github.com/lxc/lxd

Go2 known CVEs affecting this package

Aggregated from OSV, GitHub Security Advisories, NVD, and vendor advisories. Each CVE links to its full detail page with vendor advisories, patches, fixed versions, and remediation guidance.

CVEs affecting github.com/lxc/lxdpage 1 of 1

CVE-2015-1340HIGHCVSS 7.0EG 7.0✓ Fixed in 0.0.0-20151004155856-19c6961cc101
2019-04-22
LXD before version 0.19-0ubuntu5 doUidshiftIntoContainer() has an unsafe Chmod() call that races against the stat in the Filepath.Walk() function. A symbolic link created in that window could cause any file on the system to have any mode o…
CVE-2025-54287MEDIUMCVSS 6.5EG 6.5✓ Fixed in 5.21.4
2025-10-02
Template Injection in instance snapshot creation component in Canonical LXD (>= 4.0) allows an attacker with instance configuration permissions to read arbitrary files on the host system via specially crafted snapshot pattern templates us…

Check whether github.com/lxc/lxd is used in your infrastructure

EchelonGraph scans your cloud and SBOMs to map every package to your actual deployments. See blast radius for github.com/lxc/lxd CVEs against the assets you own.

Start Free Scan →