diff --git a/CHANGELOG.md b/CHANGELOG.md index 2339e54bce6..751b11a9e7d 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -1,5 +1,12 @@ # Changelog +## [0.19.1] + +### Fixed + +- Fixed a logical error in bounds checking performed on vsock virtio descriptors + (CVE-2019-18960). + ## [0.19.0] ### Added diff --git a/Cargo.lock b/Cargo.lock index 130660c12e3..14bf21c4314 100644 --- a/Cargo.lock +++ b/Cargo.lock @@ -195,13 +195,13 @@ dependencies = [ [[package]] name = "firecracker" -version = "0.19.0" +version = "0.19.1" dependencies = [ "api_server 0.1.0", "backtrace 0.3.35 (registry+https://github.com/rust-lang/crates.io-index)", "clap 2.33.0 (registry+https://github.com/rust-lang/crates.io-index)", "fc_util 0.1.0", - "jailer 0.19.0", + "jailer 0.19.1", "logger 0.1.0", "mmds 0.1.0", "seccomp 0.1.0", @@ -304,7 +304,7 @@ source = "registry+https://github.com/rust-lang/crates.io-index" [[package]] name = "jailer" -version = "0.19.0" +version = "0.19.1" dependencies = [ "clap 2.33.0 (registry+https://github.com/rust-lang/crates.io-index)", "fc_util 0.1.0", diff --git a/Cargo.toml b/Cargo.toml index 7316a517158..7600fe7e0bd 100644 --- a/Cargo.toml +++ b/Cargo.toml @@ -1,6 +1,6 @@ [package] name = "firecracker" -version = "0.19.0" +version = "0.19.1" authors = ["Amazon Firecracker team "] [dependencies] diff --git a/api_server/swagger/firecracker.yaml b/api_server/swagger/firecracker.yaml index 5f7fcbdc8f2..052f81362b5 100644 --- a/api_server/swagger/firecracker.yaml +++ b/api_server/swagger/firecracker.yaml @@ -5,7 +5,7 @@ info: The API is accessible through HTTP calls on specific URLs carrying JSON modeled data. The transport medium is a Unix Domain Socket. - version: 0.19.0 + version: 0.19.1 termsOfService: "" contact: email: "compute-capsule@amazon.com" diff --git a/jailer/Cargo.toml b/jailer/Cargo.toml index d592c892549..cc245da9582 100644 --- a/jailer/Cargo.toml +++ b/jailer/Cargo.toml @@ -1,6 +1,6 @@ [package] name = "jailer" -version = "0.19.0" +version = "0.19.1" authors = ["Amazon Firecracker team "] [dependencies]