Skip to content
v1.0.0-rc95 -- "Just when I thought I was out, they pull me back in."

This release of runc contains a fix for CVE-2021-30465[1], and users are
strongly recommended to update (especially if you are providing
semi-limited access to spawn containers to untrusted users).

Aside from this security fix, only a few other changes were made since
v1.0.0-rc94 (the only user-visible change was the addition of support
for defaultErrnoRet in seccomp profiles).

Thanks to the following people who made this release possible:

 * Aleksa Sarai <cyphar@cyphar.com>
 * Giuseppe Scrivano <gscrivan@redhat.com>
 * Kir Kolyshkin <kolyshkin@gmail.com>
 * Mrunal Patel <mrunal@me.com>

Due to the nature of this release, it didn't go through the normal
public release procedure. However, this break from procedure was agreed
upon on the security mailing list.

[1]: https://github.com/opencontainers/runc/security/advisories/GHSA-c3xm-pvg7-gh7r

Signed-off-by: Aleksa Sarai <cyphar@cyphar.com>