Released 2.9.8

diff --git a/AUTHORS b/AUTHORS
index 3aae1ac87937a1145e5d4d596454f8a50d9e95b4..9872ba833c0dd54f7119ab87af770da1837ca03a 100644 (file)
--- a/AUTHORS
+++ b/AUTHORS
@@ -16,26 +16,18 @@ Contributors
 CUSE has been written by Tejun Heo <teheo@suse.de>. Furthermore, the
 following people have contributed patches (autogenerated list):
 
+Alexander <aleksandr.rvachev@eltex-co.ru>
 Anatol Pomozov <anatol.pomozov@gmail.com>
-Antonio SJ Musumeci <trapexit@spawn.link>
-Christopher Harrison <ch12@sanger.ac.uk>
+Bill Zissimopoulos <billziss@navimatics.com>
+Carl Edquist <edquist@cs.wisc.edu>
 Csaba Henk <csaba.henk@creo.hu>
-cvs2git <>
 Dalvik Khertel <khertel@outlook.com>
 Daniel Thau <danthau@bedrocklinux.org>
 David McNab <david@rebirthing.co.nz>
-David Sheets <sheets@alum.mit.edu>
 Emmanuel Dreyfus <manu@netbsd.org>
-Enke Chen <enkechen@yahoo.com>
-Eric Engestrom <eric@engestrom.ch>
-Eric Wong <normalperson@yhbt.net>
 Fabrice Bauzac <fbauzac@amadeus.com>
-Feng Shuo <steve.shuo.feng@gmail.com>
 Hendrik Brueckner <brueckner@linux.vnet.ibm.com>
-Ikey Doherty <michael.i.doherty@intel.com>
-Jan Blumschein <jan@jan-blumschein.de>
-Joachim Schiele <joachim.schiele@daimler.com>
-Joachim Schiele <js@lastlog.de>
+Jann Horn <jannh@google.com>
 John Muir <john@jmuir.com>
 Laszlo Papp <ext-laszlo.papp@nokia.com>
 Madan Valluri <mvalluri@cumulus-systems.com>
@@ -50,10 +42,6 @@ Nikolaus Rath <Nikolaus@rath.org>
 Olivier Blin <olivier.blin@softathome.com>
 Ratna_Bolla@dell.com <Ratna_Bolla@dell.com>
 Reuben Hawkins <reubenhwk@gmail.com>
-Richard W.M. Jones <rjones@redhat.com>
-Riku Voipio <riku.voipio@linaro.org>
 Roland Bauerschmidt <rb@debian.org>
-Sam Stuewe <halosghost@archlinux.info>
 Sebastian Pipping <sebastian@pipping.org>
 therealneworld@gmail.com <therealneworld@gmail.com>
-Winfried Koehler <w_scan@gmx-topmail.de>

diff --git a/ChangeLog b/ChangeLog
index 0149cb36b73b3f18ffa01b6cd7ddacea88f8a06b..8f6536fb42174e0bae35a71e7f8ec1ed28c30101 100644 (file)
--- a/ChangeLog
+++ b/ChangeLog
@@ -1,16 +1,17 @@
-Unreleased Changes
-==================
+FUSE 2.9.8 (2018-07-24)
+=======================
 
+* SECURITY UPDATE: In previous versions of libfuse it was possible to
+  for unprivileged users to specify the `allow_other` option even when
+  this was forbidden in `/etc/fuse.conf`.  The vulnerability is
+  present only on systems where SELinux is active (including in
+  permissive mode).
 * libfuse no longer segfaults when fuse_interrupted() is called outside
   the event loop.
 * The fusermount binary has been hardened in several ways to reduce
   potential attack surface. Most importantly, mountpoints and mount
   options must now match a hard-coded whitelist. It is expected that
   this whitelist covers all regular use-cases.
-
-FUSE 2.9.8
-==========
-
 * Fixed rename deadlock on FreeBSD.
 
 FUSE 2.9.7 (2016-06-20)

diff --git a/configure.ac b/configure.ac
index 8f1a63a2734bb6ec0c6c8239208a956fc5383323..a96da7f3bd404270517b3d162705b31301a0d66e 100644 (file)
--- a/configure.ac
+++ b/configure.ac
@@ -1,4 +1,4 @@
-AC_INIT(fuse, 2.9.7)
+AC_INIT(fuse, 2.9.8)
 
 AC_PREREQ(2.59d)
 AC_CONFIG_MACRO_DIR([m4])

diff --git a/lib/Makefile.am b/lib/Makefile.am
index b0f195e3ae839c70c6c8a9627d26518de8b8704a..5cbc6b54f7b998604441396ab3296cd45e9c1cb8 100644 (file)
--- a/lib/Makefile.am
+++ b/lib/Makefile.am
@@ -37,7 +37,7 @@ libfuse_la_SOURCES =          \
        $(iconv_source)         \
        $(mount_source)
 
-libfuse_la_LDFLAGS = -pthread @libfuse_libs@ -version-number 2:9:7 \
+libfuse_la_LDFLAGS = -pthread @libfuse_libs@ -version-number 2:9:8 \
        -Wl,--version-script,$(srcdir)/fuse_versionscript
 
 if NETBSD