summary refs log tree commit diff
path: root/gnu/packages
diff options
context:
space:
mode:
authorTobias Geerinckx-Rice <me@tobias.gr>2020-04-10 23:45:03 +0200
committerTobias Geerinckx-Rice <me@tobias.gr>2020-04-11 04:14:29 +0200
commit406130550912ee1254198b6349d7d7892e59217b (patch)
tree3ad59de0f2e8a597f0f18effc85c6b5c3025a4f0 /gnu/packages
parenta5ab71c73f595f690839f9027c507b50899776f4 (diff)
downloadguix-406130550912ee1254198b6349d7d7892e59217b.tar.gz
gnu: bubblewrap: Update to 0.4.1 [fixes CVE-2020-5291].
Relevant only ‘[i]f bubblewrap is installed in setuid mode and the
kernel supports unprivileged user namespaces’.

Bubblewrap is not setuid by default on Guix System.

* gnu/packages/virtualization.scm (bubblewrap): Update to 0.4.1.
Diffstat (limited to 'gnu/packages')
-rw-r--r--gnu/packages/virtualization.scm4
1 files changed, 2 insertions, 2 deletions
diff --git a/gnu/packages/virtualization.scm b/gnu/packages/virtualization.scm
index 5bee79cbb4..0fded11f3a 100644
--- a/gnu/packages/virtualization.scm
+++ b/gnu/packages/virtualization.scm
@@ -1083,7 +1083,7 @@ virtual machines.")
 (define-public bubblewrap
   (package
     (name "bubblewrap")
-    (version "0.4.0")
+    (version "0.4.1")
     (source (origin
               (method url-fetch)
               (uri (string-append "https://github.com/containers/bubblewrap/"
@@ -1091,7 +1091,7 @@ virtual machines.")
                                   version ".tar.xz"))
               (sha256
                (base32
-                "08r0f4c3fjkb4zjrb4kkax1zfcgcgic702vb62sjjw5xfhppvzp5"))))
+                "00ycgi6q2yngh06bnz50wkvar6r2jnjf3j158grhi9k13jdrpimr"))))
     (build-system gnu-build-system)
     (arguments
      `(#:phases