CVE-2026-34178

Name of the Vulnerable Software and Affected Versions Canonical LXD versions prior to 6.8

Description Canonical LXD versions prior to 6.8 have an issue where the backup import path validates project restrictions against backup/index.yaml within a supplied tar archive, but instance creation is based on backup/container/backup.yaml, which is not subject to the same project restrictions. This allows an authenticated remote attacker with instance creation permissions in a restricted project to bypass project restrictions by crafting a malicious backup archive where backup.yaml contains restricted settings, such as security.privileged=true or raw.lxc directives, potentially leading to full host compromise.

Recommendations Update to version 6.8 or later.