[lfs-book] [LFS Trac] #4230: man-db-2.8.2

LFS Trac trac at linuxfromscratch.org
Sat Mar 3 09:23:45 PST 2018


#4230: man-db-2.8.2
----------------------+-------------------------
 Reporter:  bdubbs@…  |       Owner:  lfs-book@…
     Type:  task      |      Status:  new
 Priority:  normal    |   Milestone:  8.3
Component:  Book      |     Version:  SVN
 Severity:  normal    |  Resolution:
 Keywords:            |
----------------------+-------------------------

Comment (by bdubbs@…):

 Major changes since man-db 2.8.1:

    Fixes:

    * Make seccomp sandbox allow kill and tgkill when the signal is
      directed at the current process or one of its threads; this is
      needed by xz.

    * Make seccomp sandbox allow ioctl(fd, TIOCGWINSZ), since that's used
      by musl.

    * Work around the proprietary "ESET File Security" antivirus program in
      seccomp sandbox: if this is in use then we need to allow some
      socket-related system calls.

    * Work around the "snoopy" execve() wrapper and logger in seccomp
      sandbox: if this is in use then we need to allow some
      socket-related system calls.

    * Interpret EFAULT from seccomp_load as meaning that seccomp is
      unavailable, since this can be returned by some versions of
      qemu-user.

--
Ticket URL: <http://wiki.linuxfromscratch.org/lfs/ticket/4230#comment:2>
LFS Trac <http://wiki.linuxfromscratch.org/lfs/>
Linux From Scratch: Your Distro, Your Rules.


More information about the lfs-book mailing list