diff options
Diffstat (limited to 'doc/html/Release Notes.html')
| -rw-r--r-- | doc/html/Release Notes.html | 61 |
1 files changed, 52 insertions, 9 deletions
diff --git a/doc/html/Release Notes.html b/doc/html/Release Notes.html index fd5f0723..a35d2f3d 100644 --- a/doc/html/Release Notes.html +++ b/doc/html/Release Notes.html @@ -40,33 +40,76 @@ <span style="color:#ff0000;">To avoid hinting whether your volumes contain a hidden volume or not, or if you depend on plausible deniability when using hidden volumes/OS, then you must recreate both the outer and hidden volumes including system encryption and hidden OS, discarding existing volumes created prior to 1.18a version of VeraCrypt.</span></li> </p> -<p><strong style="text-align:left">1.26.17</strong> (November 19<sup>th</sup>, 2024):</p> +<p><strong style="text-align:left">1.26.20</strong> (February 3<sup>rd</sup>, 2025):</p> +<ul> +<li><strong>All OSes:</strong> + <ul> + <li>Implement SHA-256 acceleration on ARM64 platforms using CPU instructions.</li> + <li>Update translations.</li> + <li>Replace "Dismount" with "Unmount" across the UI and documentation to align with IT standards.</li> + </ul> +</li> +<li><strong>Windows:</strong> + <ul> + <li>Fix regression in driver that always allowed defragmentation and caused other side effects.</li> + <li>Revert to the previous method of gathering system entropy due to stability issues reported by users.</li> + </ul> +</li> +<li><strong>Linux:</strong> + <ul> + <li>Fix a regression in Linux Mint affecting administrator password authentication (GH #1473).</li> + </ul> +</li> +<li><strong>macOS:</strong> +<ul> +<li>Fix a regression that prevented volume unmounting (GH #1467).</li> +<li>Resolve a wxWidgets 3.2.6 assertion error related to the undefined switch <code>use-dummy-sudo-password</code> (GH #1470).</li> +</ul> +</li> +</ul> + +<p><strong style="text-align:left">1.26.18</strong> (January 20<sup>th</sup>, 2025):</p> <ul> <li><strong>All OSes:</strong> <ul> <li>Added support for SHA-256 x86 intrinsic to enhance the performance of PBKDF2-HMAC-SHA256.</li> +<li>Added support for AES hardware on ARM64 platforms (e.g. Windows ARM64, macOS on Apple Silicon Mx).</li> <li>Updated translations</li> </ul> </li> <li><strong>Windows:</strong> <ul> <li>Dropped support for Windows 32-bit.</li> - <li>Set Windows 10 May 2020 Update (version 2004) as the minimum supported version.</li> - <li>Fixed driver deadlock under low-memory scenarios caused by re-entrant IRP completions.</li> + <li>Set Windows 10 October 2018 Update (version 1809) as the minimum supported version.</li> + <li>Reduce driver deadlock occurences under low-memory scenarios caused by re-entrant IRP completions.</li> <li>Fixed failed EFI detection on some PCs where the BootOrder variable is not defined (proposed by @kriegste, GH #360).</li> + <li>Fixed "Access Denied" error when updating VeraCrypt using EXE setup following a Windows upgrade.</li> <li>Fixed various issues affecting the EFI system encryption configuration editor.</li> + <li>Fixed regression in Traveler Disk creation (GH #886)</li> <li>Replaced the deprecated CryptGenRandom with BCryptGenRandom for generating secure random bytes.</li> + <li>Use modern API to gather system entropy for random generation instead of obsolete ones.</li> + <li> Update LZMA SDK to version 24.09</li> + <li>Update libzip to version 1.11.2</li> </ul> </li> <li><strong>Linux:</strong> <ul> + <li>CVE-2024-54187: Added absolute paths when executing system binaries to prevent path hijacking (collaboration with SivertPL @__tfr)</li> + <li>CVE-2025-23021: Prevent mounting volumes on system directories and PATH (reported by SivertPL @__tfr)</li> <li>Fixed an assertion issue with the wxWidgets library included in Ubuntu.</li> <li>Improved directory-opening logic by prioritizing xdg-open and adding fallback mechanisms.</li> + <li>Ensure that volume exists before starting the mount operation.</li> + <li>Fix "Password too long" error message not expanded to include max length (GH #1456)</li> + <li>Simplify sudo session detection logic.</li> </ul> </li> <li><strong>macOS:</strong> <ul> + <li>CVE-2024-54187: Added absolute paths when executing system binaries to prevent path hijacking (collaboration with SivertPL @__tfr)</li> + <li>CVE-2025-23021: Prevent mounting volumes on system directories and PATH (reported by SivertPL @__tfr)</li> <li>Disabled screen capture by default. Added the --allow-screencapture CLI switch to enable it if needed.</li> + <li>Ensure that volume exists before starting the mount operation.</li> + <li>Implement sudo session detection logic</li> </ul> </li> </ul> @@ -225,7 +268,7 @@ <li>Fix various issues when running in Text mode: <ul> <li>Don't allow selecting exFAT/BTRFS filesytem if they are not present or not compatible with the created volume.</li> -<li>Fix wrong dismount message displayed when mounting a volume.</li> +<li>Fix wrong unmount message displayed when mounting a volume.</li> <li>Hide PIM during entry and re-ask PIM when user entered a wrong value.</li> <li>Fix printing error when checking free space during volume creation in path doesn't exist.