SEARCH
NEW RPMS
DIRECTORIES
ABOUT
FAQ
VARIOUS
BLOG

 
 
Changelog for firejail-0.9.36-6.1.x86_64.rpm :
Tue Jan 12 13:00:00 2016 jsegitzAATTnovell.com
- Update to 0.9.36
- Moved changelog from spec file into separate file

Sat Nov 14 13:00:00 2015 deabrufreeAATTgmail.com
- Updated to 0.9.34 version
+ added --ignore option
+ added --protocol option
+ support dual i386/amd64 seccomp filters
+ added Google Chrome profile
+ added Steam, Skype, Wine and Conkeror profiles
+ bugfixes
- Updated to 0.9.32 version
+ added --interface option
+ added --mtu option
+ added --private-bin option
+ added --nosound option
+ added --hostname option
+ added --quiet option
+ added seccomp errno support
+ added FBReader default profile
+ added Spotify default profile
+ lots of default security profile changes
+ fixed a security problem on multi-user systems
+ bugfixes

Tue Sep 15 14:00:00 2015 deabrufreeAATTgmail.com
- Updated to 0.9.30 version
+ added a disable-history.inc profile as a result of Firefox PDF.js exploit; disable-history.inc included in all default profiles
+ Firefox PDF.js exploit (CVE-2015-4495) fixes
+ added --private-etc option
+ added --env option
+ added --whitelist option
+ support /home/netblue token in include directive in profile files
+ --private.keep is transitioned to --private-home
+ support ~ and blanks in blacklist option
+ support \"net none\" command in profile files
+ using /etc/firejail/generic.profile by default for user sessions
+ using /etc/firejail/server.profile by default for root sessions
+ added build --enable-fatal-warnings configure option
+ added persistence to --overlay option
+ added --overlay-tmpfs option
+ make install-strip implemented, make install renamed
+ bugfixes
- Updated to 0.9.28 version
+ network scanning, --scan option
+ interface MAC address support, --mac option
+ IP address range, --iprange option
+ traffic shaping, --bandwidth option
+ reworked printing of network status at startup
+ man pages rework
+ added firejail-login man page
+ added GNU Icecat, FileZilla, Pidgin, XChat, Empathy, DeaDBeeF default profiles
+ added an /etc/firejail/disable-common.inc file to hold common directory blacklists
+ blacklist Opera and Chrome/Chromium config directories in profile files
+ support noroot option for profile files
+ enabled noroot in default profile files
+ bugfixes
- Updated to 0.9.26 version
+ private dev directory
+ private.keep option for whitelisting home files in a new private directory
+ user namespaces support, noroot option
+ added Deluge and qBittorent profiles
+ bugfixes
+ Updated to 0.9.24 version
+ whitelist and blacklist seccomp filters
+ doubledash option
+ --shell=none support
+ netfilter file support in profile files
+ dns server support in profile files
+ added --dns.print option
+ added default profiles for Audoacious, Clementine, Rhythmbox and Totem.
+ added --caps.drop=all in default profiles
+ new syscalls in default seccomp filter: sysfs, sysctl, adjtimex, kcmp
+ clock_adjtime, lookup_dcookie, perf_event_open, fanotify_init
+ Bugfix: using /proc/sys/kernel/pid_max for the max number of pids
+ two build patches from Reiner Herman (tickets 11, 12)
+ man page patch from Reiner Herman (ticket 13)
+ output patch (ticket 15) from sshirokov

Sat Mar 14 13:00:00 2015 devel.suseAATTgmail.com
- Update to upstream 0.9.22

Sat Mar 7 13:00:00 2015 devel.suseAATTgmail.com
- Update to upstream 0.9.22-rc1:

* Replaced --noip option with --ip=none

* Container stdout logging and log rotation

* Added process_vm_readv, process_vm_writev and mknod to default seccomp blacklist

* Added CAP_MKNOD to default caps blacklist

* Blacklist and whitelist custom Linux capabilities filters

* macvlan device driver support for --net option

* DNS server support, --dns option

* Netfilter support

* Monitor network statistics, --netstats option

* Added profile for Mozilla Thunderbird/Icedove

* - --overlay support for Linux kernels 3.18+

* Bugfix: preserve .Xauthority file in private mode (test with ssh -X)

* Bugfix: check uid/gid for cgroup

Thu Jan 22 13:00:00 2015 devel.suseAATTgmail.com
- Update to upstream 0.9.20-rc1:

* utmp, btmp and wtmp enhancements:

* create empty /var/log/wtmp and /var/log/btmp files in sandbox

* generate a new /var/run/utmp file in sandbox

* CPU affinity, --cpu option

* Linux control groups support, --cgroup option

* Opera web browser support

* Add an empty attribute to seccomp command to remove the default

* syscall list form seccomp blacklist

* firemon enhancements

* display the command that started the sandbox

* added --caps option to display capabilities for all sandboxes

* added --cgroup option to display the control groups for all sandboxes

* added --cpu option to display CPU affinity for all sandboxes

* added --seccomp option to display seccomp setting for all sandboxes

Wed Jan 21 13:00:00 2015 devel.suseAATTgmail.com
- Update to upstream 0.9.18:

* Support for tracing system, setuid, setgid, setfsuid, setfsgid syscalls

* Support for tracing setreuid, setregid, setresuid, setresguid syscalls

* Added profiles for transmission-gtk and transmission-qt

* bugfixes

Fri Jul 25 14:00:00 2014 devel.suseAATTgmail.com
- Update to upstream 0.9.8.1:

* Fixed a number of bugs introduced in 0.9.8

Thu Jul 24 14:00:00 2014 devel.suseAATTgmail.com
- Update to upstream 0.9.8:

* Implemented nowrap mode for firejail --list command option

* Added --top option in both firejail and firemon

* seccomp filter support

* Added pid support for firemon

* bugfixes

Thu Jul 17 14:00:00 2014 devel.suseAATTgmail.com
- Update to SVN rev192

Tue Jul 8 14:00:00 2014 devel.suseAATTgmail.com
- Update to SVN rev190
- remove firejail-implicit-declarations.patch and firejail-pie.patch

Tue Jul 1 14:00:00 2014 devel.suseAATTgmail.com
- Initial package creation - version 0.9.6
- add firejail-implicit-declarations.patch
- add firejail-pie.patch


  
ICM