aboutsummaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authorTobias Geerinckx-Rice <me@tobias.gr>2020-04-10 23:45:03 +0200
committerTobias Geerinckx-Rice <me@tobias.gr>2020-04-11 04:14:29 +0200
commit406130550912ee1254198b6349d7d7892e59217b (patch)
tree3ad59de0f2e8a597f0f18effc85c6b5c3025a4f0
parenta5ab71c73f595f690839f9027c507b50899776f4 (diff)
downloadpatches-406130550912ee1254198b6349d7d7892e59217b.tar
patches-406130550912ee1254198b6349d7d7892e59217b.tar.gz
gnu: bubblewrap: Update to 0.4.1 [fixes CVE-2020-5291].
Relevant only ‘[i]f bubblewrap is installed in setuid mode and the kernel supports unprivileged user namespaces’. Bubblewrap is not setuid by default on Guix System. * gnu/packages/virtualization.scm (bubblewrap): Update to 0.4.1.
-rw-r--r--gnu/packages/virtualization.scm4
1 files changed, 2 insertions, 2 deletions
diff --git a/gnu/packages/virtualization.scm b/gnu/packages/virtualization.scm
index 5bee79cbb4..0fded11f3a 100644
--- a/gnu/packages/virtualization.scm
+++ b/gnu/packages/virtualization.scm
@@ -1083,7 +1083,7 @@ virtual machines.")
(define-public bubblewrap
(package
(name "bubblewrap")
- (version "0.4.0")
+ (version "0.4.1")
(source (origin
(method url-fetch)
(uri (string-append "https://github.com/containers/bubblewrap/"
@@ -1091,7 +1091,7 @@ virtual machines.")
version ".tar.xz"))
(sha256
(base32
- "08r0f4c3fjkb4zjrb4kkax1zfcgcgic702vb62sjjw5xfhppvzp5"))))
+ "00ycgi6q2yngh06bnz50wkvar6r2jnjf3j158grhi9k13jdrpimr"))))
(build-system gnu-build-system)
(arguments
`(#:phases