mirror of
https://github.com/flatpak/flatpak.git
synced 2026-04-03 14:56:47 -04:00
Update NEWS for release
This commit is contained in:
Alexander Larsson
11
NEWS
11
NEWS
@@ -1,3 +1,14 @@
|
||||
Changes in 1.2.3
|
||||
================
|
||||
|
||||
The CVE-2019-5736 runc vulnerability is about using /proc/self/exe
|
||||
to modify the host side binary from the sandbox. This mostly does not
|
||||
affect flatpak since the flatpak sandbox is not run with root permissions.
|
||||
However, there is one case (running the apply_extra script for system
|
||||
installs) where this happens, so this release contains a fix for that.
|
||||
|
||||
* Don't expose /proc in apply_extra script sandbox.
|
||||
|
||||
Changes in 1.2.2
|
||||
================
|
||||
|
||||
|
||||
Reference in New Issue
Block a user