mirror/borg
1
0
Fork 0
mirror of https://github.com/borgbackup/borg.git synced 2024-12-26 09:47:58 +00:00
Code Issues Releases Wiki Activity

update CHANGES (1.1-maint) for 1.1.3 release

Browse source
This commit is contained in:
Thomas Waldmann 2017-11-26 19:48:39 +01:00
parent ea0203bb0d
commit 54883434b9
1 changed files with 7 additions and 3 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

10
docs/changes.rst
View file

@ -131,8 +131,8 @@ The best check that everything is ok is to run a dry-run extraction::
Changelog
=========
Version 1.1.3 (not released yet)
--------------------------------
Version 1.1.3 (2017-11-27)
--------------------------
Compatibility notes:
@ -153,7 +153,11 @@ Compatibility notes:
Fixes:
- XXX SECFIX XXX
- Security Fix for CVE-2017-15914: Incorrect implementation of access controls
allows remote users to override repository restrictions in Borg servers.
A user able to access a remote Borg SSH server is able to circumvent access
controls post-authentication.
Affected releases: 1.1.0, 1.1.1, 1.1.2. Releases 1.0.x are NOT affected.
- crc32: deal with unaligned buffer, add tests - this broke borg on older ARM
CPUs that can not deal with unaligned 32bit memory accesses and raise a bus
error in such cases. the fix might also improve performance on some CPUs as