consul v1.7.4 Release Notes

Release Date: 2020-06-10 // almost 4 years ago
  • 🔒 SECURITY:

    • Adding an option http_config.use_cache to disable agent caching for http endpoints, because Consul’s DNS and HTTP API expose a caching feature susceptible to DoS. CVE-2020-13250 [GH-8023]
    • Propagate and enforce changes to legacy ACL tokens rules in secondary data centers. CVE-2020-12797 [GH-8047]
    • Only resolve local acl token in the datacenter it belongs to. CVE-2020-13170 [GH-8068]
    • Requiring service:write permissions, a service-router entry without a destination no longer crashes Consul servers. CVE-2020-12758 [GH-7783]

    🐛 BUG FIXES:

    • 🛠 acl: Fixed an issue where legacy management tokens could not be used in secondary datacenters. [GH-7908]
    • 🛠 agent: Fixed a race condition that could cause an agent to crash when first starting. [GH-7955]
    • 0️⃣ connect: ensure proxy-defaults protocol is used for upstreams [GH-7938]
    • connect: setup intermediate_pki_path on secondary when using vault [GH-8001]