Changelog History
Page 8
-
v4.3.9 Changes
🚀 This release of Teleport contains a security fix.
- 🔒 Patch a SAML authentication bypass (see https://github.com/russellhaering/gosaml2/security/advisories/GHSA-xhqq-x44f-9fgg): #5122.
⚡️ Any Enterprise SSO users using Okta, Active Directory, OneLogin or custom SAML connectors should upgrade their auth servers to version 4.3.9 and restart Teleport. If you are unable to upgrade immediately, we suggest disabling SAML connectors for all clusters until the updates can be applied.
-
v4.3.9-dev.2
November 12, 2020 -
v4.3.9-dev.1
November 12, 2020 -
v4.3.8 Changes
🚀 This release of Teleport adds support for a new build architecture.
- ➕ Added automatic arm64 builds of Teleport to the download portal.
-
v4.3.7 Changes
October 01, 2020🚀 This release of Teleport contains a security fix and a bug fix.
- ⚡️ Mitigated CVE-2020-15216 by updating github.com/russellhaering/goxmldsig.
Details
A vulnerability was discovered in the
github.com/russellhaering/goxmldsig
library which is used by Teleport to validate the
🔧 signatures of XML files used to configure SAML 2.0 connectors. With a carefully crafted XML file, an attacker can completely
bypass XML signature validation and pass off an altered file as a signed one.Actions
⚡️ The
goxmldsig
library has been updated upstream and Teleport 4.3.7 includes the fix. Any Enterprise SSO users using Okta,
⬆️ Active Directory, OneLogin or custom SAML connectors should upgrade their auth servers to version 4.3.7 and restart Teleport.⚡️ If you are unable to upgrade immediately, we suggest deleting SAML connectors for all clusters until the updates can be applied.
- Fixed an issue where DynamoDB connections made by Teleport would not respect the
HTTP_PROXY
orHTTPS_PROXY
environment variables. #4271
Download
🚀 Download the current and previous releases of Teleport at https://gravitational.com/teleport/download.
-
v4.3.6 Changes
September 25, 2020🚀 This release of Teleport contains multiple bug fixes.
Description
- 🛠 Fixed an issue with prefix migration that could lead to loss of cluster state. #4299 #4345
- 🛠 Fixed an issue that caused excessively slow loading of the UI on large clusters. #4326
- ⚡️ Updated /readyz endpoint to recover faster after node goes into degraded state. #4223
- ➕ Added node UUID to debug logs to allow correlation between TCP connections and nodes. #4291
Download
🚀 Download the current and previous releases of Teleport at https://gravitational.com/teleport/download.
-
v4.3.6-dev.3
September 24, 2020 -
v4.3.6-dev.2
August 18, 2020 -
v4.3.6-dev.1
August 18, 2020 -
v4.3.5 Changes
August 13, 2020🚀 This release of Teleport contains multiple bug fixes.
Description
- 🛠 Fixed issue that caused Teleport Docker images to be built incorrectly. #4201
🚀 This release also includes the following bug fixes from 4.3.4.
- Fixed issue that caused intermittent login failures when using PAM modules like
pam_loginuid.so
andpam_selinux.so
. #4133 - 🛠 Fixed issue that required users to manually verify a certificate when exporting an identity file. #4003
- 🛠 Fixed issue that prevented local user creation using Firestore. #4160
- 🛠 Fixed issue that could cause
tsh
to panic when using a PEM file. #4189
Download
🚀 Download the current and previous releases of Teleport at https://gravitational.com/teleport/download.