custom storage volumes
go
github.com/canonical/lxd
High
8 months ago
Canonical LXD CSRF Vulnerability When Using Client Certificate Authentication with the LXD-UI
go
github.com/canonical/lxd
Likely fork
High
8 months ago
Canonical LXD Arbitrary File Read via Template Injection in Snapshot Patterns
go
github.com/lxc/lxd
Moderate
8 months ago
Canonical LXD Source Container Identification Vulnerability via cmdline Spoofing in devLXD Server
go
github.com/canonical/lxd
High
8 months ago
Canonical LXD Vulnerable to Privilege Escalation via WebSocket Connection Hijacking in Operations API
go
github.com/canonical/lxd
Moderate
8 months ago
Canonical LXD Project Existence Determination Through Error Handling in Image Export Function
go
github.com/canonical/lxd
High
8 months ago
Canonical LXD Path Traversal Vulnerability in Instance Log File Retrieval Function
go
github.com/canonical/lxd
Moderate
8 months ago
Canonical LXD Project Existence Determination Through Error Handling in Image Get Function
go
github.com/canonical/lxd
Low
over 1 year ago
lxd has a restricted TLS certificate privilege escalation when in PKI mode
go
github.com/canonical/lxd
Low
over 2 years ago
Canonical LXD documentation improvement to make clear restricted.devices.disk=allow without restricted.devices.disk.paths also allows shift=true
go
github.com/canonical/lxd