Fyi, now that lxc 2.0.7-2 landed in jessie-backports, I am getting a new error when trying to start an lxc instance (running jessie as well) using a virtual br0 rather than "plain old" br0 (all of this in unprivileged mode), namely: lxc_delete_network:3028 - Failed to remove interface "vethXJW6PL" from host: Operation not permitted. With "plain old" br0, it still works as expected.
Stiepan Sent with [ProtonMail](https://protonmail.com) Secure Email. -------- Original Message -------- Subject: Bug#857295: Info received ([oss-security] LXC: CVE-2017-5985: lxc-user-nic didn't verify network namespace ownership) Local Time: 15 March 2017 11:56 AM UTC Time: 15 March 2017 10:57 From: ow...@bugs.debian.org To: Stiepan <stie@itk.swiss> Thank you for the additional information you have supplied regarding this Bug report. This is an automatically generated reply to let you know your message has been received. Your message is being forwarded to the package maintainers and other interested parties for their attention; they will reply in due course. Your message has been sent to the package maintainer(s): pkg-lxc <pkg-lxc-de...@lists.alioth.debian.org> If you wish to submit further information on this problem, please send it to 857...@bugs.debian.org. Please do not send mail to ow...@bugs.debian.org unless you wish to report a problem with the Bug-tracking system. -- 857295: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=857295 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems
