Vault v1.3.6 Release Notes
Release Date: 2020-05-21 // almost 4 years ago-
๐ SECURITY:
- ๐ core: proxy environment variables are now redacted before being logged, in case the URLs include a username:password. This vulnerability, CVE-2020-13223, is fixed in 1.3.6 and 1.4.2, but affects 1.4 and 1.4.2, as well as older versions of Vault [GH-9022]
๐ BUG FIXES:
- ๐ auth/aws: Fix token renewal issues caused by the metadata changes in 1.3.5 [GH-8991]
- ๐ replication: Fix mount filter bug that allowed replication filters to hide local mounts on a performance secondary