Ubuntu
libcgroup package

non-root should not be able to create files in /sys/fs/cgroup

Bug #838380 reported by Serge Hallyn
6
This bug affects 1 person
Affects Status Importance Assigned to Milestone
libcgroup (Ubuntu)
Fix Released
High
Unassigned

Bug Description

The cgconfig.conf and cgroup-lite.conf upstart jobs mount tmpfs under /sys/fs/cgroup, but does so with the default settings which allow non-root users to create files and directories.

Serge Hallyn (serge-hallyn)
Changed in libcgroup (Ubuntu):
status: New → In Progress
importance: Undecided → High
assignee: nobody → Serge Hallyn (serge-hallyn)
Revision history for this message
Serge Hallyn (serge-hallyn) wrote :
Changed in libcgroup (Ubuntu):
assignee: Serge Hallyn (serge-hallyn) → nobody
Revision history for this message
Launchpad Janitor (janitor) wrote :

This bug was fixed in the package libcgroup - 0.37.1-1ubuntu6

---------------
libcgroup (0.37.1-1ubuntu6) oneiric; urgency=low

  * debian/cgroup-bin.cgconfig.upstart and debian/cgroup-lite.cgroups-mount:
    mount /sys/fs/cgroup with mode=0755 so unprivileged users can't create
    files. (LP: #838380)
  * debian/cgroup-lite.cgroups-umount: only umount valid cgroups.
 -- Serge Hallyn <email address hidden> Wed, 31 Aug 2011 21:18:44 +0000

Changed in libcgroup (Ubuntu):
status: In Progress → Fix Released
To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.