CVE-2016-10124 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2016-10124): An issue was discovered in Linux Containers (LXC) before 2016-02-22. When executing a program via lxc-attach, the nonpriv session can escape to the parent session by using the TIOCSTI ioctl to push characters into the terminal's input buffer, allowing an attacker to escape the container.
@Maintainers LXC 1.0.8 seems to be vulnerable, please stabilize a more recent version. Thank you.
the current stable 2.0.7 contains the fix. However if the attacker can escape the container, I guess has a major rate than 4, I'm setting it to 2.
This issue was resolved and addressed in GLSA 201711-09 at https://security.gentoo.org/glsa/201711-09 by GLSA coordinator Aaron Bauman (b-man).
re-opened for cleanup
@maintainer(s), can we please clean the vulnerable?