I don't think there's anything wrong with the kernel here - its version of <linux/capability.h> is sanitised for userspace, and I can't reproduce the problems mentioned at the end of the Fedora bug on Ubuntu. Kyle's patch looks good except that with the version of libcap we're shipping we also need to update its own local copy of <linux/capability.h> to something current. I'll take care of that.
I don't think there's anything wrong with the kernel here - its version of <linux/ capability. h> is sanitised for userspace, and I can't reproduce the problems mentioned at the end of the Fedora bug on Ubuntu. Kyle's patch looks good except that with the version of libcap we're shipping we also need to update its own local copy of <linux/ capability. h> to something current. I'll take care of that.