Description
This release of Teleport contains a security fix as well as multiple improvements and bug fixes.
Insecure TOTP MFA seed removal
Fixed issue where an attacker with physical access to user's computer and raw
access to the filesystem could potentially recover the seed QR code.
Other improvements and fixes
- Fixed error when creating a SAML connector with templated role names. #18767
- Fixed issue with connecting to a Windows desktop in leaf clusters. #18667
- Fixed compatibility issues with OpenSSH 7.x. #18375
- Fixed issue with SSH sessions failing when SELinux is enabled. #18809
- Fixed issue with cloud labels not being considered in app access RBAC. #18680
- Fixed issue with Kubernetes sessions lingering post termination. #18686
- Fixed issue with not being able to create non-moderated sessions when auth is down. #18443
- Added support for
user.specsyntax in moderated session filters. #18454 - Updated
tctl auth sign --format kubernetesto support merging multiple clusters in the same kubeconfig. #18526 - Updated
tctlto supportwindows_desktopresource name. #18815 - Improved
tsh playJSON and YAML output. #18824 - Improved error messaging in case of etcd backend connection issues. #18821
- Improved trusted clusters observability. #18610
Download
Download the current and previous releases of Teleport at https://goteleport.com/download.
labels: security-patch=yes