Security Notice

This release addresses two CVEs. An update is recommended.

• CVE-2025-62161 container escape via "masked path" abuse due to mount race conditions
• [CVE-2025-62596](https://github.com/youki-dev/youki/sec...

What's Changed

💪 Improvements

• fix(3197): fix youki version command Part of Enhancing Compatibility with runc by @tommady in https://github.com/youki-dev/youki/pull/3200
• feat(3199): Add Linux personality support by @tommady in https://github.com/youki-dev/youki/pull/3202

💥 Breaking Changes...

What's Changed

💀 Security Announce

If /proc and /sys in the rootfs are symbolic links, they can potentially be exploited to gain access to the host root filesystem. https://github.com/youki-dev/youki/security/advisories/GHSA-j26p-6wx7-f3pw

💪 Improvements

• fix(3198): fix difference in...

What's Changed

💪 Improvements

• add support exec-cpu-affinity by @saku3 in https://github.com/youki-dev/youki/pull/3164
• fix: allow duplicate additionalGids by @saku3 in https://github.com/youki-dev/youki/pull/3189

🐛 Bug Fixes

• use additional gids,user,group in exec, inject path iif not giv...

💀 Security Announce

A security issue related to the Capability of TenantBuilder has been discovered. This issue mainly affects those who execute the exec command. Although the risk of attack from outside is limited, we recommend that you update. https://github.com/youki-dev/youki/security/advisories/...