Looking into this deeper -- applying this patch for bionic will have net-zero effect, given this comment: https://github.com/moby/moby/pull/36417#issuecomment-369266565
For this patch to do anything, "libseccomp" needs to be at least version 2.3.3, and bionic is only at 2.3.1 (so the added line would essentially be ignored and you'd still get EPERM). -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1755250 Title: backport statx syscall whitelist fix To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/docker.io/+bug/1755250/+subscriptions -- ubuntu-bugs mailing list [email protected] https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
