github-starred/firejail

Fork 0

mirror of https://github.com/netblue30/firejail.git synced 2026-05-15 14:16:14 -06:00

[GH-ISSUE #6406] Recommend using the PPA in the wordpress website as well #3267

New issue

Open

opened 2026-05-05 09:52:29 -06:00 by gitea-mirror · 5 comments

gitea-mirror commented

2026-05-05 09:52:29 -06:00

Owner

Originally created by @Lidoca on GitHub (Jul 15, 2024).
Original GitHub issue: https://github.com/netblue30/firejail/issues/6406

Originally assigned to: @netblue30 on GitHub.

On the primary website (WordPress.com), there is no warning about Ubuntu and its derivatives.

Describe the solution you'd like

Write the following on the Downloads page on WordPress.com as well:

For Ubuntu 18.04+ and derivatives (such as Linux Mint), users are strongly
advised to use the
PPA.

How to add and install from the PPA:

sudo add-apt-repository ppa:deki/firejail
sudo apt-get update
sudo apt-get install firejail firejail-profiles

Reason: The firejail package for Ubuntu 20.04 has been left vulnerable to
CVE-2021-26910 for months after a patch for it was posted on Launchpad:

What software is supported by the Ubuntu Security team?

Ubuntu is currently divided into four components: main, restricted, universe
and multiverse. All binary packages in main and restricted are supported by
the Ubuntu Security team for the life of an Ubuntu release, while binary
packages in universe and multiverse are supported by the Ubuntu community.

Additionally, the PPA version is likely to be more recent and to contain more
profile fixes.

See the following discussions for details:

Describe alternatives you've considered

A clear and concise description of any alternative solutions or features you've considered.

Additional context

From what I understand, this may also apply to firetools, in which case the WordPress.com Downloads page for firetools and the README on GitHub would also need to be modified.

Originally created by @Lidoca on GitHub (Jul 15, 2024). Original GitHub issue: https://github.com/netblue30/firejail/issues/6406 Originally assigned to: @netblue30 on GitHub. ### Is your feature request related to a problem? Please describe. On the primary website (WordPress.com), there is no warning about Ubuntu and its derivatives. ### Describe the solution you'd like Write the following on the Downloads page on WordPress.com as well: For Ubuntu 18.04+ and derivatives (such as Linux Mint), users are **strongly advised** to use the [PPA](https://launchpad.net/~deki/+archive/ubuntu/firejail). How to add and install from the PPA: ```sh sudo add-apt-repository ppa:deki/firejail sudo apt-get update sudo apt-get install firejail firejail-profiles ``` Reason: The firejail package for Ubuntu 20.04 has been left vulnerable to CVE-2021-26910 for months after a patch for it was posted on Launchpad: * [CVE-2021-26910](https://github.com/advisories/GHSA-2q4h-h5jp-942w) * [firejail version in Ubuntu 20.04 LTS is vulnerable to CVE-2021-26910](https://bugs.launchpad.net/ubuntu/+source/firejail/+bug/1916767) See also <https://wiki.ubuntu.com/SecurityTeam/FAQ>: > What software is supported by the Ubuntu Security team? > > Ubuntu is currently divided into four components: main, restricted, universe > and multiverse. All binary packages in main and restricted are supported by > the Ubuntu Security team for the life of an Ubuntu release, while binary > packages in universe and multiverse are supported by the Ubuntu community. Additionally, the PPA version is likely to be more recent and to contain more profile fixes. See the following discussions for details: * [Should I keep using the version of firejail available in my distro repos?](https://github.com/netblue30/firejail/discussions/4666) * [How to install the latest version on Ubuntu and derivatives](https://github.com/netblue30/firejail/discussions/4663) ### Describe alternatives you've considered _A clear and concise description of any alternative solutions or features you've considered._ ### Additional context From what I understand, this may also apply to firetools, in which case the WordPress.com Downloads page for firetools and the README on GitHub would also need to be modified.

gitea-mirror added the

wordpress

documentation

labels 2026-05-05 09:52:29 -06:00

gitea-mirror commented

2026-05-05 09:52:31 -06:00

Author

Owner

@ghost commented on GitHub (Jul 15, 2024):

Having the Ubuntu PPA details on the primary website too makes sense. If I'm not mistaken only @netblue30 can take care of that.

From what I understand, this may also apply to firetools, in which case the WordPress.com Downloads page for firetools and the README on GitHub would also need to be modified.

Firetools repo offers .deb's on its releases page. I don't see any firetools package on the PPA though.

