Bump version to 2.21.3 #275
Merged
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
matthewfala
force-pushed
the
bump-2.21.3
branch
from
f33689c to
bef12b9
Compare
hossain-rayhan
approved these changes
Dec 2, 2021
PettitWesley
reviewed
Dec 2, 2021
CHANGELOG.md
Outdated
| * Bug - Resolve IMDSv1 fallback error introduced in 2.21.0 [aws-for-fluent-bit:259](https://github.com/aws/aws-for-fluent-bit/issues/259) | ||
|
|
||
| Important Note: | ||
| * A security vulnerability was found in [amazonlinux](https://access.redhat.com/security/cve/CVE-2021-43527) which we use as base image to our `aws-for-fluent-bit` image. This new image will be based on an updated version of amazonlinux that resolves this CVE. It is highly recommended to upgrade your existing workload or run new workload with this latest version (2.21.3) of `aws-for-fluent-bit` image. |
There was a problem hiding this comment.
I thought we agreed we wouldn't put the "highly recommended" warning? And let customers decide how scared to be.
There was a problem hiding this comment.
The forced push looks like it didn't make it through.
There was a problem hiding this comment.
I edited this locally but the forced push looks like it didn't make it through.
PettitWesley
approved these changes
Dec 2, 2021
PettitWesley
suggested changes
Dec 2, 2021
AWS_FOR_FLUENT_BIT_STABLE_VERSION
Outdated
| 2.21.3 |
There was a problem hiding this comment.
sorry I missed this
we can;t bump stalbe until the new release is out
this will cause the automation to fial
Pulls latest amazonlinux as base image that includes a patch for HIGH CVE-2021-43527. Signed-off-by: Matthew Fala <[email protected]>
matthewfala
force-pushed
the
bump-2.21.3
branch
from
bef12b9 to
627f1ae
Compare
zhonghui12
reviewed
Dec 2, 2021
| Same as `2.21.2`, this release includes the following fixes for AWS customers that we are working on getting accepted upstream: | ||
| * Bug - Fix return value from `tls_net_read` [fluentbit:4098](https://github.com/fluent/fluent-bit/issues/4098) | ||
| * Bug - Downgrade `mbedtls` to 2.24.0 to fix the performance regression issue in `mbedtls` 2.26.0 [fluentbit:4110](https://github.com/fluent/fluent-bit/issues/4110) | ||
| * Bug - Resolve IMDSv1 fallback error introduced in 2.21.0 [aws-for-fluent-bit:259](https://github.com/aws/aws-for-fluent-bit/issues/259) |
There was a problem hiding this comment.
I have a question, was your fix for this one merged into Fluent Bit?
There was a problem hiding this comment.
No, the PRs are all still open.
fluent/fluent-bit#4100
fluent/fluent-bit#4110
fluent/fluent-bit#4184
PettitWesley
approved these changes
Dec 2, 2021
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Pulls latest amazonlinux as base image that includes a patch for
HIGH CVE-2021-43527.
Signed-off-by: Matthew Fala [email protected]
Issue #, if available:
Description of changes:
By submitting this pull request, I confirm that you can use, modify, copy, and redistribute this contribution, under the terms of your choice.