LimaCharlie Community

[Vulnerability] Three bypasses of Ubuntu's unprivileged user namespace restrictions

Community Intel

kwestin April 2, 2025, 1:37am 1

Ubuntu 23.10 introduced unprivileged user namespace restrictions (the
sysctl kernel.apparmor_restrict_unprivileged_userns) and Ubuntu 24.04
enabled them by default. From Alex Murray’s excellent blog post at

https://www.qualys.com/2025/three-bypasses-of-Ubuntu-unprivileged-user-namespace-restrictions.txt

Topic		Replies	Views	Activity
EDR bypass with Wietze Beukema - March 14, 2025 Defender Fridays	1	32	March 14, 2025
Critical Veeam Vuln — Ransomware actors have taken note 👀 Community Intel vulnerability	0	22	March 19, 2025
[Vulnerability] Zero-Day in CentreStack File-Sharing Platform Under Attack Community Intel	0	8	April 11, 2025
Unpatched Windows Zero-Day Flaw Exploited by 11 State-Sponsored Threat Groups Since 2017 Community Intel	0	14	March 18, 2025
Arxiv Research Paper: "You Cannot Escape Me: Detecting Evasions of SIEM Rules in Enterprise Networks" Community Intel	0	12	March 18, 2025