Is it possible to mount an Overlayfs filesystem as an unprivileged user in a user namespace in Linux kernels >4.3.3; it seems that the fix to this vulnerability has blocked this functionality entirely.
When I create a new user namespace with clone() , passing the
CLONE_NEWNS flag and attempt to invoke mount with an overlayfs filesystem, I'm given permission denied. I can mount any other filesystem though.
Is there a way to work around this/am I missing something?
Asked by Josh Hebert
(171 rep)
Jun 6, 2016, 05:49 PM
Last activity: Jul 28, 2025, 03:08 PM
Last activity: Jul 28, 2025, 03:08 PM