[Bug 1535150] Re: overlayfs over fuse should refuse copy_up of files if uid/gid not mapped
** Changed in: linux (Ubuntu Vivid) Importance: Undecided => High -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1535150 Title: overlayfs over fuse should refuse copy_up of files if uid/gid not mapped To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/linux/+bug/1535150/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1535150] Re: overlayfs over fuse should refuse copy_up of files if uid/gid not mapped
** Tags added: kernel-cve-tracking-bug -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1535150 Title: overlayfs over fuse should refuse copy_up of files if uid/gid not mapped To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/linux/+bug/1535150/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1535150] Re: overlayfs over fuse should refuse copy_up of files if uid/gid not mapped
** Changed in: linux-snapdragon (Ubuntu Precise) Status: New => Invalid ** Changed in: linux-snapdragon (Ubuntu Precise) Importance: Undecided => High ** Changed in: linux-snapdragon (Ubuntu Wily) Status: New => Invalid ** Changed in: linux-snapdragon (Ubuntu Wily) Importance: Undecided => High ** Changed in: linux-snapdragon (Ubuntu Xenial) Status: New => Invalid ** Changed in: linux-snapdragon (Ubuntu Xenial) Importance: Undecided => High ** Changed in: linux-snapdragon (Ubuntu Yakkety) Status: New => Invalid ** Changed in: linux-snapdragon (Ubuntu Yakkety) Importance: Undecided => High ** Changed in: linux-snapdragon (Ubuntu Trusty) Status: New => Invalid ** Changed in: linux-snapdragon (Ubuntu Trusty) Importance: Undecided => High -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1535150 Title: overlayfs over fuse should refuse copy_up of files if uid/gid not mapped To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/linux/+bug/1535150/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1535150] Re: overlayfs over fuse should refuse copy_up of files if uid/gid not mapped
** Also affects: linux (Ubuntu Yakkety) Importance: High Status: Fix Released ** Also affects: linux-ti-omap4 (Ubuntu Yakkety) Importance: High Status: Invalid ** Also affects: linux-armadaxp (Ubuntu Yakkety) Importance: High Status: Invalid ** Also affects: linux-lts-quantal (Ubuntu Yakkety) Importance: High Status: Invalid ** Also affects: linux-lts-raring (Ubuntu Yakkety) Importance: High Status: Invalid ** Also affects: linux-lts-saucy (Ubuntu Yakkety) Importance: High Status: Invalid ** Also affects: linux-mako (Ubuntu Yakkety) Importance: High Status: New ** Also affects: linux-manta (Ubuntu Yakkety) Importance: High Status: Invalid ** Also affects: linux-goldfish (Ubuntu Yakkety) Importance: High Status: New ** Also affects: linux-flo (Ubuntu Yakkety) Importance: High Status: New ** Also affects: linux-lts-trusty (Ubuntu Yakkety) Importance: High Status: Invalid ** Also affects: linux-lts-utopic (Ubuntu Yakkety) Importance: High Status: Invalid ** Also affects: linux-lts-vivid (Ubuntu Yakkety) Importance: High Status: Invalid ** Also affects: linux-lts-wily (Ubuntu Yakkety) Importance: High Status: Invalid ** Also affects: linux-raspi2 (Ubuntu Yakkety) Importance: High Status: Invalid ** Also affects: linux-lts-xenial (Ubuntu Yakkety) Importance: High Status: Invalid -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1535150 Title: overlayfs over fuse should refuse copy_up of files if uid/gid not mapped To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/linux/+bug/1535150/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1535150] Re: overlayfs over fuse should refuse copy_up of files if uid/gid not mapped
** Changed in: linux-manta (Ubuntu Xenial) Status: New => Invalid -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1535150 Title: overlayfs over fuse should refuse copy_up of files if uid/gid not mapped