Yes, this is deliberate behavior for execve with an AT_SECURE transition. Environmental parameters such as the path to the executable are not trustworthy in that case.
For safe use of Java with capabilities you will have to use a restricted, custom launcher. I don't think such a thing exists today. That launcher should be able to avoid the use of $ORIGIN, too. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/565002 Title: ldopen failing with relative path when linux capability is set To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/glibc/+bug/565002/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs