Consul - v1.9.17
Security
1.9.17 (April 13, 2022)
SECURITY:
- agent: Added a new check field,
disable_redirects
, that allows for disabling the following of redirects for HTTP checks. The intention is to default this to true in a future release so that redirects must explicitly be enabled. [GH-12685] - connect: Properly set SNI when configured for services behind a terminating gateway. [GH-12672]
DEPRECATIONS:
- tls: With the upgrade to Go 1.17, the ordering of
tls_cipher_suites
will no longer be honored, andtls_prefer_server_cipher_suites
is now ignored. [GH-12767]
BUG FIXES:
- connect/ca: cancel old Vault renewal on CA configuration. Provide a 1 - 6 second backoff on repeated token renewal requests to prevent overwhelming Vault. [GH-12607]
- memberlist: fixes a bug which prevented members from joining a cluster with
large amounts of churn [GH-253] [GH-12046] - replication: Fixed a bug which could prevent ACL replication from continuing successfully after a leader election. [GH-12565]
Security
Security wording was detected, but no CVEs were found.
Details
date
April 14, 2022, 6:52 p.m.
name
v1.9.17
type
Patch
official page
👇
Register or login to:
- 🔍View and search all Consul releases.
- 🛠️Create and share lists to track your tools.
- 🚨Setup notifications for major, security, feature or patch updates.
- 🚀Much more coming soon!