Gianni Tedesco

**Name of the Vulnerable Software and Affected Versions** checkinstall version 1.6.2 **Description** The issue arises when checkinstall is used to create a package containing a symlink, potentially leading to the creation of an executable file with mode 0777 permissions. **Recommendations** For checkinstall version 1.6.2, consider avoiding the creation of packages that contain symlinks until a fix is available. As a temporary workaround, manually adjust the permissions of created executable files to prevent unintended access.

Name of the Vulnerable Software and Affected Versions: LXC version 2.0 Description: The issue concerns the template scripts in LXC that download code over cleartext HTTP without performing a digital-signature check before executing it to bootstrap containers. Recommendations: For LXC version 2.0, consider modifying the template scripts to use secure HTTP connections and implement digital-signature checks for downloaded code to prevent potential exploitation. As a temporary workaround, restrict the use of these template scripts until a secure version is available.