[Deepin Integration]~[v25-Release] feat: update bubblewrap to 0.11.0-2+deb13u1 by deepin-community-bot[bot]@deepin-community/bubblewrap by deepin-community-ci-bot[bot]

[deepin-bot]

Package information | 软件包信息

包名	版本
bubblewrap	0.11.0-2+deb13u1

Package repository address | 软件包仓库地址

deb [trusted=yes] https://ci.deepin.com/repo/obs/deepin:/CI:/TestingIntegration:/test-integration-pr-4064/testing/ ./

Changelog | 更新信息

bubblewrap (0.11.0-2+deb13u1) trixie; urgency=medium

• d/control, d/gbp.conf: Branch for Debian 13 stable updates
• d/patches: Fix privilege escalation if bubblewrap is setuid root.
  /usr/bin/bwrap has not been installed setuid-root by default since
  Debian 11, but if it was made setuid via a dpkg-statoverride set up
  by the local sysadmin (most likely in conjunction with turning off
  the ability for unprivileged users to create new user namespaces),
  then the version included in Debian 13.4 would be vulnerable.
  (CVE-2026-41163, Closes: #1134704)
  Note that the ability to install bubblewrap setuid-root has been
  deprecated upstream, and the version included in Debian 14 will
  refuse to run if it is setuid.

[deepin-bot]

Integration Test Info

Test suggestion | 测试建议

Influence | 影响范围

ADDITIONAL INFORMATION | 额外补充

[deepin-bot]

IntegrationProjector Notify the author
@deepin: Integrated issue updated

[deepin-bot]

IntegrationProjector Bot
Deepin Testing Integration Project Manager Info
Link to deepin-community/Repository-Integration#4064