CVE-2015-1335
lxc-start in lxc before 1.0.8 and 1.1.x before 1.1.4 allows local container administrators to escape AppArmor confinement via a symlink attack on a (1) mount target or (2) bind mount source.
Date published : 2015-10-01
http://www.securityfocus.com/bid/76894
http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html