bubblewrap
Unprivileged sandboxing tool
- Sources inherited from project SUSE:SLE-15-SP2:GA
- Download package
-
Checkout Package
osc -A https://api.opensuse.org checkout openSUSE:Leap:15.3:Update/bubblewrap && cd $_ - Create Badge
Refresh
Refresh
Source Files
| Filename | Size | Changed |
|---|---|---|
| bubblewrap-0.4.0.tar.xz | 0000214304 209 KB | |
| bubblewrap.changes | 0000010162 9.92 KB | |
| bubblewrap.spec | 0000002233 2.18 KB |
Revision 2 (latest revision is 3)
Frederic Crozat (fcrozat)
committed
(revision 2)
Update bubblewrap to version 0.4.0 as part of the flatpak update to
1.6.0
- Update to version 0.4.0:
+ The biggest feature in this release is the support for joining
existing user and pid namespaces. This doesn't work in the
setuid mode (at the moment).
+ Other changes:
- Stores namespace info in status json.
- In setuid mode pid 1 is now marked dumpable.
- Now builds with musl libc.
- Use /bin/bash instead of /usr/bin/bash in SLE12
- Update to version 0.3.3:
- This release is the same as 0.3.2 but the version number in configure.ac
was accidentally still set to 0.3.1
- Update to version 0.3.2:
- fixes boo#1136958 / CVE-2019-12439
This release fixes a mostly theoretical security issue in unusual/broken
setups where `$XDG_RUNTIME_DIR` is unset.
There are some other smaller fixes, as well as an addition to the JSON
API that allows reading the inner process exit code, separately from
the `bwrap` exit code.
- Print "Out of memory" on stderr, not stdout
- bwrap: add option json-status-fd to show child exit code
- bwrap: Report COMMAND exit code in json-status-fd
- man page: Describe --chdir, not nonexistent --cwd
- Don't create our own temporary mount point for pivot_root
- Make lockdata long enough on 32-bit with 64-bit file pointers.
Comments 0