napcok/calamares
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Changes: refer to CVE numbers for both issues

Browse Source
This commit is contained in:
Adriaan de Groot 2019-07-05 23:33:46 +02:00
parent 940c990268
commit 937dac47d8
1 changed files with 2 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
CHANGES
View File

@ -16,7 +16,7 @@ understanding the issues (alphabetically by first name):
- Seth Arnold - Seth Arnold
- Simon Quigley - Simon Quigley
- Thomas Ward - Thomas Ward
Both CVE's have been resolved.
## Core ## ## Core ##
@ -26,7 +26,7 @@ No core changes.
- *initramfs* could create an initramfs with insecure permissions. - *initramfs* could create an initramfs with insecure permissions.
Since the keyfile is included in the initramfs, an attacker could Since the keyfile is included in the initramfs, an attacker could
read the file from the initramfs. #1190 read the file from the initramfs. #1190 CVE-2019-13178
- *luksbootkeyfile* created a key file where a window of opportunity - *luksbootkeyfile* created a key file where a window of opportunity
existed where the key file could have too-lax file permissions. existed where the key file could have too-lax file permissions.
#1191 CVE-2019-13179 #1191 CVE-2019-13179