consul v1.7.4 Release Notes
Release Date: 2020-06-10 // almost 4 years ago-
🔒 SECURITY:
- Adding an option
http_config.use_cache
to disable agent caching for http endpoints, because Consul’s DNS and HTTP API expose a caching feature susceptible to DoS. CVE-2020-13250 [GH-8023] - Propagate and enforce changes to legacy ACL tokens rules in secondary data centers. CVE-2020-12797 [GH-8047]
- Only resolve local acl token in the datacenter it belongs to. CVE-2020-13170 [GH-8068]
- Requiring service:write permissions, a service-router entry without a destination no longer crashes Consul servers. CVE-2020-12758 [GH-7783]
🐛 BUG FIXES:
- 🛠 acl: Fixed an issue where legacy management tokens could not be used in secondary datacenters. [GH-7908]
- 🛠 agent: Fixed a race condition that could cause an agent to crash when first starting. [GH-7955]
- 0️⃣ connect: ensure proxy-defaults protocol is used for upstreams [GH-7938]
- connect: setup intermediate_pki_path on secondary when using vault [GH-8001]
- Adding an option