This bug was fixed in the package lxc - 0.9.0-0ubuntu3.7 --------------- lxc (0.9.0-0ubuntu3.7) raring-proposed; urgency=low
* debian/rules and debian/lxc.postinst: set /var/lib/lxc and /var/cache/lxc to be perms 700. That prevents unprivileged users from running setuid-root applications. Install that way by default, and for any previous versions, update the permissions. After this version, respect the user's choice. (LP: #1244635) * 0112-ubuntu-Improper-pty-permissions.patch: fix permissions with which devpts is mounted in containers. (LP: #1242913) -- Serge Hallyn <serge.hal...@ubuntu.com> Tue, 29 Oct 2013 13:45:17 -0500 -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to lxc in Ubuntu. https://bugs.launchpad.net/bugs/1244635 Title: setuid executables in a container may compromise security on the host To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/lxc/+bug/1244635/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs