v1.0.0-rc95 -- "Just when I thought I was out, they pull me back in." This release of runc contains a fix for CVE-2021-30465[1], and users are strongly recommended to update (especially if you are providing semi-limited access to spawn containers to untrusted users). Aside from this security fix, only a few other changes were made since v1.0.0-rc94 (the only user-visible change was the addition of support for defaultErrnoRet in seccomp profiles). Thanks to the following people who made this release possible: * Aleksa Sarai <cyphar@cyphar.com> * Giuseppe Scrivano <gscrivan@redhat.com> * Kir Kolyshkin <kolyshkin@gmail.com> * Mrunal Patel <mrunal@me.com> Due to the nature of this release, it didn't go through the normal public release procedure. However, this break from procedure was agreed upon on the security mailing list. [1]: https://github.com/opencontainers/runc/security/advisories/GHSA-c3xm-pvg7-gh7r Signed-off-by: Aleksa Sarai <cyphar@cyphar.com>