Package: firejail | Debian Sources

Package: firejail / 0.9.64.4-2+deb11u1

Metadata

Package	Version	Patches format
firejail	0.9.64.4-2+deb11u1	3.0 (quilt)

Patch series

view the series file

Patch	File delta	Description
disable internet tests.patch \| (download)	test/environment/dns.exp \| 20 0 + 20 - 0 ! test/sysutils/sysutils.sh \| 3 1 + 2 - 0 ! test/utils/build.exp \| 10 0 + 10 - 0 ! test/utils/trace.exp \| 43 0 + 43 - 0 ! test/utils/utils.sh \| 3 1 + 2 - 0 ! 5 files changed, 2 insertions(+), 77 deletions(-)	disable tests that attempt to access the internet
disable terminal tests.patch \| (download)	test/sysutils/sysutils.sh \| 9 0 + 9 - 0 ! test/utils/utils.sh \| 9 0 + 9 - 0 ! 2 files changed, 18 deletions(-)	disable tests for programs that need to run inside a terminal the tests for 'less' and 'man' are currently failing with this error when run inside autopkgtest: $ firejail less sysutils.sh WARNING: terminal is not fully functional sysutils.sh (press RETURN)TESTING ERROR 1
config hardening.patch \| (download)	etc/firejail.config \| 4 2 + 2 - 0 ! 1 file changed, 2 insertions(+), 2 deletions(-)	change global default settings - restrict networking feature; new network namespace can be used to circumvent packet filter of default namespace (see #916920). - disable cgroup by default; can be used to move processes into less restricted cgroups. Bug-Debian: https://bugs.debian.org/916920
apparmor override.patch \| (download)	Makefile.in \| 1 0 + 1 - 0 ! 1 file changed, 1 deletion(-)	don't install local apparmor override file It will be created by dh_apparmor instead
private lib.patch \| (download)	src/firejail/fs_lib.c \| 73 39 + 34 - 0 ! src/firejail/fs_lib2.c \| 57 52 + 5 - 0 ! src/firejail/sbox.c \| 7 4 + 3 - 0 ! 3 files changed, 95 insertions(+), 42 deletions(-)	[patch] add path_fcopy to private-lib automatically Bug: https://github.com/netblue30/firejail/issues/3741 Bug-Debian: https://bugs.debian.org/973756
CVE 2022 31214 1.patch \| (download)	src/firejail/caps.c \| 36 11 + 25 - 0 ! src/firejail/cgroup.c \| 25 0 + 25 - 0 ! src/firejail/cpu.c \| 49 7 + 42 - 0 ! src/firejail/firejail.h \| 31 23 + 8 - 0 ! src/firejail/fs.c \| 1 1 + 0 - 0 ! src/firejail/fs_logger.c \| 33 8 + 25 - 0 ! src/firejail/join.c \| 491 244 + 247 - 0 ! src/firejail/ls.c \| 32 6 + 26 - 0 ! src/firejail/main.c \| 6 6 + 0 - 0 ! src/firejail/network_main.c \| 45 13 + 32 - 0 ! src/firejail/preproc.c \| 6 6 + 0 - 0 ! src/firejail/process.c \| 244 244 + 0 - 0 ! src/firejail/protocol.c \| 20 8 + 12 - 0 ! src/firejail/run_files.c \| 52 52 + 0 - 0 ! src/firejail/seccomp.c \| 51 23 + 28 - 0 ! src/firejail/shutdown.c \| 60 10 + 50 - 0 ! src/firejail/util.c \| 157 22 + 135 - 0 ! src/include/common.h \| 3 2 + 1 - 0 ! src/include/rundefs.h \| 1 1 + 0 - 0 ! src/lib/common.c \| 77 69 + 8 - 0 ! 20 files changed, 756 insertions(+), 664 deletions(-)	[patch 1/3] fixing cve-2022-31214
CVE 2022 31214 2.patch \| (download)	test/utils/shutdown.exp \| 2 1 + 1 - 0 ! 1 file changed, 1 insertion(+), 1 deletion(-)	[patch 2/3] shutdown testing
CVE 2022 31214 3.patch \| (download)	src/firejail/fs_etc.c \| 6 5 + 1 - 0 ! 1 file changed, 5 insertions(+), 1 deletion(-)	[patch 3/3] cve-2022-31214: fixing the fix

1