Skip to content

Releases: Duncaen/OpenDoas

v6.8.2: Fix for empty argv handling.

26 Jan 16:13
@Duncaen Duncaen
v6.8.2
This tag was signed with the committer’s verified signature.
Duncaen Duncan Overbruck
GPG key ID: 335C1D17EC3D6E35
Learn about vigilant mode.
7f0205f
This commit was signed with the committer’s verified signature.
Duncaen Duncan Overbruck
GPG key ID: 335C1D17EC3D6E35
Learn about vigilant mode.
Compare
Choose a tag to compare
v6.8.2: Fix for empty argv handling. Latest
Latest

This release adds a patch from PR#92 to aborting early if argv is not set or
empty.
Nothing else has changed in this patch release.

Assets 6
Loading

v6.8.1: - This release fixes one major issue that has been assigned CVE-2019-…

28 Jan 21:04
@Duncaen Duncaen
v6.8.1
This tag was signed with the committer’s verified signature.
Duncaen Duncan Overbruck
GPG key ID: 335C1D17EC3D6E35
Learn about vigilant mode.
24b1a95
This commit was signed with the committer’s verified signature.
Duncaen Duncan Overbruck
GPG key ID: 335C1D17EC3D6E35
Learn about vigilant mode.
Compare
Choose a tag to compare
v6.8.1: - This release fixes one major issue that has been assigned CVE-2019-…

  • This release fixes one major issue that has been assigned CVE-2019-25016.

    Rules that allowed the user to execute any command would inherit the
    executing users PATH instead of resetting it to a default PATH.
    The path will now be correctly reset (d5acd52) to the defined default PATH.

    Those rules still allow the user to execute any program from their PATH
    but executed commands won't inherit the users PATH anymore.

    Rules that limit the user to execute only a specific command are not affected
    by this and are only executed from the default PATH and with the PATH
    environment variable set to the safe default.

Other changes are:

  • apply missing man page changes
  • Fixes to the configuration parser 2d7431c, 01ac841 and 36cc28e
  • Minor documentation and error message wording changes.
Assets 6
Loading

v6.8: This release adds the `nolog` option and a few other minor documentation

14 Nov 16:03
@Duncaen Duncaen
v6.8
This tag was signed with the committer’s verified signature.
Duncaen Duncan Overbruck
GPG key ID: 335C1D17EC3D6E35
Learn about vigilant mode.
31abd37
This commit was signed with the committer’s verified signature.
Duncaen Duncan Overbruck
GPG key ID: 335C1D17EC3D6E35
Learn about vigilant mode.
Compare
Choose a tag to compare
v6.8: This release adds the `nolog` option and a few other minor documentation 
changes from upstream. Additionally the configure script and makefile
had some changes to add support for NetBSD, FreeBSD and Mac OS X.
Assets 6
Loading

v6.6.1

03 Feb 21:57
@Duncaen Duncaen
v6.6.1
This tag was signed with the committer’s verified signature.
Duncaen Duncan Overbruck
GPG key ID: 335C1D17EC3D6E35
Learn about vigilant mode.
50a47d3
This commit was signed with the committer’s verified signature.
Duncaen Duncan Overbruck
GPG key ID: 335C1D17EC3D6E35
Learn about vigilant mode.
Compare
Choose a tag to compare
v6.6.1

This release fixes some bugs when parsing /proc/self/stat and adds some more warning/error messages.

Assets 6
Loading

v6.6

23 Nov 16:39
@Duncaen Duncaen
v6.6
This tag was signed with the committer’s verified signature.
Duncaen Duncan Overbruck
GPG key ID: 335C1D17EC3D6E35
Learn about vigilant mode.
84ce5c7
This commit was signed with the committer’s verified signature.
Duncaen Duncan Overbruck
GPG key ID: 335C1D17EC3D6E35
Learn about vigilant mode.
Compare
Choose a tag to compare
v6.6 
release 6.6
Assets 6
Loading