I should mention that performing input validation on get_pty_for_instance() and dropping privileges would be enough to 'solve' the immediate issues with nova's use of socat, but the other suggestions are for future-proofing against the new (and presumably rapidly changing) nova codebase and for ensuring that we are protected from problems not found in this shallow security audit.
-- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to socat in Ubuntu. https://bugs.launchpad.net/bugs/829234 Title: [MIR] socat To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/socat/+bug/829234/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs