diff options
-rw-r--r-- | RELNOTES | 3 |
1 files changed, 2 insertions, 1 deletions
@@ -1,9 +1,10 @@ | |||
1 | firejail (0.9.45) baseline; urgency=low | 1 | firejail (0.9.45) baseline; urgency=low |
2 | * development version, work in progress | 2 | * development version, work in progress |
3 | * security: --bandwidth root shell found by Martin Carpenter | 3 | * security: --bandwidth root shell found by Martin Carpenter (CVE-2017-5207) |
4 | * security: disabled --allow-debuggers when running on kernel | 4 | * security: disabled --allow-debuggers when running on kernel |
5 | versions prior to 4.8; a kernel bug in ptrace system call | 5 | versions prior to 4.8; a kernel bug in ptrace system call |
6 | allows a full bypass of seccomp filter; problem reported by Lizzie Dixon | 6 | allows a full bypass of seccomp filter; problem reported by Lizzie Dixon |
7 | (CVE-2017-5206) | ||
7 | * security: overwrite /etc/resolv.conf found by Martin Carpenter (CVE-2016-10118) | 8 | * security: overwrite /etc/resolv.conf found by Martin Carpenter (CVE-2016-10118) |
8 | * secuirty: TOCTOU exploit for --get and --put found by Daniel Hodson | 9 | * secuirty: TOCTOU exploit for --get and --put found by Daniel Hodson |
9 | * security: invalid environment exploit found by Martin Carpenter (CVE-2016-10122) | 10 | * security: invalid environment exploit found by Martin Carpenter (CVE-2016-10122) |