@Liryna Liryna released this Dec 20, 2018 · 16 commits to master since this release

Assets 9

This is a patch version for vulnerability security fix and keep alive mechanism improvement.

A Stack-based buffer overflow in the dokan driver has been discovered by Parvez Anwar (@parvezghh) and report by CERT Coordination Center. More information can be found here https://www.kb.cert.org/vuls/id/741315/ as CVE-2018-5410 The bug was introduced from major version update 1.0.0.5000 and is fixed in this version (1.2.1.1000).

Moreover, this version use a new mechanism of keepalive between the FS userland application and the driver. Instead of having a ping every X secondes. The Dokan library will now open a handle on the driver FS and close it (wanted during unmount or unwanted during a crash) to release the driver. This creates a better stability on FS userland crash and makes the unmount event faster.
Updating library and driver will be needed to get this feature. The driver will still support the oldest library (X second keepalive mecanisme).
Thanks again to Google for publishing their dokan improvement publicly 🚀 ❤️

See changelog

Thanks to all the contributors ! @Absoblogginlutely, @parvezghh, Google and all other who have made this version as it is !!!