projects / systemd.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 7beabc7) | patch
[PATCH] nspawn: apply BindUser/Ephemeral from settings file only if trusted
authorLuca Boccassi <luca.boccassi@gmail.com>
Wed, 11 Mar 2026 12:15:26 +0000 (12:15 +0000)
committerArnaud Rebillout <arnaudr@debian.org>
Mon, 13 Apr 2026 07:18:40 +0000 (14:18 +0700)
commit4c16d378fd237a7fa32a3a8b10c7b97d2adaaee7
treef70ac8e84d5e88ef54606265838d06dd9a055acbtree | snapshot
parent7beabc7a143b83d2f30eabd0fcd59a6dff373352commit | diff
[PATCH] nspawn: apply BindUser/Ephemeral from settings file only if trusted

Originally reported on yeswehack.com as:
YWH-PGM9780-116

Follow-up for 2f8930449079403b26c9164b8eeac78d5af2c8df
Follow-up for a2f577fca0be79b23f61f033229b64884e7d840a

(cherry picked from commit 61bceb1bff4b1f9c126b18dc971ca3e6d8c71c40)
(cherry picked from commit 718711ed876c870a72149eea279b819cdab14e91)
(cherry picked from commit e4db9c12957d315c0ed22c6ca87a816d0927d6dc)

Origin: backport, https://github.com/systemd/systemd/commit/773fd3b6e72e6c83cbb1cfc1cb20f3793db8649a

Gbp-Pq: Name CVE-2026-40226-1.patch
src/nspawn/nspawn.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.