Comment 1 for bug 1791711
Revision history for this message
| Jann Horn (corp account) (jannh) wrote Re: path-based AppArmor controls for snap-confine are ineffective | #1 |
© 2004
Canonical Ltd.
•
Terms of use
•
Data privacy
•
Contact Launchpad Support
•
Blog
•
Careers
•
System status
•
513534c
demo site
(Get the code!)
[explicitly adding people from the related email thread]
By the way, to Ubuntu's security team: This doesn't seem to be the only place where AppArmor policies permit unconstrained pivot_root; you may want to look through other policies for broad whitelisting of pivot_root.