bubblewrap 0.1.6-2 source package in Ubuntu
Changelog
bubblewrap (0.1.6-2) unstable; urgency=medium * d/p/Make-the-call-to-setsid-optional-with-new-session.patch: Add patch from upstream to make the setsid() that addresses CVE-2017-5226 optional, because it breaks interactive shells. Users of bubblewrap to confine untrusted programs should either add --new-session to the bwrap command line, or prevent the TIOCSTI ioctl with a seccomp filter instead (as Flatpak does). - d/control: add Breaks on versions of Flatpak that did not load the necessary seccomp filter to prevent CVE-2017-5226 * d/p/demos-bubblewrap-shell.sh-Unshare-all-namespaces.patch: Add patch from upstream to improve example code * d/p/Call-setsid-and-setexeccon-befor-forking-the-init-monitor.patch, d/p/Install-seccomp-filter-at-the-very-end.patch: Add patches from upstream to re-order initialization. This means the seccomp filter is no longer required to account for syscalls that are made by bwrap itself. * d/p/Add-unshare-all-and-share-net.patch: Add patch from upstream introducing new command line options --unshare-all and --share-net, for a more whitelist-based approach to sharing namespaces with the parent. -- Simon McVittie <email address hidden> Wed, 18 Jan 2017 00:56:19 +0000
Upload details
- Uploaded by:
- Utopia Maintenance Team
- Uploaded to:
- Sid
- Original maintainer:
- Utopia Maintenance Team
- Architectures:
- linux-any
- Section:
- misc
- Urgency:
- Medium Urgency
See full publishing history Publishing
Series | Published | Component | Section |
---|
Downloads
File | Size | SHA-256 Checksum |
---|---|---|
bubblewrap_0.1.6-2.dsc | 2.1 KiB | 98f1f33e13e93b20d1b972e4e93caa6db5ada23dcf759019de89f397a7bd1135 |
bubblewrap_0.1.6.orig.tar.gz | 92.9 KiB | e81a5cc0a1918d90cdedc1dc3494a20a09817b377108405965cf54934e400c8b |
bubblewrap_0.1.6-2.debian.tar.xz | 12.1 KiB | 585a9056598ea536cf45466918b7ead60fe9e3c7123d236bcc42e4e9a995ec2e |
Available diffs
- diff from 0.1.6-1 to 0.1.6-2 (5.3 KiB)
No changes file available.
Binary packages built by this source
- bubblewrap: No summary available for bubblewrap in ubuntu zesty.
No description available for bubblewrap in ubuntu zesty.
- bubblewrap-dbgsym: No summary available for bubblewrap-dbgsym in ubuntu zesty.
No description available for bubblewrap-dbgsym in ubuntu zesty.