This appears to already be fixed; when running the reproducer it fails
to fchmod:
Feb 24 13:11:24 lp1814596-b breakout_assisted[16574]: got rootfd from other
chroot...
Feb 24 13:11:24 lp1814596-b breakout_assisted[16574]: chdir successful, am now
in /home/ubuntu/systemd_uidleak
Feb 24 13:11:24
** Changed in: systemd (Ubuntu Disco)
Status: New => Won't Fix
--
You received this bug notification because you are a member of Ubuntu
Touch seeded packages, which is subscribed to systemd in Ubuntu.
https://bugs.launchpad.net/bugs/1814596
Title:
DynamicUser can create setuid binaries
DynamicUser is only supported in systemd>=235 so this is not needed for
xenial, only bionic and disco.
** Also affects: systemd (Ubuntu Bionic)
Importance: Undecided
Status: New
** Also affects: systemd (Ubuntu Disco)
Importance: Undecided
Status: New
--
You received this
This is fixed in systemd 242 present in Eoan.
@seth-arnold Please target to releases to which the fix should be backported
according to Security Team's opinion.
** Changed in: systemd (Ubuntu)
Status: Confirmed => Fix Released
--
You received this bug notification because you are a
** Changed in: systemd (Ubuntu)
Status: New => Confirmed
--
You received this bug notification because you are a member of Ubuntu
Touch seeded packages, which is subscribed to systemd in Ubuntu.
https://bugs.launchpad.net/bugs/1814596
Title:
DynamicUser can create setuid binaries when
Thanks Jann
** Information type changed from Private Security to Public Security
--
You received this bug notification because you are a member of Ubuntu
Touch seeded packages, which is subscribed to systemd in Ubuntu.
https://bugs.launchpad.net/bugs/1814596
Title:
DynamicUser can create
6 matches
Mail list logo