1.1.6 (September 21, 2023)
SECURITY:
- Upgrade to use Go 1.20.8. This resolves CVEs
CVE-2023-39320 (cmd/go),
CVE-2023-39318 (html/template),
CVE-2023-39319 (html/template),
CVE-2023-39321 (crypto/tls), and
CVE-2023-39322 (crypto/tls) [GH-2936]
IMPROVEMENTS:
- control-plane: Improve performance for pod deletions by reducing the number of fetched tokens. [GH-2910]
- vault: Adds
namespacetosecretsBackend.vault.connectCAin Helm chart and annotation: "vault.hashicorp.com/namespace: namespace" to
secretsBackend.vault.agentAnnotations, if "vault.hashicorp.com/namespace" annotation is not present.
This provides a more convenient way to specify the Vault namespace than nested JSON inconnectCA.additionalConfig. [GH-2841]
BUG FIXES:
- audit-log: fix parsing error for some audit log configuration fields fail with uncovertible string to integer errors. [GH-2905]