UbuntuUpdates.org

Package "libseccomp2"

Name: libseccomp2

Description:

high level interface to Linux seccomp filter

Latest version: 2.4.3-1ubuntu3.16.04.3
Release: xenial (16.04)
Level: security
Repository: main
Head package: libseccomp
Homepage: https://github.com/seccomp/libseccomp

Links


Download "libseccomp2"


Other versions of "libseccomp2" in Xenial

Repository Area Version
base main 2.2.3-3ubuntu3
updates main 2.5.1-1ubuntu1~16.04.1
PPA: Ubuntu SDK Release 2.3.1-2ubuntu2~ubuntu16.04.1~ppa1
PPA: Lxd 2.3.1-2.1ubuntu3~ubuntu16.04.1~ppa1

Changelog

Version: 2.4.3-1ubuntu3.16.04.3 2020-07-23 19:06:19 UTC

  libseccomp (2.4.3-1ubuntu3.16.04.3) xenial; urgency=medium

  * d/p/db-consolidate-some-of-the-code-which-adds-rules.patch
  * d/p/db-add-shadow-transactions.patch (LP: #1861177)
    Backport upstream patches to address performance regression introduced
    in libseccomp 2.4.

 -- Ioanna Alifieraki <email address hidden> Mon, 29 Jun 2020 13:57:55 +0100

Source diff to previous version
1861177 seccomp_rule_add is very slow

Version: 2.4.3-1ubuntu3.16.04.2 2020-06-29 13:07:06 UTC

  libseccomp (2.4.3-1ubuntu3.16.04.2) xenial; urgency=medium

  * Updated to new upstream 2.4.3 version for updated syscalls support
    and test-suite robustness
    - d/p/add-5.4-local-syscall-headers.patch: Add local copy of the
      architecture specific header files which specify system call numbers
      from linux-libc-dev in focal to ensure unit tests pass on older
      releases where the linux-libc-dev package does not have the required
      system calls defined and use these during compilation of unit tests
    - d/p/db-properly-reset-attribute-state.patch: Drop this patch since
      is now upstream
    - LP: #1876055
  * Add missing aarch64 system calls
    - d/p/fix-aarch64-syscalls.patch
    - LP: #1877633
  * Re-enable build failure on unit test failure

 -- Alex Murray <email address hidden> Tue, 02 Jun 2020 14:16:21 +0930

Source diff to previous version
1876055 SRU: Backport 2.4.3-1ubuntu3 from groovy to focal/eoan/bionic/xenial for newer syscalls for core20 base and test suite robustness
1877633 libseccomp 2.4.3 (and 2.4.2) is not correctly resolving (at least) the getrlimit syscall on arm64

Version: 2.4.1-0ubuntu0.16.04.2 2019-05-30 23:07:04 UTC

  libseccomp (2.4.1-0ubuntu0.16.04.2) xenial-security; urgency=medium

  [ Marc Deslauriers ]
  * Updated to new upstream 2.4.1 version to fix security issue.
    - CVE-2019-9893
  * debian/patches/*: removed, all included in new version.
  * debian/control: add valgrind to Build-Depends to get more unit tests.
  * debian/libseccomp2.symbols: added new symbols.
  * debian/docs: removed, new version doesn't have README file.

  [ Jamie Strandboge ]
  * db-properly-reset-attribute-state.patch: db: properly reset the attribute
    state in db_col_reset()

 -- Jamie Strandboge <email address hidden> Fri, 03 May 2019 20:10:57 +0000

CVE-2019-9893 libseccomp before 2.4.0 did not correctly generate 64-bit syscall argument comparisons using the arithmetic operators (LT, GT, LE, GE), which might a



About   -   Send Feedback to @ubuntu_updates