default install of focal allows privilege escalation via lxd group
Bug #1949115 reported by
Ian Johnson
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
user-setup (Ubuntu) |
Fix Released
|
High
|
Sebastien Bacher |
Bug Description
By default, a new installation of Ubuntu (at least I tried 20.04 Desktop, but I assume this applies to other variants/versions as well) create a user which is in the lxd group. When the lxd snap is also installed, this user can now create privileged containers which essentially allow trivial privilege elevation to root.
This might be a bug in lxd with privileged container creation requiring full root, or it might be the case that the default user should not be put into the lxd group out of the box, so I'm not sure what's the best package to file this one against.
To post a comment you must log in.
Looks like it was introduced here:
https:/ /launchpad. net/ubuntu/ +source/ user-setup/ 1.63ubuntu2