Affected by GO-2025-4115
and 8 other vulnerabilities
GO-2025-4115: Incus vulnerable to local privilege escalation through custom storage volumes in github.com/lxc/incus
GO-2026-4357: Incus container image templating arbitrary host file read and write in github.com/lxc/incus
GO-2026-4359: Incus container environment configuration newline injection in github.com/lxc/incus
GO-2026-4879: Local Incus UI web server vulnerable to nuthentication bypass in github.com/lxc/incus
GO-2026-4881: Incus vulnerable to arbitrary file read and write through pongo templates in github.com/lxc/incus
GO-2026-4882: Incus does not verify combined fingerprint when downloading images from simplestreams servers in github.com/lxc/incus
GO-2026-4884: Incus has an abitrary file write through its systemd-creds options in github.com/lxc/incus
GO-2026-4885: Incus vulnerable to local privilege escalation through VM screenshot path in github.com/lxc/incus
GO-2026-4886: Incus vulnerable to denial of source through crafted bucket backup file in github.com/lxc/incus
The highest tagged major version is
v7.
package
Version:
v6.11.0
Opens a new window with list of versions in this module.
Published: Mar 28, 2025
License: Apache-2.0
Opens a new window with license information.
Imports: 0
Opens a new window with list of imports.
Imported by: 0
Opens a new window with list of known importers.
Documentation
¶
type API10Put struct {
CID uint32 `json:"cid" yaml:"cid"`
Port uint32 `json:"port" yaml:"port"`
Certificate string `json:"certificate" yaml:"certificate"`
DevIncus bool `json:"dev_incus" yaml:"dev_incus"`
}
API10Put contains the fields which are needed for the incus-agent to connect to Incus.
Source Files
¶
Click to show internal directories.
Click to hide internal directories.