Update README for v1.7-beta1

2019-01-03 20:36:26 +01:00 · 2019-01-03 20:36:26 +01:00 · c1bd262600
commit c1bd262600
parent 7248669e27
1 changed files with 15 additions and 3 deletions
--- a/README.md
+++ b/README.md
@ -160,6 +160,18 @@ RM:    3.379

 Changelog
 ---------
+v1.7-beta1, 2019-01-03
+* **Fix possible symlink race attacks in forward mode** when using allow_other + plaintextnames
+  * If you use *both* `-allow_other` *and* `-plaintextnames`, you should upgrade.
+    Malicous users could trick gocryptfs into modifying files outside of `CIPHERDIR`,
+	or reading files inside `CIPHERDIR` that they should not have access to.
+  * If you do not use `-plaintextnames` (disabled per default), these attacks do
+    not work as symlinks are encrypted.
+  * Forward mode has been reworked to use the "*at" family of system calls everywhere
+    (`Openat/Unlinkat/Symlinkat/...`).
+  * As a result, gocryptfs may run slightly slower, as the caching logic has been
+    replaced and is very simple at the moment.
+  * The possibility for such attacks was found during an internal code review.

 v1.6.1, 2018-12-12
 * Fix "Operation not supported" chmod errors on Go 1.11