Debian Patches

Status for lxc/1:6.0.4-1

Search:

Patch	Description	Author	Forwarded	Last update
0001-nesting-Extend-mount-permissions-in-apparmor-to-allo.patch	[nesting] Extend mount permissions in apparmor to allow systemd services' restrictions to work These options allow systemd security features to work. In particular cases, it helps with systemd-logind and program like this It's only added in nesting profile as it could pose security risks on privileged containers. mount options=(rw,rbind) -> /run/systemd/unit-root/, mount options=(rw,rbind) -> /run/systemd/unit-root/**, mount options=(rw,rshared) -> /, mount options=(rw,nosuid,nodev,noexec) proc -> /run/systemd/unit-root/proc/,	=?utf-8?q?Pierre-Elliott_B=C3=A9cue?= <peb@debian.org>	no	2022-08-01
0002-lxc.service-Starts-after-remote-fs.target.patch	[lxc.service] Starts after remote-fs.target	=?utf-8?q?Pierre-Elliott_B=C3=A9cue?= <peb@debian.org>	no	2019-08-05
0003-apparmor-4x-userns.patch	update apparmor profile for userns permission and new abidiff --git a/config/apparmor/abstractions/container-base.in b/config/apparmor/abstractions/container-base.in index 87982fd..eb6b8ee 100644	Mathias Gibbens <gibmat@debian.org>	yes

Showing 1 to 3 of 3 entries