diff options
author | Reiner Herrmann <reiner@reiner-h.de> | 2017-01-07 20:00:06 +0100 |
---|---|---|
committer | Reiner Herrmann <reiner@reiner-h.de> | 2017-01-07 20:00:06 +0100 |
commit | c5c630ce3ef94cc36ea40d1c7729da30ced135ff (patch) | |
tree | 0767269bf2c21ceeda08712c535cc10fe8d229e1 | |
parent | Merge pull request #1025 from reinerh/cve-references2 (diff) | |
download | firejail-c5c630ce3ef94cc36ea40d1c7729da30ced135ff.tar.gz firejail-c5c630ce3ef94cc36ea40d1c7729da30ced135ff.tar.zst firejail-c5c630ce3ef94cc36ea40d1c7729da30ced135ff.zip |
Reference new CVEs
-rw-r--r-- | RELNOTES | 3 |
1 files changed, 2 insertions, 1 deletions
@@ -1,9 +1,10 @@ | |||
1 | firejail (0.9.45) baseline; urgency=low | 1 | firejail (0.9.45) baseline; urgency=low |
2 | * development version, work in progress | 2 | * development version, work in progress |
3 | * security: --bandwidth root shell found by Martin Carpenter | 3 | * security: --bandwidth root shell found by Martin Carpenter (CVE-2017-5207) |
4 | * security: disabled --allow-debuggers when running on kernel | 4 | * security: disabled --allow-debuggers when running on kernel |
5 | versions prior to 4.8; a kernel bug in ptrace system call | 5 | versions prior to 4.8; a kernel bug in ptrace system call |
6 | allows a full bypass of seccomp filter; problem reported by Lizzie Dixon | 6 | allows a full bypass of seccomp filter; problem reported by Lizzie Dixon |
7 | (CVE-2017-5206) | ||
7 | * security: overwrite /etc/resolv.conf found by Martin Carpenter (CVE-2016-10118) | 8 | * security: overwrite /etc/resolv.conf found by Martin Carpenter (CVE-2016-10118) |
8 | * secuirty: TOCTOU exploit for --get and --put found by Daniel Hodson | 9 | * secuirty: TOCTOU exploit for --get and --put found by Daniel Hodson |
9 | * security: invalid environment exploit found by Martin Carpenter (CVE-2016-10122) | 10 | * security: invalid environment exploit found by Martin Carpenter (CVE-2016-10122) |