Consul k8s - v0.49.5

Security

0.49.5 (March 9, 2023)

SECURITY:

upgrade to use Go 1.19.6. This resolves vulnerabilities CVE-2022-41724 in crypto/tls and CVE-2022-41723 in net/http. [GH-1975]

IMPROVEMENTS:

cli: update minimum go version for project to 1.19. [GH-1975]
control-plane: server ACL Init always appends both, the secrets from the serviceAccount's secretRefs and the one created by the Helm chart, to support Openshift secret handling. [GH-1770]
control-plane: update alpine to 3.17 in the Docker image. [GH-1934]
control-plane: update minimum go version for project to 1.19. [GH-1975]

BUG FIXES:

control-plane: fix issue where consul-connect-injector acl token was unintentionally being deleted and not recreated when a container was restarted due to a livenessProbe failure. [GH-1914]

Security

Details

date

March 9, 2023, 5:40 p.m.

name

v0.49.5

type

Patch

official page

https://github.com/hashicorp/consul-k8s/releases/tag/v0.49.5

👇

Register or login to:

🔍View and search all Consul k8s releases.
🛠️Create and share lists to track your tools.
🚨Setup notifications for major, security, feature or patch updates.
🚀Much more coming soon!

Continue with GitHub

Continue with Google

or

Username

Email

Password

Password (again)

leave this field blank to prove your humanity