ACK: [SRU T, U, V, W] sysctl to disable unprivileged user namespace unsharing
Brad Figg
brad.figg at canonical.com
Thu Jun 23 19:05:05 UTC 2016
On Thu, Jun 23, 2016 at 11:53:56AM -0700, Kamal Mostafa wrote:
> From: Kamal Mostafa <kamal at canonical.com>
>
> Mitigation of unprivileged user namespaces vulnerability.
>
> BugLink: https://bugs.launchpad.net/bugs/1595350
>
> This patch is taken from Xenial (cherry pick for wily; trivial context
> backport for T, U, V).
>
> -Kamal
>
> -----
>
> Serge Hallyn (1):
> UBUNTU: SAUCE: add a sysctl to disable unprivileged user namespace
> unsharing
>
> kernel/fork.c | 15 +++++++++++++++
> kernel/sysctl.c | 12 ++++++++++++
> kernel/user_namespace.c | 6 ++++++
> 3 files changed, 33 insertions(+)
>
> --
> 2.7.4
>
>
> --
> kernel-team mailing list
> kernel-team at lists.ubuntu.com
> https://lists.ubuntu.com/mailman/listinfo/kernel-team
Looks good to me.
--
Brad Figg brad.figg at canonical.com http://www.canonical.com
More information about the kernel-team
mailing list