[DSE-Dev] Bug#822679: Attempts to mount /proc as a regular user
Yuri D'Elia
wavexx at thregr.org
Tue Apr 26 13:53:46 UTC 2016
Package: libselinux1
Version: 2.5-1
Severity: normal
I discovered after updating today libselinux1 that at every exec, each program
attempts to mount /proc, even if already mounted.
I'm looking at #789218, and still wonder... is it actually the job of
libselinux to mount filesystems?
My guess is that *no* user program should attempt to mount filesystems, EVER.
Moreso if the program in question has no rights to do so (ie, it's not root).
We attempt to mount /proc just to check /proc/filesystems?
Am I reading this right?
-- System Information:
Debian Release: stretch/sid
APT prefers unstable
APT policy: (900, 'unstable'), (800, 'experimental')
Architecture: amd64 (x86_64)
Kernel: Linux 4.5.0-1-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)
Versions of packages libselinux1 depends on:
ii libc6 2.22-7
ii libpcre3 2:8.38-3.1
libselinux1 recommends no packages.
libselinux1 suggests no packages.
More information about the SELinux-devel
mailing list