Last active
February 1, 2025 06:48
-
-
Save ton77v/932a3f8b5d57d2625b31328796a3cf30 to your computer and use it in GitHub Desktop.
1.62.0
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| 'release_summary': 'The latest release of ReadOnlyRest (v1.62.0) addresses ' | |
| 'critical security vulnerabilities, including ' | |
| 'CVE-2024-53990, which fixes a high-risk authentication ' | |
| 'flaw in the AsyncHttpClient library. Additionally, ' | |
| 'this update introduces support for Elastic APM, ' | |
| 'enabling real-time application performance monitoring, ' | |
| 'and ensures compatibility with the latest ' | |
| 'Elasticsearch and Kibana versions (8.17.1 and 8.16.3). ' | |
| 'Sysadmins are strongly encouraged to update ' | |
| 'immediately to mitigate security risks and leverage ' | |
| 'new features.'} | |
| { 'changelog_entries': [ { 'description': 'This security fix addresses a ' | |
| 'critical vulnerability in the ' | |
| 'AsyncHttpClient (AHC) ' | |
| 'library, identified as ' | |
| 'CVE-2024-53990. The issue ' | |
| 'involves the automatic and ' | |
| 'self-managed CookieStore ' | |
| 'functionality, which can lead ' | |
| "to one user's cookies being " | |
| "used for another user's " | |
| 'requests in multi-user ' | |
| 'services, posing a ' | |
| 'significant security risk. ' | |
| 'The vulnerability has a CVSS ' | |
| '4.0 score of 9.2 and is ' | |
| 'associated with CWE-287 ' | |
| '(Improper Authentication).', | |
| 'title': '**🚨Security Fix** (ES) ' | |
| '[CVE-2024-53990](https://nvd.nist.gov/vuln/detail/CVE-2024-53990)'}, | |
| { 'description': '', | |
| 'title': '**🚨Security Fix** (KBN) ' | |
| '[CVE-2024-21538](https://www.cve.org/CVERecord?id=CVE-2024-21538), ' | |
| '[CVE-2024-47764](https://www.cve.org/CVERecord?id=CVE-2024-47764), ' | |
| '[CVE-2024-52798](https://www.cve.org/CVERecord?id=CVE-2024-52798)'}, | |
| { 'description': '', | |
| 'title': '**⚠️Warning** (KBN) Updated ' | |
| '[`readonlyrest_kbn: license: ' | |
| 'activationKeyRefreshInterval`](https://forum.readonlyrest.com/t/restricting-access-to-some-spaces/2633/4) ' | |
| '- the maximum refresh interval is ' | |
| 'now set to 1 day.'}, | |
| { 'description': 'This update introduces ' | |
| 'support for Elastic APM, ' | |
| 'which allows users to monitor ' | |
| 'the performance of their ' | |
| 'applications in real-time. ' | |
| 'This feature helps in ' | |
| 'identifying performance ' | |
| 'bottlenecks and optimizing ' | |
| 'application performance.', | |
| 'title': '**🚀New** (ES|KBN) Introduced ' | |
| 'support for [Elastic APM ' | |
| '(Application Performance ' | |
| 'Monitoring)](https://www.elastic.co/observability/application-performance-monitoring).'}, | |
| { 'description': 'This update adds support for ' | |
| 'Kibana versions 8.17.1 and ' | |
| '8.16.3, ensuring ' | |
| 'compatibility with the latest ' | |
| 'features and security updates ' | |
| 'provided by these versions.', | |
| 'title': '**🚀New** (KBN) 8.17.1, 8.16.3 ' | |
| 'support'}, | |
| { 'description': 'This update adds support for ' | |
| 'Elasticsearch versions 8.17.1 ' | |
| 'and 8.16.3, ensuring ' | |
| 'compatibility with the latest ' | |
| 'features and security updates ' | |
| 'provided by these versions.', | |
| 'title': '**🚀New** (ES) 8.17.1, 8.16.3 ' | |
| 'support'}, | |
| { 'description': 'This update provides Kibana ' | |
| 'images with the preinstalled ' | |
| 'ReadonlyREST plugin for the ' | |
| 'arm64 platform, making it ' | |
| 'easier to deploy Kibana with ' | |
| 'ReadonlyREST on ARM-based ' | |
