Version 0.82.1ubuntu2.1 breaks unattended upgrades on unprivileged Docker containers
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
unattended-upgrades (Ubuntu) |
New
|
Undecided
|
Unassigned |
Bug Description
Since update of the unattended-upgrades package to version 0.82.1ubuntu2.1, unprivileged Docker containers cannot properly perform unattended upgrades anymore. They fail with the following error message:
=======
Traceback (most recent call last):
File "/usr/bin/
main(options)
File "/usr/bin/
os.nice(-19)
PermissionError: [Errno 1] Operation not permitted
=======
This is due to the fact that the script tries to set a negative nice value, which is by default not allowed on unprivileged Docker containers. In previous package versions, the script was trying to set a nice value of 0, which was allowed.
To solve this issue, two solutions could be considered:
- The unattended-upgrades package should remain using a nice value of 0
- The containers should be started with the "--cap-
More information:
# lsb_release -rd
Description: Ubuntu 14.04.1 LTS
Release: 14.04
# apt-cache policy unattended-upgrades
unattended-
Installed: 0.82.1ubuntu2.1
Candidate: 0.82.1ubuntu2.1
Version table:
*** 0.82.1ubuntu2.1 0
500 http://
100 /var/lib/
0.82.1ubuntu2 0
500 http://
Should be fixed with 0.82.8ubuntu0.2 /bugs.launchpad .net/ubuntu/ +source/ unattended- upgrades/ +bug/1422345
https:/