A security issue fixed upstream in LXC has been announced: http://openwall.com/lists/oss-security/2016/11/23/6 The upstream commit that fixed the issue is linked in the message above, and patches for 1.0 and 2.0 are attached to the launchpad bug linked there. Additionally, it will be fixed in versions 1.0.9 and 2.0.6. There may be a kernel patch necessary as well, but I'm not sure if we need it since we don't use SELinux/AppArmor.
CC: (none) => kernelWhiteboard: (none) => MGA5TOO
Ubuntu has issued an advisory for this on November 23: http://www.ubuntu.com/usn/usn-3136-1
URL: (none) => https://lwn.net/Vulnerabilities/707364/
Depends on: (none) => 20439
Fixed in lxc-2.0.0-6.mga6.
Whiteboard: MGA5TOO => (none)Version: Cauldron => 5
Fixed: http://advisories.mageia.org/MGASA-2017-0167.html
Status: NEW => RESOLVEDResolution: (none) => FIXED