app-misc/tracker-miners-3.5.3 includes the sandboxing tightening to disallow cases like bug 915500 from becoming a one-click RCE via tracker-miners.
Postponing due to this info from the security bug: As usual with seccomp, a bunch of issues have cropped up with the fix here: * https://gitlab.gnome.org/GNOME/tracker-miners/-/issues/280 * https://gitlab.gnome.org/GNOME/tracker-miners/-/issues/281 * https://gitlab.gnome.org/GNOME/tracker-miners/-/issues/283 * https://gitlab.gnome.org/GNOME/tracker-miners/-/issues/284 * https://gitlab.gnome.org/GNOME/tracker-miners/-/issues/288 * https://gitlab.gnome.org/GNOME/tracker-miners/-/issues/287 * https://gitlab.gnome.org/GNOME/tracker-miners/-/issues/285 * https://gitlab.gnome.org/GNOME/tracker-miners/-/issues/289
Keywords are not fully specified and arches are not CC-ed for the following packages: - =app-misc/tracker-miners-3.5.3
Lets go with 3.5.4
This needs https://gitlab.gnome.org/GNOME/tracker-miners/-/merge_requests/407
Unable to check for sanity: > no match for package: app-misc/tracker-miners-3.5.4
I think this bug can be closed, since the only version in tree is 3.6.2