14 DAY TRIAL // Canonical has released some details about the LXC vulnerability in its Ubuntu 13.10 (Saucy Salamander) operating systems.
According to the company, LXC would have allowed unintended access to the host, bypassing intended confinement.
It has been discovered that the LXC sshd template set incorrect mount permissions. An attacker could have possibly used this flaw to cause a privilege escalation on the host.
For a more detailed description of the problems, you can see Canonical's security notification.
The flaws can be fixed if you upgrade your system(s) to the latest lxc-templates package specific to each distribution. To apply the patch, run the Update Manager application.
In general, a standard system update will make all the necessary changes. Users will need to recreate LXC containers created with the sshd template to complete the update process.