firejail

Description:Security sandbox for any type of processes
License: GPL-2
Homepage:https://firejail.wordpress.com/
Location:Portage
Legend:
  • + - stable
  • ~ - unstable
  • M - hardmask
alpha amd64 arm hppa ia64 m68k mips ppc ppc64 s390 sh sparc x86
9999 diff - - - - - - - - - - - - -
0.9.64.4 - + ~ - - - - - - - - - ~

USE flags

  • apparmor - Enable support for custom AppArmor profiles
  • chroot - Enable chrooting to custom directory
  • contrib - Install contrib scripts
  • dbusproxy - Enable DBus proxying to filter access in supporting profiles
  • debug - Enable extra debug codepaths, like asserts and extra output. If you want to get meaningful backtraces see https://wiki.gentoo.org/wiki/Project:Quality_Assurance/Backtraces
  • file-transfer - Enable file transfers between sandboxes and the host system
  • globalcfg - Enable global config file
  • kernel_linux - KERNEL setting for system using the Linux kernel
  • network - Enable networking features
  • private-home - Enable private home feature
  • python_single_target_python3_6 - Build for Python 3.6 only
  • python_single_target_python3_7 - Build for Python 3.7 only
  • python_single_target_python3_8 - Build for Python 3.8 only
  • python_single_target_python3_9 - Build for Python 3.9 only
  • suid - Enable setuid root program, with potential security risks
  • test - Enable dependencies and/or preparations necessary to run tests (usually controlled by FEATURES=test but can be toggled independently)
  • userns - Enable attaching a new user namespace to a sandbox (--noroot option)
  • vim-syntax - Pulls in related vim syntax scripts
  • whitelist - Enable whitelist
  • X - Enable X11 sandboxing

Security Advisory

Date Severity Title
20 days high Firejail: Privilege escalation
5 months normal Firejail: Multiple vulnerabilities
over 4 years high Firejail: Privilege escalation
over 4 years normal Firejail: Multiple vulnerabilities
over 4 years normal Firejail: Multiple vulnerabilities

Also available in: Atom

Thank you!