#2 Disable SUID root programs in containers

closed-fixed
None
7
2008-09-08
2007-04-09
No

Allowing SUID root programs to be executed from containers mounted by normal users could be used for privilege escalation.
Therefore, mount containers with flag MS_NOSUID if the user is not root.

Discussion

  • Hans-Ulrich Juettner

    Logged In: YES
    user_id=1281148
    Originator: YES

    Fixed with release 1.0-1.

     
  • Hans-Ulrich Juettner

    • status: open --> closed
     
  • Hans-Ulrich Juettner

    • status: closed --> closed-fixed
     

Get latest updates about Open Source Projects, Conferences and News.

Sign up for the SourceForge newsletter:





No, thanks