| Patch | Description | Author | Forwarded | Bugs | Origin | Last update |
|---|---|---|---|---|---|---|
| disable-internet-tests.patch | disable tests that attempt to access the internet | Reiner Herrmann <reiner@reiner-h.de> | not-needed | |||
| disable-terminal-tests.patch | disable tests for programs that need to run inside a terminal the tests for 'less' and 'man' are currently failing with this error when run inside autopkgtest: $ firejail less sysutils.sh WARNING: terminal is not fully functional sysutils.sh (press RETURN)TESTING ERROR 1 |
Reiner Herrmann <reiner@reiner-h.de> | not-needed | |||
| config-hardening.patch | change global default settings - restrict networking feature; new network namespace can be used to circumvent packet filter of default namespace (see #916920). - disable cgroup by default; can be used to move processes into less restricted cgroups. |
Reiner Herrmann <reiner@reiner-h.de> | not-needed | debian | ||
| apparmor-override.patch | Don't install local AppArmor override file It will be created by dh_apparmor instead | Reiner Herrmann <reiner@reiner-h.de> | not-needed | |||
| private-lib.patch | [PATCH] add PATH_FCOPY to private-lib automatically restore 45304621a6c600d8e30e98bfbef05149caaf56c5, but now run fldd as root user. This became necessary because in the meantime read permission on helper executables was removed. Puts infrastructure in place to add other helper binaries to private-lib as well, should the need arise. |
smitsohu <smitsohu@gmail.com> | yes | debian upstream | upstream, commits a274ad1 and 04cdc12 | |
| CVE-2022-31214-1.patch | [PATCH 1/3] fixing CVE-2022-31214 | smitsohu <smitsohu@gmail.com> | no | 2022-06-14 | ||
| CVE-2022-31214-2.patch | [PATCH 2/3] shutdown testing | smitsohu <smitsohu@gmail.com> | no | 2022-06-14 | ||
| CVE-2022-31214-3.patch | [PATCH 3/3] CVE-2022-31214: fixing the fix | smitsohu <smitsohu@gmail.com> | no | 2022-06-14 |