diff options
author | Kr1ss | 2022-06-09 20:07:23 +0200 |
---|---|---|
committer | Kr1ss | 2022-06-09 20:07:23 +0200 |
commit | 621dbf757efdeea45388cecff66311502ae895da (patch) | |
tree | c54b2399af5a949e0a8beb846603d61492fff0e3 | |
parent | 8d88ce8444bc4c6e4a08476c67de95bf45896c79 (diff) | |
download | aur-621dbf757efdeea45388cecff66311502ae895da.tar.gz |
update: firejail-no-apparmor 0.9.70-1
upstream release
-rw-r--r-- | .SRCINFO | 8 | ||||
-rw-r--r-- | PKGBUILD | 5 | ||||
-rw-r--r-- | RELNOTES | 38 |
3 files changed, 44 insertions, 7 deletions
@@ -1,6 +1,6 @@ pkgbase = firejail-no-apparmor pkgdesc = Linux namespaces sandbox program, compiled without dependency to apparmor - pkgver = 0.9.68 + pkgver = 0.9.70 pkgrel = 1 url = https://github.com/netblue30/firejail changelog = RELNOTES @@ -11,10 +11,10 @@ pkgbase = firejail-no-apparmor conflicts = firejail backup = etc/firejail/login.users backup = etc/firejail/firejail.config - source = https://sourceforge.net/projects/firejail/files/firejail/firejail-0.9.68.tar.xz - source = https://sourceforge.net/projects/firejail/files/firejail/firejail-0.9.68.tar.xz.asc + source = https://sourceforge.net/projects/firejail/files/firejail/firejail-0.9.70.tar.xz + source = https://sourceforge.net/projects/firejail/files/firejail/firejail-0.9.70.tar.xz.asc validpgpkeys = F951164995F5C4006A73411E2CCB36ADFC5849A7 - sha256sums = a322395597d89d2e5ea21fb11cb3f2afc44b00fca5439bf44c7636c5cffa652f + sha256sums = b77b67a4db7c01d69cb033a50aa7b1132dfaeb2cd97ce6412285235265b71b17 sha256sums = SKIP pkgname = firejail-no-apparmor @@ -6,7 +6,7 @@ _pkgname=firejail pkgname="$_pkgname-no-apparmor" -pkgver=0.9.68 +pkgver=0.9.70 pkgrel=1 pkgdesc='Linux namespaces sandbox program, compiled without dependency to apparmor' @@ -24,8 +24,7 @@ backup=("etc/$_pkgname/login.users" "etc/$_pkgname/$_pkgname.config") #source=($_pkgname-$pkgver.tar.gz::$url/archive/$pkgver.tar.gz) source=("https://sourceforge.net/projects/$_pkgname/files/$_pkgname/$_pkgname-$pkgver.tar.xz"{,.asc}) -sha256sums=('a322395597d89d2e5ea21fb11cb3f2afc44b00fca5439bf44c7636c5cffa652f' - 'SKIP') +sha256sums=('b77b67a4db7c01d69cb033a50aa7b1132dfaeb2cd97ce6412285235265b71b17' 'SKIP') validpgpkeys=('F951164995F5C4006A73411E2CCB36ADFC5849A7') @@ -1,3 +1,41 @@ +firejail (0.9.70) baseline; urgency=low + * security: CVE-2022-31214 - root escalation in --join logic + Reported by Matthias Gerstner, working exploit code was provided to our + development team. In the same time frame, the problem was independently + reported by Birk Blechschmidt. Full working exploit code was also provided. + * feature: enable shell tab completion with --tab (#4936) + * feature: disable user profiles at compile time (#4990) + * feature: Allow resolution of .local names with avahi-daemon in the apparmor + profile (#5088) + * feature: always log seccomp errors (#5110) + * feature: firecfg --guide, guided user configuration (#5111) + * feature: --oom, kernel OutOfMemory-killer (#5122) + * modif: --ids feature needs to be enabled at compile time (#5155) + * modif: --nettrace only available to root user + * rework: whitelist restructuring (#4985) + * rework: firemon, speed up and lots of fixes + * bugfix: --private-cwd not expanding macros, broken hyperrogue (#4910) + * bugfix: nogroups + wrc prints confusing messages (#4930 #4933) + * bugfix: openSUSE Leap - whitelist-run-common.inc (#4954) + * bugfix: fix printing in evince (#5011) + * bugfix: gcov: fix gcov functions always declared as dummy (#5028) + * bugfix: Stop warning on safe supplementary group clean (#5114) + * build: remove ultimately unused INSTALL and RANLIB check macros (#5133) + * build: mkdeb.sh.in: pass remaining arguments to ./configure (#5154) + * ci: replace centos (EOL) with almalinux (#4912) + * ci: fix --version not printing compile-time features (#5147) + * ci: print version after install & fix apparmor support on build_apparmor + (#5148) + * docs: Refer to firejail.config in configuration files (#4916) + * docs: firejail.config: add warning about allow-tray (#4946) + * docs: mention that the protocol command accumulates (#5043) + * docs: mention inconsistent homedir bug involving --private=dir (#5052) + * docs: mention capabilities(7) on --caps (#5078) + * new profiles: onionshare, onionshare-cli, opera-developer, songrec + * new profiles: node-gyp, npx, semver, ping-hardened + * removed profiles: nvm + -- netblue30 <netblue30@yahoo.com> Mon, 7 Feb 2022 09:00:00 -0500 + firejail (0.9.68) baseline; urgency=low * security: on Ubuntu, the PPA is now recommended over the distro package (see README.md) (#4748) |