[SRU] New upstream microrelease
Affects | Status | Importance | Assigned to | Milestone | ||
---|---|---|---|---|---|---|
firejail (Ubuntu) | ||||||
Xenial |
Fix Released
|
Medium
|
Reiner Herrmann |
Bug Description
[Impact]
* The current version is affected by a bunch of important and security bugs
* Upstream is maintaining this branch with targeted bug fixes.
[Test Case]
N/A
[Regression Potential]
* Upstream maintains LTS branch for 0.9.38.x and takes care not to introduce breaking changes. An extensive test suite is available and maintained by upstream, which is also run before releases.
Estimated regression potentional is therefore low.
Upstream changelog:
firejail (0.9.38.10) baseline; urgency=low
* security: new fix for CVE-2017-5180 reported by Sebastian Krahmer last week
* security: tightening the rules for --chroot
* bugfix: ported Gentoo compile patch
* bugfix: fix ASSERT_PERMS_FD macro
-- netblue30 Sun, 15 Jan 2017 10:00:00 -0500
firejail (0.9.38.8) baseline; urgency=low
* security: root exploit found by Sebastian Krahmer (CVE-2017-5180)
-- netblue30 Sat, 7 Jan 2017 10:00:00 -0500
firejail (0.9.38.6) baseline; urgency=low
* security: overwrite /etc/resolv.conf found by Martin Carpenter (CVE-2016-10118)
* bugfix: crashing VLC by pressing Ctrl-O
-- netblue30 Fri, 16 Dec 2016 10:00:00 -0500
firejail (0.9.38.4) baseline; urgency=low
* CVE-2016-7545 submitted by Aleksey Manevich
* bugfixes
-- netblue30 Mon, 10 Oct 2016 10:00:00 -0500
firejail (0.9.38.2) baseline; urgency=low
* security: --whitelist deleted files, submitted by Vasya Novikov
* security: disable x32 ABI, submitted by Jann Horn
* security: tighten --chroot, submitted by Jann Horn
* security: terminal sandbox escape, submitted by Stephan Sokolow
* feature: clean local overlay storage directory (--overlay-clean)
* bugfixes
-- netblue30 Tue, 23 Aug 2016 10:00:00 -0500
no longer affects: | firejail (Ubuntu) |
Changed in firejail (Ubuntu Xenial): | |
assignee: | nobody → Reiner Herrmann (deki) |
status: | New → In Progress |
importance: | Undecided → Medium |
description: | updated |
description: | updated |
The upload in the Xenial SRU queue has no Launchpad- Bugs-Fixed in the .changes file, this will break the SRU process. Please reupload the package such that Launchpad- Bugs-Fixed are produced.