In the context of LP: #1649330, I don't see any regressions from bubblewrap 0.1.5-1~ubuntu16.10.0 in yakkety-proposed, but I've only tested the simple case there within a VM. So:
bwrap --dev-bind / / --dev-bind ~ /snap bash
and then...
ls /snap
touch /snap/whatever
exit
then...
ls ~
still works.
I haven't tested to see that the CVE is fixed though, is there a short list of steps I can try to confirm the hostname can be changed?
In the context of LP: #1649330, I don't see any regressions from bubblewrap 0.1.5-1~ ubuntu16. 10.0 in yakkety-proposed, but I've only tested the simple case there within a VM. So:
bwrap --dev-bind / / --dev-bind ~ /snap bash
and then...
ls /snap
touch /snap/whatever
exit
then...
ls ~
still works.
I haven't tested to see that the CVE is fixed though, is there a short list of steps I can try to confirm the hostname can be changed?