Skip to content

1.6.6 (Hotfix macOS)
Compare
Choose a tag to compare
@cryptobot cryptobot released this 21 Feb 14:40
· 1980 commits to develop since this release
1.6.6
This tag was signed with the committer’s verified signature.
tobihagemann Tobias Hagemann
GPG key ID: 898890C09D3199B3
Learn about vigilant mode.
64845f0
This commit was signed with the committer’s verified signature.
tobihagemann Tobias Hagemann
GPG key ID: 898890C09D3199B3
Learn about vigilant mode.

Fixes CVE-2022-25366.

This hotfix removes a sandbox exception which can be used to inject code. The exploits assumes an attacker who already has access to the system in order to set/modify environment variables.

💾 SHA-256 checksums of release artifacts:

02b8ba1384d67fa507609500891461942e97297da69ccc718aab57fa96b83ae9  ./Cryptomator-1.6.6.dmg
9c6db1941c64f7bd644d42b4b0502adfe75ef854e4ebe87d46f7c392cc4ab2b6  ./Cryptomator-1.6.6-arm64.dmg
fc8745062b41c68f36503f6b7ae607ad5881fbcb4235fcec9f2ea52105452529  ./cryptomator-1.6.6.tar.gz
Assets 7
Loading