hashicorp/consul-k8s v1.2.3

on GitHub

1.2.3 (November 2, 2023)

SECURITY:

• Update Envoy version to 1.25.11 to address CVE-2023-44487 [GH-3119]
• Upgrade google.golang.org/grpc to 1.56.3.
  This resolves vulnerability CVE-2023-44487. [GH-3139]
• Upgrade to use Go 1.20.10 and x/net 0.17.0.
  This resolves CVE-2023-39325
  / CVE-2023-44487. [GH-3085]

BUG FIXES:

• api-gateway: fix issue where missing NET_BIND_SERVICE capability prevented api-gateway Pod from starting up when deployed to OpenShift [GH-3070]
• control-plane: only alert on valid errors, not timeouts in gateway [GH-3128]
• crd: fix misspelling of preparedQuery field in ControlPlaneRequestLimit CRD [GH-3001]