cloudfoundry/bosh v282.0.10
on GitHub

latest release: v282.1.0

3 days ago

Fixed CVEs:

CVE-2025-61770: rack: Rack's unbounded multipart preamble buffering enables DoS (memory exhaustion)
CVE-2025-61771: rack: Rack's multipart parser buffers large non‑file fields entirely in memory, enabling DoS (memory exhaustion)
CVE-2025-61772: rack: Rack memory exhaustion denial of service
CVE-2025-61919: rubygem-rack: Unbounded read in Rack::Request form parsing can lead to memory exhaustion

Package Updates:

Updates nginx from 1.29.1 to 1.29.2

What's Changed

Bump actions/setup-go from 5 to 6 by @dependabot[bot] in #2624
[RFC0038] Introduce prefix allocation by @fmoehler in #2611
Fix regression issues by @fmoehler in #2626
add missing expectations for integration tests by @fmoehler in #2628
Update workstation_setup.md by @fmoehler in #2627
stringify prefix for networks and not only its subnets by @fmoehler in #2629
fix test expectation by @fmoehler in #2630
Avoid unnecessary redeploys by @fmoehler in #2631

Full Changelog: v282.0.9...v282.0.10

Check out latest releases or
releases around cloudfoundry/bosh v282.0.10

Don't miss a new bosh release

NewReleases is sending notifications on new releases.

Get notifications