mirror/flatpak
1
0
Fork 0
mirror of https://github.com/flatpak/flatpak.git synced 2026-02-01 03:21:23 -05:00
Code Issues Packages Projects Releases Wiki Activity
Files
5c19c3242d62d4e2584bcc1b4d6663fd8c1535d4
flatpak/common
History
Alexander Larsson cd2142888f Don't expose /proc when running apply_extra 
As shown by CVE-2019-5736, it is sometimes possible for the sandbox
app to access outside files using /proc/self/exe. This is not
typically an issue for flatpak as the sandbox runs as the user which
has no permissions to e.g. modify the host files.

However, when installing apps using extra-data into the system repo
we *do* actually run a sandbox as root. So, in this case we disable mounting
/proc in the sandbox, which will neuter attacks like this.
2019-02-11 14:36:41 +01:00
..
flatpak-appdata-private.h
Move appdata parsing to its own file
2019-01-14 15:06:41 +00:00
flatpak-appdata.c
appdata: Ignore allowed attributes
2019-02-02 00:52:32 +00:00
flatpak-bundle-ref.c
Add more api docs for libflatpak
2018-09-03 10:31:51 +00:00
flatpak-bundle-ref.h
Merge lib/* into common
2018-05-24 11:59:52 +00:00
flatpak-bwrap-private.h
Run uncrustify
2018-07-08 10:05:37 +00:00
flatpak-bwrap.c
Fix memleak in flatpak_bwrap_bundle_args
2018-12-10 13:53:08 +01:00
flatpak-chain-input-stream-private.h
common: Rename all private headers to *-private.h
2018-05-24 11:59:52 +00:00
flatpak-chain-input-stream.c
common: Rename all private headers to *-private.h
2018-05-24 11:59:52 +00:00
flatpak-common-types-private.h
Don't expose /proc when running apply_extra
2019-02-11 14:36:41 +01:00
flatpak-context-private.h
Remove another unused function
2018-10-23 20:10:37 +00:00
flatpak-context.c
Consistently use Unicode ellipsis
2018-12-21 08:07:25 +00:00
flatpak-dir-private.h
Actually always return non-null from flatpak_dir_get_display_name()
2019-02-05 11:45:54 +00:00
flatpak-dir.c
Don't expose /proc when running apply_extra
2019-02-11 14:36:41 +01:00
flatpak-enum-types.c.template
Merge lib/* into common
2018-05-24 11:59:52 +00:00
flatpak-enum-types.h.template
Merge lib/* into common
2018-05-24 11:59:52 +00:00
flatpak-error.c
Add more api docs for libflatpak
2018-09-03 10:31:51 +00:00
flatpak-error.h
transaction: Refuse to let root modify a user repo
2019-01-17 07:40:29 +00:00
flatpak-exports-private.h
Run uncrustify
2018-07-08 10:05:37 +00:00
flatpak-exports.c
Fix localization
2018-10-02 06:21:49 +00:00
flatpak-installation-private.h
Run uncrustify
2018-07-08 10:05:37 +00:00
flatpak-installation.c
Actually always return non-null from flatpak_dir_get_display_name()
2019-02-05 11:45:54 +00:00
flatpak-installation.h
installation: Add api to find unused refs
2018-12-21 08:19:46 +00:00
flatpak-installed-ref-private.h
Add license to the appdata fields we extract
2019-01-09 05:20:13 +00:00
flatpak-installed-ref.c
installed ref: Plug a few memory leaks
2019-01-09 05:20:13 +00:00
flatpak-installed-ref.h
Add license to the appdata fields we extract
2019-01-09 05:20:13 +00:00
flatpak-instance-private.h
Instance: mitigate races, add new launch api
2018-10-23 07:15:39 +00:00
flatpak-instance.c
Handle app-less instances better
2019-01-08 00:56:09 +00:00
flatpak-instance.h
Make FlatpakInstance api public
2018-10-08 08:36:23 +00:00
flatpak-json-oci-private.h
Run uncrustify
2018-07-08 10:05:37 +00:00
flatpak-json-oci.c
Run uncrustify
2018-07-08 10:05:37 +00:00
flatpak-json-private.h
Cache the downloaded registry index in compressed form
2018-08-09 12:49:36 +00:00
flatpak-json.c
flatpak-json: Don't leak empty optional nodes.
2018-08-13 21:31:09 +00:00
flatpak-oci-registry-private.h
system-helpers: When deploying OCI's, verify refs against summary, not server
2018-08-09 12:49:36 +00:00
flatpak-oci-registry.c
Fix localization
2018-10-02 06:21:49 +00:00
flatpak-portal-error.c
common: Move flatpak-portal-error.[ch] back to common code
2018-04-26 07:41:17 +00:00
flatpak-portal-error.h
Add more api docs for libflatpak
2018-09-03 10:31:51 +00:00
flatpak-ref.c
ref: Fix a typo in a documentation string
2018-11-14 12:34:30 +00:00
flatpak-ref.h
Merge lib/* into common
2018-05-24 11:59:52 +00:00
flatpak-related-ref-private.h
Run uncrustify
2018-07-08 10:05:37 +00:00
flatpak-related-ref.c
Add more api docs for libflatpak
2018-09-03 10:31:51 +00:00
flatpak-related-ref.h
Run uncrustify
2018-07-08 10:05:37 +00:00
flatpak-remote-private.h
Run uncrustify
2018-07-08 10:05:37 +00:00
flatpak-remote-ref-private.h
Run uncrustify
2018-07-08 10:05:37 +00:00
flatpak-remote-ref.c
Run uncrustify
2018-07-08 10:05:37 +00:00
flatpak-remote-ref.h
Merge lib/* into common
2018-05-24 11:59:52 +00:00
flatpak-remote.c
remote: Add a way to get/set xa.main-ref
2018-11-25 18:31:06 +00:00
flatpak-remote.h
remote: Add a way to get/set xa.main-ref
2018-11-25 18:31:06 +00:00
flatpak-run-private.h
Export dconf data
2019-01-14 15:34:11 +00:00
flatpak-run.c
Don't expose /proc when running apply_extra
2019-02-11 14:36:41 +01:00
flatpak-transaction-private.h
transaction: Change from installation_create_transaction() to transaction_new_for_installation()
2018-05-29 16:37:21 +02:00
flatpak-transaction.c
transaction: Refuse to let root modify a user repo
2019-01-17 07:40:29 +00:00
flatpak-transaction.h
transaction: Fix gtk-doc warning
2019-01-11 22:57:15 +00:00
flatpak-utils-http-private.h
Allow using a compressed cache for HTTP downloads
2018-08-09 12:49:35 +00:00
flatpak-utils-http.c
flatpak_cache_http_uri: save downloaded files with permission 0644
2018-11-30 23:53:10 +00:00
flatpak-utils-private.h
Add a define for green
2019-02-02 01:38:32 +00:00
flatpak-utils.c
CLI: Handle consoles reporting zero size
2019-02-06 09:31:45 +00:00
flatpak-version-macros.h.in
Add more api docs for libflatpak
2018-09-03 10:31:51 +00:00
flatpak.c
Merge lib/* into common
2018-05-24 11:59:52 +00:00
flatpak.h
Make FlatpakInstance api public
2018-10-08 08:36:23 +00:00
Makefile.am.inc
Export dconf data
2019-01-14 15:34:11 +00:00
test-lib.c
Run uncrustify
2018-07-08 10:05:37 +00:00
valgrind-private.h
GI: Include the right sources when building introspection
2018-05-29 07:53:48 +00:00