From 6c24b2e83e09be09982f248e8633908a9c811677 Mon Sep 17 00:00:00 2001 From: Aleksa Sarai Date: Tue, 3 Sep 2024 11:29:16 +1000 Subject: [PATCH] changelog: update to include 1.1.14 notes Signed-off-by: Aleksa Sarai --- CHANGELOG.md | 25 ++++++++++++++++++++++++- 1 file changed, 24 insertions(+), 1 deletion(-) diff --git a/CHANGELOG.md b/CHANGELOG.md index aa08955e8..b005b440c 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -223,6 +223,28 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0 [cve-2019-5736]: https://github.com/advisories/GHSA-gxmr-w5mj-v8hh +## [1.1.14] - 2024-09-03 + +> 年を取っていいことは、驚かなくなることね。 + +### Security + + * Fix [CVE-2024-45310][cve-2024-45310], a low-severity attack that allowed + maliciously configured containers to create empty files and directories on + the host. + +[cve-2024-45310]: https://github.com/opencontainers/runc/security/advisories/GHSA-jfvp-7x6p-h2pv + +### Added + + * Add support for Go 1.23. (#4360, #4372) + +### Fixed + + * Revert "allow overriding VERSION value in Makefile" and add `EXTRA_VERSION`. + (#4370, #4382) + * rootfs: consolidate mountpoint creation logic. (#4359) + ## [1.1.13] - 2024-06-13 > There is no certainty in the world. This is the only certainty I have. @@ -756,7 +778,8 @@ implementation (libcontainer) is *not* covered by this policy. [1.0.1]: https://github.com/opencontainers/runc/compare/v1.0.0...v1.0.1 -[Unreleased 1.1.z]: https://github.com/opencontainers/runc/compare/v1.1.13...release-1.1 +[Unreleased 1.1.z]: https://github.com/opencontainers/runc/compare/v1.1.14...release-1.1 +[1.1.14]: https://github.com/opencontainers/runc/compare/v1.1.13...v1.1.14 [1.1.13]: https://github.com/opencontainers/runc/compare/v1.1.12...v1.1.13 [1.1.12]: https://github.com/opencontainers/runc/compare/v1.1.11...v1.1.12 [1.1.11]: https://github.com/opencontainers/runc/compare/v1.1.10...v1.1.11