| 'systems.', | |
| 'title': '**🚀New** (KBN) Added [Kibana images ' | |
| 'with the preinstalled ReadonlyREST ' | |
| 'plugin for the arm64 ' | |
| 'platform](https://hub.docker.com/r/beshultd/kibana-readonlyrest) ' | |
| 'on Docker Hub.'}, | |
| { 'description': 'This update provides ' | |
| 'Elasticsearch images with the ' | |
| 'preinstalled ReadonlyREST ' | |
| 'plugin for the arm64 ' | |
| 'platform, making it easier to ' | |
| 'deploy Elasticsearch with ' | |
| 'ReadonlyREST on ARM-based ' | |
| 'systems.', | |
| 'title': '**🚀New** (ES) Added [Elasticsearch ' | |
| 'images with the preinstalled ' | |
| 'ReadonlyREST plugin for the arm64 ' | |
| 'platform](https://hub.docker.com/r/beshultd/elasticsearch-readonlyrest) ' | |
| 'on Docker Hub.'}, | |
| { 'description': 'This enhancement introduces ' | |
| 'validation to prevent ' | |
| 'multiple username entries in ' | |
| 'the users section, ensuring ' | |
| 'that each username is unique ' | |
| 'and avoiding potential ' | |
| 'configuration issues.', | |
| 'title': '**🧐Enhancement** (ES) [Introduced ' | |
| 'validation to prevent multiple ' | |
| 'username entries in the users ' | |
| 'section.](https://forum.readonlyrest.com/t/ror-1-57-3-es-8-13-2-double-usernames-allowed/2621/2)'}, | |
| { 'description': '', | |
| 'title': '**🐞Fix** (KBN) [Resolved an issue ' | |
| 'with exit patching-based ' | |
| 'commands.](https://forum.readonlyrest.com/t/restricting-access-to-some-spaces/2633/6)'}, | |
| { 'description': 'This fix addresses a bug in ' | |
| 'Kibana 8.16.0 and later ' | |
| 'versions that caused the ' | |
| 'permissions tab to be ' | |
| 'incorrectly displayed in a ' | |
| 'space, ensuring that it is ' | |
| 'hidden as intended.', | |
| 'title': '**🐞Fix** (KBN) Addressed a bug in ' | |
| 'Kibana 8.16.0 and later versions to ' | |
| 'hide the permissions tab in a ' | |
| 'space.'}, | |
| { 'description': 'This fix resolves a ' | |
| 'compatibility issue that ' | |
| 'prevented OIDC and SAML from ' | |
| 'functioning correctly in ' | |
| 'Kibana versions earlier than ' | |
| '7.11.0, ensuring broader ' | |
| 'compatibility with older ' | |
| 'versions.', | |
| 'title': '**🐞Fix** (KBN) Fixed a ' | |
| 'compatibility issue where OIDC and ' | |
| 'SAML didn’t work in Kibana versions ' | |
| 'earlier than 7.11.0.'}, | |
| { 'description': 'This fix ensures that user ' | |
| 'settings are overridden only ' | |
| 'for the default space, ' | |
| 'preventing unintended changes ' | |
| 'in other spaces and ' | |
| 'maintaining consistent ' | |
| 'behavior across different ' | |
| 'environments.', | |
| 'title': '**🐞Fix** (KBN) Ensured user ' | |
| 'settings are overridden only for ' | |
| 'the default space.'}, | |
| { 'description': 'This fix relaxes restrictions ' | |
| 'on snapshot restoration ' | |
| 'during index checks, allowing ' | |
| 'for more flexible and ' | |
| 'efficient snapshot management ' | |
| 'and restoration processes.', | |
| 'title': '**🐞Fix** (ES) Relaxed restrictions ' | |
| 'on snapshot restoration during ' | |
| 'index checks.'}, | |
| { 'description': 'This fix resolves an issue ' | |
| 'that prevented Stack ' | |
| 'Monitoring access when ' | |
| '`xpack.security.enabled: ' | |
| 'true` is configured, ensuring ' | |
| 'that monitoring features are ' | |
| 'accessible in secure ' | |
| 'environments.', | |
| 'title': '**🐞Fix** (ES) Resolved issue with ' | |
| 'Stack Monitoring access when ' | |
| '`xpack.security.enabled: true` is ' | |
| 'configured.'}], |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment