Skip to content

v9.2.0

Latest
Latest
Compare
Choose a tag to compare
@krutten krutten released this 23 Jul 23:15
v9.2.0
cc8b15b
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Learn about vigilant mode.

Breaking Changes

This is a security release to ensure existing Shield deployments are not impacted by CVEs found in earlier libraries and OSs. In providing this release, some functionality was unfortunately lost due to changes upstream that contained the security fixes.

  • This boshrelease requires the ubuntu-jammy stemcell, because shield was compiled against it to resolve OS CVEs and bugs.

  • Due to updates to vault for security reasons, this version of shield no longer is able to initialize a new shield deployment, but can still update an existing shield deployment. This will be resolved in a future release, but in the mean time, deploy with the v9.1.0 deployment first.

Software Updates

  • Updated shield from 8.8.6 to 8.8.7
  • Updated nginx from 1.25.1 to 1.26.1
  • Updated pcre from pcre2-10.42 to pcre2-10.44
  • Updated vault from 1.14.0 to 1.17.2
  • Updated sqlite from 3420000 to 3460000

Deployment

releases:
- name:    shield
  version: 9.2.0
  url:     https://github.com/shieldproject/shield-boshrelease/releases/download/v9.2.0/shield-boshrelease-9.2.0.tgz
  sha1:   3b59c76585efcf7dd32749b3e96c42544886dd72

Full Changelog: v9.1.2...v9.2.0

Assets 3
Loading