Public bug reported:
Otherwise programs executed from the container's fs and in its
namespaces are able to bypass apparmor. For instance to write under
/proc/sys/.
** Affects: lxc (Ubuntu)
Importance: High
Status: Triaged
** Changed in: lxc (Ubuntu)
Importance: Undecided => High
** Changed in: lxc (Ubuntu)
Status: New => Triaged
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1089629
Title:
lxc-attach must switch to container's apparmor profile
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/lxc/+bug/1089629/+subscriptions
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
