Please approve `unshare -r` fix for Jessie
( this is the first time I write to release@ , so please forgive me if
I do something wrong )
Hello up there,
I've discovered today that, though it used to work in 2014, `unshare -r`
(make a new namespace and become root there) both when initially run by
root or usual users got broken because of relatively recent kernel
upgrade on Jessie.
Specifically it is linux 3.16.7-ckt4-1 which introduced security fix
for CVE-2014-8989 which broke `unshare -r`.
Since util-linux's upstream has a small patch to fix the issue for
unshare, this way I've reported a detailed bug report with a patch
for util-linux Debian package to fix the problem:
https://bugs.debian.org/780841
Andreas Henriksson (util-linux Debian maintainer) asked me to get a
pre-acknowledgement from the Debian release-team for this fix to be
applied to Jessie, which I do here:
Could you please agree to `unshare -r` fix for Jessie?
Thanks beforehand,
Kirill
On Fri, Mar 20, 2015 at 02:04:37PM +0100, Andreas Henriksson wrote:
> Hello Kirill Smelkov!
>
> Thanks for your detailed bug description and patch!
>
> Could you please get a pre-acknowledgement from the Debian release-team
> that this is acceptable for Jessie? Otherwise, this likely won't be
> fixed until after the freeze when we upgrade to the newer upstream
> release.
>
> Regards,
> Andreas Henriksson
Reply to: