* Ritesh Raj Sarraf <r...@debian.org>, 2023-01-20 16:59:
The current upstream documentation does warn about the functionality, and does not advertise anything about confining the namespace.
Er, but it does talk about confinement:
Hostfs without any parameters to the UML Image will allow the image to mount any part of the host filesystem and write to it. Always confine hostfs to a specific "harmless" directory (for example ``/var/tmp``) if running UML. This is especially important if UML is being run as root.
-- Jakub Wilk
