pool/firejail
SHA256
2
0
Fork 1
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

CVE-2019-12589

Browse Source 
boo#1137139

OBS-URL: https://build.opensuse.org/package/show/Virtualization/firejail?expand=0&rev=19
This commit is contained in:
Sebastian Wagner 2019-06-04 07:32:22 +00:00 committed by Git OBS Bridge
parent b32a343fff
commit ec099811d6
1 changed files with 2 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
firejail.changes
View File

@ -7,6 +7,8 @@ Sun Jun 2 16:30:42 UTC 2019 - Sebastian Wagner <sebix+novell.com@sebix.at>
within the jail. A malicious process can modify files from inside the within the jail. A malicious process can modify files from inside the
jail. Processes that are later joined to the jail will not have seccomp jail. Processes that are later joined to the jail will not have seccomp
filters applied. filters applied.
CVE-2019-12589
boo#1137139
* memory-deny-write-execute now also blocks memfd_create * memory-deny-write-execute now also blocks memfd_create
* add private-cwd option to control working directory within jail * add private-cwd option to control working directory within jail
* blocking system D-Bus socket with --nodbus * blocking system D-Bus socket with --nodbus