bubblewrap 0.4.0-1ubuntu4 source package in Ubuntu

Changelog

bubblewrap (0.4.0-1ubuntu4) focal; urgency=medium

  * SECURITY UPDATE: privilege escalation when used in setuid mode
    - debian/patches/CVE-2020-5291.patch: don't rely on geteuid() to know
      when to switch back from setuid root in bubblewrap.c.
    - CVE-2020-5291

 -- Marc Deslauriers <email address hidden>  Wed, 01 Apr 2020 08:25:00 -0400

Upload details

Uploaded by:
Marc Deslauriers on 2020-04-01
Uploaded to:
Focal
Original maintainer:
Ubuntu Developers
Architectures:
linux-any
Section:
misc
Urgency:
Medium Urgency

See full publishing history Publishing

Series Pocket Published Component Section
Focal release on 2020-04-06 main misc

Downloads

File Size SHA-256 Checksum
bubblewrap_0.4.0.orig.tar.xz 209.3 KiB e5fe7d2f74bd7029b5306b0b70587cec31f74357739295e5276b4a3718712023
bubblewrap_0.4.0-1ubuntu4.debian.tar.xz 10.1 KiB be03edaf2f46a83b0bb8706509ba66022c0011ce4c726b536902b1c89e551cd2
bubblewrap_0.4.0-1ubuntu4.dsc 2.2 KiB cc7174f2cd8837fb00a126be52e0b96381985f4a6fb883c9ec3a31f900d6f70d

Available diffs

View changes file

Binary packages built by this source

bubblewrap: setuid wrapper for unprivileged chroot and namespace manipulation

 Core execution engine for unprivileged containers that works as a setuid
 binary on kernels without user namespaces.

bubblewrap-dbgsym: debug symbols for bubblewrap