firejail

Description:Security sandbox for any type of processes
License: GPL-2
Homepage:https://firejail.wordpress.com/
Location:Portage
Legend:
  • + - stable
  • ~ - unstable
  • M - hardmask
alpha amd64 arm hppa ia64 m68k mips ppc ppc64 s390 sh sparc x86
0.9.56-r1 diff - ~ - - - - - - - - - - ~
0.9.56 diff - ~ - - - - - - - - - - ~
0.9.50 - + - - - - - - - - - - ~

USE flags

  • apparmor - Enable support for custom AppArmor profiles
  • bind - Enable custom bind mounts
  • chroot - Enable chrooting to custom directory
  • contrib - Install contrib scripts
  • file-transfer - Enable file transfers between sandboxes and the host system
  • network - Enable networking features
  • network-restricted - Grant access to --interface, --net=ethXXX and --netfilter only to root user; regular users are only allowed --net=none
  • seccomp - Enable system call filtering
  • suid - Enable setuid root program, with potential security risks
  • userns - Enable attaching a new user namespace to a sandbox (--noroot option)
  • x11 - Enable X11 sandboxing

Security Advisory

Date Severity Title
almost 2 years high Firejail: Privilege escalation
almost 2 years normal Firejail: Multiple vulnerabilities
almost 2 years normal Firejail: Multiple vulnerabilities

Also available in: Atom

Thank you!