Comment 15 for bug 1789551
Revision history for this message
| Christian Ehrhardt (paelzer) wrote Re: [Bug 1789551] Re: qemu: CVE-2018-15746: seccomp: blacklist is not applied to all threads | #15 |
© 2004
Canonical Ltd.
•
Terms of use
•
Data privacy
•
Contact Launchpad Support
•
Blog
•
Careers
•
System status
•
35a32c5
(Get the code!)
On Wed, Sep 5, 2018 at 4:31 PM Simon Déziel <email address hidden>
wrote:
> Yes, I've been using "-sandbox on" since at least Trusty and filled a
> few bugs about this feature in the past. I've replied to the "call for
> testing" email you sent but maybe my response is being delayed somehow.
>
Thanks, I have seen the reply now.
Having feedback so fast is great and an indicator that we really want to
tackle Bionic.
I agree with you that Trusty should be "won't fix" but I would have hope
> that Xenial would be easier/less risky to fix ;)
>
No Xenial isn't easy either :-/
The big change was to switch from a whitelist (which often had issues with
uncommon setups) to a blacklist based approach.
And that change in terms of Ubuntu Releases was Xenial->Bionic.
So my current stance would be, give the ML some time if more people show
up, but considering the Bionic fix more likely to eventually take place.