mirror
/
borg
mirror of https://github.com/borgbackup/borg.git
1
0
Fork 0
Code Issues Releases Wiki Activity

update CHANGES

This commit is contained in:
Thomas Waldmann 2023-08-30 03:47:35 +02:00
parent 9e63abb679
commit ed1ab84cc7
No known key found for this signature in database
GPG Key ID: 243ACFA951F78E01
1 changed files with 6 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

8
docs/changes.rst
View File

@ -308,6 +308,8 @@ Some things can be recommended for the upgrade process from borg 1.1.x
take significant time, but after that it will be fast) - for more details
see below.
- check the compatibility notes (see below) and adapt your scripts, if needed.
- borg 1.2.5 has a security fix for the pre-1.2.5 archives spoofing vulnerability
(CVE-2023-36811), see details and necessary upgrade procedure described above.
- if you run into any issues, please check the github issue tracker before
posting new issues there or elsewhere.
@ -365,14 +367,16 @@ Compatibility notes:
Change Log
==========
Version 1.2.5 (not released yet)
--------------------------------
Version 1.2.5 (2023-08-30)
--------------------------
For upgrade and compatibility hints, please also read the section "Upgrade Notes"
above.
Fixes:
- Security: fix pre-1.2.5 archives spoofing vulnerability (CVE-2023-36811),
see details and necessary upgrade procedure described above.
- create: do not try to read parent dir of recursion root, #7746
- extract: fix false warning about pattern never matching, #4110
- diff: remove surrogates before output, #7535