Your message dated Tue, 29 Dec 2015 21:07:10 +0000
with message-id <[email protected]>
and subject line Bug#794837: fixed in firejail 0.9.36-1
has caused the Debian Bug report #794837,
regarding Explicit logging for violations of blacklisted directories
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)
--
794837: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=794837
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
Package: firejail
Version: 0.9.28-1
Severity: wishlist
Using iceweasel with firejail prevented the leak of SSH keys in the
Firefox exploit announced today:
https://blog.mozilla.org/security/2015/08/06/firefox-exploit-found-in-the-wild/
It would be very useful if there were a firejail option to explicitiy
warn the user if a firejailed application tries to access a
blacklisted file/directory, so that such zero days are detected
earlier (since no non-malicious use of Firefox will ever access my
.ssh directory).
Cheers,
Moritz
--- End Message ---
--- Begin Message ---
Source: firejail
Source-Version: 0.9.36-1
We believe that the bug you reported is fixed in the latest version of
firejail, which is due to be installed in the Debian FTP archive.
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to [email protected],
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Reiner Herrmann <[email protected]> (supplier of updated firejail package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [email protected])
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
Format: 1.8
Date: Tue, 29 Dec 2015 20:46:42 +0100
Source: firejail
Binary: firejail
Architecture: source amd64
Version: 0.9.36-1
Distribution: unstable
Urgency: low
Maintainer: Reiner Herrmann <[email protected]>
Changed-By: Reiner Herrmann <[email protected]>
Description:
firejail - sandbox to restrict the application environment
Closes: 794837
Changes:
firejail (0.9.36-1) unstable; urgency=low
.
* New upstream release.
- Support for logging of blacklist violations (Closes: #794837)
* Updated Homepage field.
* Dropped reproducibility patch, which has been applied upstream.
* Dropped debian/missing-sources. Upstream removed binaries
from release tarball.
Checksums-Sha1:
4a50fb3e99c272b8917acbe42c4c8577dd41792a 1729 firejail_0.9.36-1.dsc
698c32955f4efc2b335174381f389b99e53af858 151123 firejail_0.9.36.orig.tar.bz2
37e9451a8378a0805938703d8115b9f6aab68f59 2648 firejail_0.9.36-1.debian.tar.xz
122be913c6518f4cea449b37bef7e4b02b1843a8 348552
firejail-dbgsym_0.9.36-1_amd64.deb
2c609a0902ec7cf06c957bc904c32920d5ec9493 136182 firejail_0.9.36-1_amd64.deb
Checksums-Sha256:
876caecf22a0e1bf39b531a6b5b16a464e4f588712c739a0613a092e8740cbee 1729
firejail_0.9.36-1.dsc
db16c93e6f838048b0bbcb3b90aa191f79860382c5197fd2ac6df51f1a469510 151123
firejail_0.9.36.orig.tar.bz2
654afb8bcb2bd15632581ac0279659cff8eb6df9a887bd5f2496d62924c3d8b8 2648
firejail_0.9.36-1.debian.tar.xz
1f62f4e4d90dd02dffde04af98feca1634e07e76a7f1946e20b6ff0248969417 348552
firejail-dbgsym_0.9.36-1_amd64.deb
d619cf38931b4db40cc56074fe31c9d399dfdbd1515265932c4cb2b35b8fc480 136182
firejail_0.9.36-1_amd64.deb
Files:
848dd0d5677a3b6160fa5b642a7514e1 1729 utils optional firejail_0.9.36-1.dsc
82e14802eba6c59aa6a56576769f99dc 151123 utils optional
firejail_0.9.36.orig.tar.bz2
b54f8420f13459a66f4ca266def2eee8 2648 utils optional
firejail_0.9.36-1.debian.tar.xz
f83c1a2237112f9f380394b0fc9384b7 348552 debug extra
firejail-dbgsym_0.9.36-1_amd64.deb
c32d08add12892b98904b0fae670ad88 136182 utils optional
firejail_0.9.36-1_amd64.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1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=nd6F
-----END PGP SIGNATURE-----
--- End Message ---
