diff options
author | Kelvin M. Klann <kmk3.code@protonmail.com> | 2022-01-23 05:53:50 -0300 |
---|---|---|
committer | Kelvin M. Klann <kmk3.code@protonmail.com> | 2022-02-02 16:14:23 -0300 |
commit | bbf5ec4a5ed4bca23aa7c4d1e50cd15b1ea1977e (patch) | |
tree | 48a6ae7bf4d546644c040e4b29a0562c6df128b7 | |
parent | Bump github/codeql-action from 1.0.29 to 1.0.30 (diff) | |
download | firejail-bbf5ec4a5ed4bca23aa7c4d1e50cd15b1ea1977e.tar.gz firejail-bbf5ec4a5ed4bca23aa7c4d1e50cd15b1ea1977e.tar.zst firejail-bbf5ec4a5ed4bca23aa7c4d1e50cd15b1ea1977e.zip |
RELNOTES: add security-related items
Note: #4780 was closed by commit d2e10f8b7 ("fix --private-cwd problem",
2021-12-19).
Relates to #4748 #4780.
-rw-r--r-- | RELNOTES | 4 |
1 files changed, 4 insertions, 0 deletions
@@ -1,5 +1,9 @@ | |||
1 | firejail (0.9.68rc2) baseline; urgency=low | 1 | firejail (0.9.68rc2) baseline; urgency=low |
2 | * work in progress | 2 | * work in progress |
3 | * security: on Ubuntu, the PPA is now recommended over the distro package | ||
4 | (see README.md) (#4748) | ||
5 | * security: bugfix: private-cwd leaks access to the entire filesystem | ||
6 | (#4780); reported by Hugo Osvaldo Barrera | ||
3 | * exit code: distinguish fatal signals by adding 128 (#4533) | 7 | * exit code: distinguish fatal signals by adding 128 (#4533) |
4 | * close file descriptors greater than 2 (--keep-fd) (#4845) | 8 | * close file descriptors greater than 2 (--keep-fd) (#4845) |
5 | * intrusion detection system (--ids-init, --ids-check) | 9 | * intrusion detection system (--ids-init, --ids-check) |