github hashicorp/consul v1.7.4
on GitHub

latest releases: v1.15.11, v1.16.7, v1.17.4...
3 years ago

1.7.4 (June 10, 2020)

SECURITY:

  • Adding an option http_config.use_cache to disable agent caching for http endpoints, because Consul’s DNS and HTTP API expose a caching feature susceptible to DoS. CVE-2020-13250 [GH-8023]
  • Propagate and enforce changes to legacy ACL tokens rules in secondary data centers. CVE-2020-12797 [GH-8047]
  • Only resolve local acl token in the datacenter it belongs to. CVE-2020-13170 [GH-8068]
  • Requiring service:write permissions, a service-router entry without a destination no longer crashes Consul servers. CVE-2020-12758 [GH-7783]

BUG FIXES:

  • acl: Fixed an issue where legacy management tokens could not be used in secondary datacenters. [GH-7908]
  • agent: Fixed a race condition that could cause an agent to crash when first starting. [GH-7955]
  • connect: setup intermediate_pki_path on secondary when using vault [GH-8001]
Check out latest releases or
releases around hashicorp/consul v1.7.4

Don't miss a new consul release

NewReleases is sending notifications on new releases.

Get notifications