Merge pull request #9027 from hashicorp/release/1.8.5
Merge back release/1.8.5
This commit is contained in:
Mike Morris
parent
593946449e
commit
d1a92026b7
|
|
@ -1,4 +1,3 @@
|
||||||
```release-note:improvement
|
```release-note:improvement
|
||||||
api: The `v1/connect/ca/roots` endpoint now accepts a `pem=true` query parameter and will return a PEM encoded certificate chain of
|
api: The `v1/connect/ca/roots` endpoint now accepts a `pem=true` query parameter and will return a PEM encoded certificate chain of all the certificates that would normally be in the JSON version of the response.
|
||||||
all the certificates that would normally be in the JSON version of the response.
|
```
|
||||||
```
|
|
||||||
|
|
|
||||||
|
|
@ -1,3 +1,3 @@
|
||||||
```release-note:security
|
```release-note:security
|
||||||
Fix Consul Enterprise Namespace Config Entry Replication DoS. Previously an operator with service:write ACL permissions in a Consul Enterprise cluster could write a malicious config entry that caused infinite raft writes due to issues with the namespace replication logic. [CVE-2020-25201] (https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25201)
|
Fix Consul Enterprise Namespace Config Entry Replication DoS. Previously an operator with service:write ACL permissions in a Consul Enterprise cluster could write a malicious config entry that caused infinite raft writes due to issues with the namespace replication logic. [[CVE-2020-25201](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25201)]
|
||||||
```
|
```
|
||||||
|
|
|
||||||
Loading…
Reference in New Issue