</li> </ul> @@ -473,7 +516,7 @@ <li>Fix failure of Screen Readers (Accessibility support) to read UI by disabling newly introduced memory protection by default and adding a CLI switch (/protectMemory) to enable it when needed.</li> <li>Fix side effects related to the fix for CVE-2019-19501 which caused links in UI not to open.</li> <li>Add switch /signalExit to support notifying <a href="https://docs.microsoft.com/en-us/windows-server/administration/windows-commands/waitfor" target="_blank">WAITFOR</a> Windows command when VeraCrypt.exe exits if /q was specified in CLI (cf documentation for usage).</li> -<li>Don't display mount/dismount examples in help dialog for command line in Format and Expander.</li> +<li>Don't display mount/unmount examples in help dialog for command line in Format and Expander.</li> <li>Documentation and translation updates.</li> </ul> </li> @@ -747,7 +790,7 @@ <li>Driver: Fix "Incorrect Parameter" error when mounting volumes on some machines.</li> <li>Fix failure to mount system favorites during boot on some machines.</li> <li>Fix current application losing focus when VeraCrypt is run in command line with /quit /silent switches.</li> -<li>Fix some cases of external applications freezing during mount/dismount.</li> +<li>Fix some cases of external applications freezing during mount/unmount.</li> <li>Fix rare cases of secure desktop for password dialog not visible which caused UI to block.</li> <li>Update libzip to version 1.5.0 that include fixes for some security issues.</li> <li>Extend Secure Desktop feature to smart card PIN entry dialog.</li> @@ -1036,7 +1079,7 @@ incorrect Impersonation Token Handling. </li></ul> </li><li>Fix system favorites not always mounting after cold start. </li><li>Solve installer error when updating VeraCrypt on Windows 10. </li><li>Implement decryption of non-system partition/drive. </li><li>Include 64-bit exe files in the installer and deploy them on 64-bit machines for better performances. </li><li>Allow using drive letters A: and B: for mounting volumes </li><li>Make command line argument parsing more strict and robust (e.g. /lz rejected, must be /l z) </li><li>Add possibility to show system encryption password in Windows GUI and bootloader -</li><li>Solve "Class Already exists" error that was happening for some users. </li><li>Solve some menu items and GUI fields not translatable </li><li>Make volumes correctly report Physical Sector size to Windows. </li><li>Correctly detect switch user/RDP disconnect operations for autodismount on session locked. +</li><li>Solve "Class Already exists" error that was happening for some users. </li><li>Solve some menu items and GUI fields not translatable </li><li>Make volumes correctly report Physical Sector size to Windows. </li><li>Correctly detect switch user/RDP disconnect operations for autounmount on session locked. </li><li>Add manual selection of partition when resuming in-place encryption. </li><li>Add command line option (/cache f) to temporarily cache password during favorites mounting. </li><li>Add waiting dialog for Auto-Mount Devices operations to avoid freezing GUI. </li><li>Add extra information to displayed error message in order to help analyze reported issues. </li><li>Disable menu entry for changing system encryption PRF since it's not yet implemented. @@ -1071,7 +1114,7 @@ incorrect Impersonation Token Handling. </li></ul> </li><li>Uninstall link now open the standard "Add/Remove Programs" window. </li><li>On uninstall, remove all VeraCrypt references from registry and disk. </li><li>Included VeraCryptExpander in the Setup. </li><li>Add option to temporary cache password when mounting multiple favorites. </li><li>Minor fixes and enhancements (see git history for more information) </li></ul> </li><li><strong>MacOSX:</strong> <ul> -<li>Solve issue volumes not auto-dismounting when quitting VeraCrypt<strong>.</strong> +<li>Solve issue volumes not auto-unmounting when quitting VeraCrypt<strong>.</strong> </li><li>Solve issue VeraCrypt window not reopening by clicking dock icon. </li></ul> </li><li><strong>Linux/MacOSX:</strong> <ul> @@ -1108,7 +1151,7 @@ incorrect Impersonation Token Handling. </li></ul> <li>Security: fix vulnerability in bootloader detected by Open Crypto Audit and make it more robust. </li><li>Add support for SHA-256 in system boot encryption. </li><li>Various optimizations in bootloader. </li><li>Complete fix of ShellExecute security issue. </li><li>Kernel driver: check that the password length received from bootloader is less or equal to 64. </li><li>Correct a random crash when clicking the link for more information on keyfiles -</li><li>Implement option to auto-dismount when user session is locked </li><li>Add self-test vectors for SHA-256 </li><li>Modern look-and-feel by enabling visual styles </li><li>few minor fixed. </li></ul> +</li><li>Implement option to auto-unmount when user session is locked </li><li>Add self-test vectors for SHA-256 </li><li>Modern look-and-feel by enabling visual styles </li><li>few minor fixed. </li></ul> </li></ul> <div style="text-align:left; margin-top:19px; margin-bottom:19px; padding-top:0px; padding-bottom:0px"> <strong style="text-align:left">1.0e </strong>(September 4, 2014)</div> |