Notably, this breaks running sudo in arm64 docker containers on amd64 hosts, for instance:
$ uname -a Linux ubuntu-noble 6.14.0-29-generic #29~24.04.1-Ubuntu SMP PREEMPT_DYNAMIC Thu Aug 14 16:52:50 UTC 2 x86_64 x86_64 x86_64 GNU/Linux $ docker run -ti --platform=linux/arm64 ubuntu:24.04 bash root@1341b3d3278a:/# apt -q -y update && apt -q -y install sudo ... Setting up sudo (1.9.15p5-3ubuntu5.24.04.1) ... Processing triggers for libc-bin (2.39-0ubuntu8.5) ... root@1341b3d3278a:/# su - ubuntu To run a command as administrator (user "root"), use "sudo <command>". See "man sudo_root" for details. ubuntu@1341b3d3278a:~$ $ sudo -l sudo: effective uid is not 0, is /usr/bin/sudo on a file system with the 'nosuid' option set or an NFS file system without root privileges? -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/2120814 Title: binfmt_misc C (Credentials) flag as security risk with setuid binaries To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/qemu/+bug/2120814/+subscriptions -- ubuntu-bugs mailing list [email protected] https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
