--- fs/namei.c.orig	2004-02-04 23:48:55.000000000 +0100
+++ fs/namei.c	2004-02-05 23:05:42.000000000 +0100
@@ -159,6 +159,8 @@ int vfs_permission(struct inode * inode,
 			chmod 000 /vservers
 		you fix the "escape from chroot" bug.
 	*/
+	if (IS_BARRIER(inode) && !vx_check(0, VX_ADMIN))
+		return -EACCES;
 	if ((mode & 0777) == 0 && S_ISDIR(mode)
 		&& !vx_check(0, VX_ADMIN))
 		return -EACCES;