Comment 40 for bug 1552042
Revision history for this message
| Tristan Cacqueray (tristan-cacqueray) wrote | #40 |
© 2004
Canonical Ltd.
•
Terms of use
•
Data privacy
•
Contact Launchpad Support
•
Blog
•
Careers
•
System status
•
35a32c5
(Get the code!)
@Travis, it seems like the nodev patch isn't good enough since the non-libguestfs foldback is still vulnerable to ring 0 attack when malicious filesystem are mounted on compute host. Moreover the limited scope of this issue probably doesn't warrant an embargoed disclosure.
Thus I'd like to make this bug public because the removal of non-libguestfs use-case could use public review. Comments or objections are most welcome.