diff options
| author |  netblue30 <netblue30@yahoo.com> | 2017-02-20 10:55:40 -0500 |
|---|---|---|
| committer | netblue30 <netblue30@yahoo.com> | 2017-02-20 10:55:40 -0500 |
| commit | 9d5f377dd3cdc599890c274686045f857d33a3b4 (patch) | |
| tree | 0414a854bbecb4fa74f9c06efbb83bcb57143035 /RELNOTES | |
| parent | spelling (diff) | |
| download | firejail-9d5f377dd3cdc599890c274686045f857d33a3b4.tar.gz firejail-9d5f377dd3cdc599890c274686045f857d33a3b4.tar.zst firejail-9d5f377dd3cdc599890c274686045f857d33a3b4.zip | |
security: ~/.pki directory whitelisted and later blacklisted. This affects most browsers, and disables the custom certificates installed by the user.
Diffstat (limited to 'RELNOTES')
| -rw-r--r-- | RELNOTES | 2 |
1 files changed, 2 insertions, 0 deletions
| @@ -13,6 +13,8 @@ firejail (0.9.45) baseline; urgency=low | |||
| 13 | * security: split seccomp filter code configuration in a separate executable | 13 | * security: split seccomp filter code configuration in a separate executable |
| 14 | * security: split file copying in private option in a separate executable | 14 | * security: split file copying in private option in a separate executable |
| 15 | * security: root exploit found by Sebastian Krahmer (CVE-2017-5180) | 15 | * security: root exploit found by Sebastian Krahmer (CVE-2017-5180) |
| 16 | * security: ~/.pki directory whitelisted and later blacklisted. This affects | ||
| 17 | most browsers, and disables the custom certificates installed by the user. | ||
| 16 | * feature: disable gnupg and systemd directories under /run/user | 18 | * feature: disable gnupg and systemd directories under /run/user |
| 17 | * feature: test coverage (gcov) support | 19 | * feature: test coverage (gcov) support |
| 18 | * feature: allow root user access to /dev/shm (--noblacklist=/dev/shm) | 20 | * feature: allow root user access to /dev/shm (--noblacklist=/dev/shm) |