To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/linux/+bug/1535150/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1535150] Re: overlayfs over fuse should refuse copy_up of files if uid/gid not mapped
** Changed in: linux-lts-xenial (Ubuntu Trusty) Status: New => Invalid ** Changed in: linux-raspi2 (Ubuntu Xenial) Status: New => Invalid -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1535150 Title: overlayfs over fuse should refuse copy_up of files if uid/gid not mapped To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/linux/+bug/1535150/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1535150] Re: overlayfs over fuse should refuse copy_up of files if uid/gid not mapped
This bug was fixed in the package linux - 4.4.0-8.23 --- linux (4.4.0-8.23) xenial; urgency=low * cgroup namespace mounts broken in containers (LP: #1549398) - SAUCE: kernfs: Always set super block owner to init_user_ns * 4.4.0-7.22 no longer boots on arm64 (LP: #1547718) - arm64: mm: avoid calling apply_to_page_range on empty range - UBUNTU SAUCE: arm: mm: avoid calling apply_to_page_range on empty range * kernel install failed /bin/cp: cannot stat ‘/boot/initrd.img-4.3.0-7-generic’: No such file or directory (LP: #1536810) - [Config] postinst -- handle recreating symlinks when a real file is present * insecure overlayfs xattrs handling in copy_up (LP: #1534961) - SAUCE: cred: Add clone_cred() interface - SAUCE: overlayfs: Use mounter's credentials instead of selectively raising caps - SAUCE: overlayfs: Skip permission checking for trusted.overlayfs.* xattrs - SAUCE: overlayfs: Be more careful about copying up sxid files - SAUCE: overlayfs: Propogate nosuid from lower and upper mounts * overlayfs over fuse should refuse copy_up of files if uid/gid not mapped (LP: #1535150) - SAUCE: cred: Add clone_cred() interface - SAUCE: overlayfs: Use mounter's credentials instead of selectively raising caps - SAUCE: overlayfs: Skip permission checking for trusted.overlayfs.* xattrs - SAUCE: overlayfs: Be more careful about copying up sxid files - SAUCE: overlayfs: Propogate nosuid from lower and upper mounts * overlay: mkdir fails if directory exists in lowerdir in a user namespace (LP: #1531747) - SAUCE: cred: Add clone_cred() interface - SAUCE: overlayfs: Use mounter's credentials instead of selectively raising caps - SAUCE: overlayfs: Skip permission checking for trusted.overlayfs.* xattrs * Update Intel ethernet drivers to Fortville SW5 (LP: #1547674) - net: bulk free infrastructure for NAPI context, use napi_consume_skb - net: Add eth_platform_get_mac_address() helper. - i40e: Add mac_filter_element at the end of the list instead of HEAD - i40e/i40evf: Fix RSS rx-flow-hash configuration through ethtool - i40e: Replace X722 mac check in ethtool get_settings - i40evf: allow channel bonding of VFs - i40e: define function capabilities in only one place - i40evf: null out ring pointers on free - i40e: Cleanup the code with respect to restarting autoneg - i40e: update features with right offload - i40e: bump version to 1.4.10 - i40e: add new device IDs for X722 - i40e: Extend ethtool RSS hooks for X722 - i40e/i40evf: Fix for UDP/TCP RSS for X722 - i40evf: add new write-back mode - i40e/i40evf: Use private workqueue - i40e: add new proxy-wol bit for X722 - i40e: Limit DCB FW version checks to X710/XL710 devices - i40e: AQ Add Run PHY Activity struct - i40e: AQ Geneve cloud tunnel type - i40e: AQ Add external power class to get link status - i40e: add 100Mb ethtool reporting - ixgbe: bulk free SKBs during TX completion cleanup cycle - igb: Remove unnecessary flag setting in igb_set_flag_queue_pairs() - igb: Unpair the queues when changing the number of queues - igb/igbvf: don't give up - igb: clean up code for setting MAC address - igb: Refactor VFTA configuration - igb: Allow asymmetric configuration of MTU versus Rx frame size - igb: Do not factor VLANs into RLPML calculation - igb: Always enable VLAN 0 even if 8021q is not loaded - igb: Merge VLVF configuration into igb_vfta_set - igb: Clean-up configuration of VF port VLANs - igb: Add support for VLAN promiscuous with SR-IOV and NTUPLE - igb: Drop unnecessary checks in transmit path - igb: Enable use of "bridge fdb add" to set unicast table entries - igb: Add workaround for VLAN tag stripping on 82576 - i40e: AQ Shared resource flags - i40e: AQ Add set_switch_config - i40e: AQ Add VXLAN-GPE tunnel type - i40e: AQ thermal sensor control struct - i40e: Bump AQ minor version to 1.5 for new FW features - i40e: Store lan_vsi_idx and lan_vsi_id in the right size - i40e: fix write-back-on-itr to work with legacy itr - i40e: add counter for arq overflows - i40e: add 20G speed for Tx bandwidth calculations - i40e: refactor DCB function - i40e: add a little more to an NVM update debug message - i40evf: enable bus master after reset - i40e: add netdev info to VSI dump - i40e: remove VF device IDs from PF - i40e: trivial: remove unnecessary local var - i40e/i40evf: Bump i40e to 1.4.11 and i40evf to 1.4.7 - net: ixgbe: add minimal parser details for ixgbe - i40e: trivial: drop duplicate definition - i40e: trivial: fix missing space - i40e: fix bug in dma sync - i40e: do TSO only if CHECKSUM_PARTIAL is set - i40e: allocate memory safer - i40e: fix: do not sleep in netdev_ops - i40e: APIs to Add/remove port mirroring rules - i40e:
[Bug 1535150] Re: overlayfs over fuse should refuse copy_up of files if uid/gid not mapped
** Branch linked: lp:~ubuntu-branches/ubuntu/trusty/linux-lts-wily /trusty-security ** Branch linked: lp:~ubuntu-branches/ubuntu/trusty/linux-lts-wily /trusty-proposed -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1535150 Title: overlayfs over fuse should refuse copy_up of files if uid/gid not mapped To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/linux/+bug/1535150/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1535150] Re: overlayfs over fuse should refuse copy_up of files if uid/gid not mapped
** Branch linked: lp:ubuntu/trusty-security/linux-lts-vivid ** Branch linked: lp:ubuntu/trusty-proposed/linux-lts-vivid -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1535150 Title: overlayfs over fuse should refuse copy_up of files if uid/gid not mapped To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/linux/+bug/1535150/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1535150] Re: overlayfs over fuse should refuse copy_up of files if uid/gid not mapped
** Tags added: kernel-cve-skip-description ** Also affects: linux (Ubuntu Precise) Importance: Undecided Status: New ** Also affects: linux-armadaxp (Ubuntu Precise) Importance: Undecided Status: New ** Also affects: linux-lts-quantal (Ubuntu Precise) Importance: Undecided Status: New ** Also affects: linux-lts-saucy (Ubuntu Precise) Importance: Undecided Status: New ** Also affects: linux-goldfish (Ubuntu Precise) Importance: Undecided Status: New ** Also affects: linux-lts-trusty (Ubuntu Precise) Importance: Undecided Status: New ** Also affects: linux-lts-vivid (Ubuntu Precise) Importance: Undecided Status: New ** Also affects: linux-lts-wily (Ubuntu Precise) Importance: Undecided Status: New ** Also affects: linux-raspi2 (Ubuntu Precise) Importance: Undecided Status: New ** Also affects: linux-lts-xenial (Ubuntu Precise) Importance: Undecided Status: New ** Changed in: linux-lts-trusty (Ubuntu Precise) Status: New => Fix Released ** Changed in: linux-lts-trusty (Ubuntu Precise) Importance: Undecided => High ** Changed in: linux-lts-trusty (Ubuntu Wily) Status: New => Invalid ** Changed in: linux-lts-trusty (Ubuntu Wily) Importance: Undecided => High ** Changed in: linux-lts-trusty (Ubuntu Xenial) Status: New => Invalid ** Changed in: linux-lts-trusty (Ubuntu Xenial) Importance: Undecided => High ** Changed in: linux-lts-trusty (Ubuntu Trusty) Status: New => Invalid ** Changed in: linux-lts-trusty (Ubuntu Trusty) Importance: Undecided => High ** Changed in: linux-lts-wily (Ubuntu Precise) Status: New => Invalid ** Changed in: linux-lts-wily (Ubuntu Precise) Importance: Undecided => High ** Changed in: linux-lts-wily (Ubuntu Wily) Status: New => Invalid ** Changed in: linux-lts-wily (Ubuntu Wily) Importance: Undecided => High ** Changed in: linux-lts-wily (Ubuntu Xenial) Status: New => Invalid ** Changed in: linux-lts-wily (Ubuntu Xenial) Importance: Undecided => High ** Changed in: linux-lts-wily (Ubuntu Trusty) Status: New => Fix Released ** Changed in: linux-lts-wily (Ubuntu Trusty) Importance: Undecided => High ** Changed in: linux-lts-quantal (Ubuntu Precise) Status: New => Invalid ** Changed in: linux-lts-quantal (Ubuntu Precise) Importance: Undecided => High ** Changed in: linux-lts-quantal (Ubuntu Wily) Status: New => Invalid ** Changed in: linux-lts-quantal (Ubuntu Wily) Importance: Undecided => High ** Changed in: linux-lts-quantal (Ubuntu Xenial) Status: New => Invalid ** Changed in: linux-lts-quantal (Ubuntu Xenial) Importance: Undecided => High ** Changed in: linux-lts-quantal (Ubuntu Trusty) Status: New => Invalid ** Changed in: linux-lts-quantal (Ubuntu Trusty) Importance: Undecided => High ** Changed in: linux (Ubuntu Precise) Importance: Undecided => High ** Changed in: linux (Ubuntu Wily) Importance: Undecided => High ** Changed in: linux (Ubuntu Xenial) Importance: Critical => High ** Changed in: linux (Ubuntu Trusty) Importance: Undecided => High ** Changed in: linux-ti-omap4 (Ubuntu Precise) Importance: Undecided => High ** Changed in: linux-ti-omap4 (Ubuntu Wily) Status: New => Invalid ** Changed in: linux-ti-omap4 (Ubuntu Wily) Importance: Undecided => High ** Changed in: linux-ti-omap4 (Ubuntu Xenial) Status: New => Invalid ** Changed in: linux-ti-omap4 (Ubuntu Xenial) Importance: Undecided => High ** Changed in: linux-ti-omap4 (Ubuntu Trusty) Status: New => Invalid ** Changed in: linux-ti-omap4 (Ubuntu Trusty) Importance: Undecided => High ** Changed in: linux-lts-raring (Ubuntu Precise) Status: New => Invalid ** Changed in: linux-lts-raring (Ubuntu Precise) Importance: Undecided => High ** Changed in: linux-lts-raring (Ubuntu Wily) Status: New => Invalid ** Changed in: linux-lts-raring (Ubuntu Wily) Importance: Undecided => High ** Changed in: linux-lts-raring (Ubuntu Xenial) Status: New => Invalid ** Changed in: linux-lts-raring (Ubuntu Xenial) Importance: Undecided => High ** Changed in: linux-lts-raring (Ubuntu Trusty) Status: New => Invalid ** Changed in: linux-lts-raring (Ubuntu Trusty) Importance: Undecided => High ** Changed in: linux-armadaxp (Ubuntu Precise) Importance: Undecided => High ** Changed in: linux-armadaxp (Ubuntu Wily) Status: New => Invalid ** Changed in: linux-armadaxp (Ubuntu Wily) Importance: Undecided => High ** Changed in: linux-armadaxp (Ubuntu Xenial) Status: New => Invalid ** Changed in: linux-armadaxp (Ubuntu Xenial) Importance: Undecided => High ** Changed in: linux-armadaxp (Ubuntu Trusty) Status: New => Invalid ** Changed in: linux-armadaxp (Ubuntu Trusty) Importance: Undecided => High ** Changed in: linux-lts-xenial (Ubuntu Precise) Status: New =
[Bug 1535150] Re: overlayfs over fuse should refuse copy_up of files if uid/gid not mapped
** Tags added: patch -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1535150 Title: overlayfs over fuse should refuse copy_up of files if uid/gid not mapped To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/linux/+bug/1535150/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1535150] Re: overlayfs over fuse should refuse copy_up of files if uid/gid not mapped
** Information type changed from Private Security to Public Security -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1535150 Title: overlayfs over fuse should refuse copy_up of files if uid/gid not mapped To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/linux/+bug/1535150/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs