Summary: setuid implementation of a subset of user namespaces. Name: bubblewrap Version: 0.6.1 Release: 1%{?dist} License: LGPLv2+ Vendor: Microsoft Corporation Distribution: Mariner Group: Applications/System URL: https://github.com/containers/bubblewrap/ Source0: https://github.com/containers/%{name}/releases/download/v%{version}/%{name}-%{version}.tar.xz BuildRequires: autoconf BuildRequires: automake BuildRequires: libcap-devel BuildRequires: libtool Requires: libcap %description Bubblewrap could be viewed as setuid implementation of a subset of user namespaces. Emphasis on subset - specifically relevant to the above CVE, bubblewrap does not allow control over iptables. The original bubblewrap code existed before user namespaces - it inherits code from xdg-app helper which in turn distantly derives from linux-user-chroot. %prep %autosetup -p1 %build %configure \ --disable-silent-rules \ --with-priv-mode=none \ --disable-man %make_build %install %make_install %check %make_build check %files %defattr(-,root,root) %license COPYING %{_bindir}/bwrap %{_datadir}/bash-completion/completions/bwrap %{_datadir}/zsh/site-functions/_bwrap %changelog * Tue Mar 08 2022 Andrew Phelps - 0.6.1-1 - Upgrade to version 0.6.1 - Disable documentation explicitly * Mon Jul 19 2021 Thomas Crain - 0.4.1-1 - Update to latest upstream version - Lint spec, modernize with macros - Remove CVE-2019-12439, CVE-2020-5291 patches. Both are patched in this version. * Thu May 21 2020 Ruying Chen - 0.3.0-5 - Fixed CVE-2019-12439 * Sat May 09 2020 Nick Samson - 0.3.0-4 - Added %%license line automatically * Tue Apr 21 2020 Emre Girgin - 0.3.0-3 - Ignore CVE-2020-5291. - Update Source0 and URL. - License verified. * Tue Sep 03 2019 Mateusz Malisz - 0.3.0-2 - Initial CBL-Mariner import from Photon (license: Apache2). * Mon Sep 03 2018 Keerthana K - 0.3.0-1 - Updated to version 0.3.0. * Thu Aug 03 2017 Xiaolin Li - 0.1.8-1 - Initial build. First version