CVE-2016-8649 Ubuntu Security Notification for Lxc Vulnerability (USN-3136-1)

A directory traversal flaw in lxc-attach.

An attacker with access to an LXC container could exploit this flaw to access files outside of the container.

Refer to Ubuntu advisory USN-3136-1 for affected packages and patching details, or update with your package manager.

Patch:
Following are links for downloading patches to fix the vulnerabilities:

USN-3136-1: 16.04 (Xenial) on src (liblxc1)

USN-3136-1: 14.04 (Kylin) on src (lxc)

USN-3136-1: 16.10 (Yakkety) on src (liblxc1)

USN-3136-1: 16.10 (Yakkety) on src (lxc1)

USN-3136-1: 16.04 (Xenial) on src (lxc1)

USN-3136-1: 14.04 (Kylin) on src (liblxc1)