@ghost commented on GitHub (Jul 15, 2024): Having the Ubuntu PPA details on the primary website too makes sense. If I'm not mistaken only @netblue30 can take care of that. > From what I understand, this may also apply to firetools, in which case the WordPress.com Downloads page for firetools and the README on GitHub would also need to be modified. Firetools repo offers .deb's on its [releases](https://github.com/netblue30/firetools/releases) page. I don't see any firetools package on the [PPA](https://launchpad.net/~deki/+archive/ubuntu/firejail) though.

gitea-mirror commented

2026-05-05 09:52:32 -06:00

Author

Owner

@kmk3 commented on GitHub (Jul 15, 2024):

From what I understand, this may also apply to firetools, in which case the
WordPress.com Downloads page for firetools and the README on GitHub would
also need to be modified.

Firetools repo offers .deb's on its
releases page. I don't see
any firetools package on the
PPA though.

It sounds like a good idea to have all firejail-related tools in the same PPA.
One consideration is that firetools depends on qt, which might be tricky to
deal with if different Debian versions ship with different qt versions, though
I'm not familiar with maintaining something like that.

@reinerh Thoughts?

@kmk3 commented on GitHub (Jul 15, 2024): > > From what I understand, this may also apply to firetools, in which case the > > WordPress.com Downloads page for firetools and the README on GitHub would > > also need to be modified. > > Firetools repo offers .deb's on its > [releases](https://github.com/netblue30/firetools/releases) page. I don't see > any firetools package on the > [PPA](https://launchpad.net/~deki/+archive/ubuntu/firejail) though. It sounds like a good idea to have all firejail-related tools in the same PPA. One consideration is that firetools depends on qt, which might be tricky to deal with if different Debian versions ship with different qt versions, though I'm not familiar with maintaining something like that. @reinerh Thoughts?

gitea-mirror commented

2026-05-05 09:52:33 -06:00

Author

Owner

@reinerh commented on GitHub (Jul 15, 2024):

there was no need yet to have firetools in the PPA, as firetools is not released so frequently.
but if there is interest, I can upload it as well.
I think firetools does not have a tight requirement on certain Qt versions, so it might work without much problems.

@reinerh commented on GitHub (Jul 15, 2024): there was no need yet to have firetools in the PPA, as firetools is not released so frequently. but if there is interest, I can upload it as well. I think firetools does not have a tight requirement on certain Qt versions, so it might work without much problems.

gitea-mirror commented

2026-05-05 09:52:34 -06:00

Author

Owner

@reinerh commented on GitHub (Jul 15, 2024):

I just remembered that I actually already uploaded firetools to the PPA: https://launchpad.net/~deki/+archive/ubuntu/firejail
0.9.72 is available for Ubuntu 20.04, 22.04 and 22.10.

@reinerh commented on GitHub (Jul 15, 2024): I just remembered that I actually already uploaded firetools to the PPA: https://launchpad.net/~deki/+archive/ubuntu/firejail 0.9.72 is available for Ubuntu 20.04, 22.04 and 22.10.

gitea-mirror commented

2026-05-05 09:52:35 -06:00

Author

Owner

@kmk3 commented on GitHub (Jul 15, 2024):

there was no need yet to have firetools in the PPA, as firetools is not
released so frequently. but if there is interest, I can upload it as well. I
think firetools does not have a tight requirement on certain Qt versions, so
it might work without much problems.

I just remembered that I actually already uploaded firetools to the PPA:
https://launchpad.net/~deki/+archive/ubuntu/firejail 0.9.72 is available for
Ubuntu 20.04, 22.04 and 22.10.

I see, but is it important to have matching versions of firejail/firetools?

For example, if a user installed firejail 0.9.72 in the PPA and firetools
0.9.70 from the distribution (in case it was not in the PPA).

@kmk3 commented on GitHub (Jul 15, 2024): > there was no need yet to have firetools in the PPA, as firetools is not > released so frequently. but if there is interest, I can upload it as well. I > think firetools does not have a tight requirement on certain Qt versions, so > it might work without much problems. > I just remembered that I actually already uploaded firetools to the PPA: > https://launchpad.net/~deki/+archive/ubuntu/firejail 0.9.72 is available for > Ubuntu 20.04, 22.04 and 22.10. I see, but is it important to have matching versions of firejail/firetools? For example, if a user installed firejail 0.9.72 in the PPA and firetools 0.9.70 from the distribution (in case it was not in the PPA).

No milestone

No project

No assignees

1 participant

Notifications

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference: github-starred/firejail#3267

No description provided.

Rows
Columns