Consul - v1.10.8
Security
1.10.8 (February 11, 2022)
SECURITY:
- agent: Use SHA256 instead of MD5 to generate persistence file names.
IMPROVEMENTS:
- sentinel: (Enterprise Only) Sentinel now uses SHA256 to generate policy ids
BUG FIXES:
- Fix a data race when a service is added while the agent is shutting down.. [GH-12302]
- areas: (Enterprise Only) Fixes a bug when using Yamux pool ( for servers version 1.7.3 and later), the entire pool was locked while connecting to a remote location, which could potentially take a long time. [GH-1368]
- config-entry: fix a panic when creating an ingress gateway config-entry and a proxy service instance, where both provided the same upstream and downstrem mapping. [GH-12277]
- config: include all config errors in the error message, previously some could be hidden. [GH-11918]
- connect: fixes bug where passthrough addressses for transparent proxies dialed directly weren't being cleaned up. [GH-12223]
- memberlist: fixes a bug which prevented members from joining a cluster with
large amounts of churn [GH-253] [GH-12047] - snapshot: the
snapshot save
command now saves the snapshot with read permission for only the current user. [GH-11918] - xds: allow only one outstanding delta request at a time [GH-12236]
- xds: fix for delta xDS reconnect bug in LDS/CDS [GH-12174]
- xds: prevents tight loop where the Consul client agent would repeatedly re-send config that Envoy has rejected. [GH-12195]a
Security
Security wording was detected, but no CVEs were found.
Details
date
Feb. 12, 2022, 12:15 a.m.
name
v1.10.8
type
Patch
official page
👇
Register or login to:
- 🔍View and search all Consul releases.
- 🛠️Create and share lists to track your tools.
- 🚨Setup notifications for major, security, feature or patch updates.
- 🚀Much more coming soon!