Skip to content
This repository has been archived by the owner on Nov 24, 2022. It is now read-only.

Privilege escalation in lxc-wrapper #482

Closed
Aguay-val opened this issue Apr 17, 2019 · 2 comments
Closed

Privilege escalation in lxc-wrapper #482

Aguay-val opened this issue Apr 17, 2019 · 2 comments
Labels
ignored

Comments

@Aguay-val
Copy link

Aguay-val commented Apr 17, 2019
edited

Hello,

I use vagrant-lxc for a while and we found a privilege escalation in the lxc-wrapper which may cause a risk for the host system.

If you want to restrict access to root user for a user by using "sudo /path/to/lxc-wrapper" there is a privilege escalation which result in a root shell.

Before releasing the privilege escalation i would like to help fix the issue.

Does someone can help me ? PM me.
@Aguay-val
Copy link
Author

Ok i think i have found a way to prevent a privilege escalation.

I have to do more tries to be sure it's safe.

Aguay-val added a commit to Aguay-val/vagrant-lxc that referenced this issue Apr 17, 2019
@Aguay-val
Update sudoers.rb.erb
ebec6a8 
Fix catchall regex to avoid privilege escalation.

Related to issue : fgrehm#482
@Aguay-val Aguay-val mentioned this issue Apr 17, 2019
Closed
@fgrehm fgrehm added the ignored label Nov 17, 2022
@fgrehm
Copy link
Owner

fgrehm commented Nov 17, 2022

Hey, sorry for the silence here but this project is looking for maintainers 😅

As per #499, I've added the ignored label and will close this issue. Thanks for the interest in the project and LMK if you want to step up and take ownership of this project on that other issue 👋

@fgrehm fgrehm closed this as completed Nov 17, 2022
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Assignees
No one assigned
Labels
ignored
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@fgrehm @Aguay-val