diff options
author | Andy Whitcroft <apw@canonical.com> | 2012-05-01 16:17:52 +0100 |
---|---|---|
committer | John Rigby <john.rigby@linaro.org> | 2012-06-20 13:26:55 -0600 |
commit | f532ad1117e82ab5d1e72fb961e32a82fd970dd0 (patch) | |
tree | 2d9356f19115b32056d5a4dd5818e224a6e44400 /scripts/gcc-x86_64-has-stack-protector.sh | |
parent | 7b96cba6875d48e6d86c2592d55493df3b315505 (diff) |
UBUNTU: ubuntu: overlayfs -- overlayfs: switch to use inode_only_permissions
When checking permissions on an overlayfs inode we do not take into
account either device cgroup restrictions nor security permissions.
This allows a user to mount an overlayfs layer over a restricted device
directory and by pass those permissions to open otherwise restricted
files.
Switch over to the newly introduced inode_only_permissions.
Signed-off-by: Andy Whitcroft <apw@canonical.com>
Signed-off-by: Miklos Szeredi <mszeredi@suse.cz>
Diffstat (limited to 'scripts/gcc-x86_64-has-stack-protector.sh')
0 files changed, 0 insertions, 0 deletions