$npx -y @buildinternet/releases show rel_TMsSfsn_TBLXVTtmc9Pjj
1.11.7
February 6, 2023
CHANGES:
core: Bump Go version to 1.19.4.
IMPROVEMENTS:
command/server: Environment variable keys are now logged at startup. [GH-18125]
core/fips: use upstream toolchain for FIPS 140-2 compliance again; this will appear as X=boringcrypto on the Go version in Vault server logs.
secrets/db/mysql: Add tls_server_name and tls_skip_verify parameters [GH-18799]
ui: Prepends "passcode=" if not provided in user input for duo totp mfa method authentication [GH-18342]
ui: Update language on database role to "Connection name" [GH-18261] [GH-18350]
BUG FIXES:
auth/approle: Fix token_bound_cidrs validation when using /32 blocks for role and secret ID [GH-18145]
cli/kv: skip formatting of nil secrets for patch and put with field parameter set [GH-18163]
core (enterprise): Fix a race condition resulting in login errors to PKCS#11 modules under high concurrency.
core/managed-keys (enterprise): Limit verification checks to mounts in a key's namespace
core/quotas (enterprise): Fix a potential deadlock that could occur when using lease count quotas.
core/quotas: Fix issue with improper application of default rate limit quota exempt paths [GH-18273]
core: fix bug where context cancellations weren't forwarded to active node from performance standbys.
core: prevent panic in login mfa enforcement delete after enforcement's namespace is deleted [GH-18923]
database/mongodb: Fix writeConcern set to be applied to any query made on the database [GH-18546]
identity (enterprise): Fix a data race when creating an entity for a local alias.
kmip (enterprise): Fix Destroy operation response that omitted Unique Identifier on some batched responses.
kmip (enterprise): Fix Locate operation response incompatibility with clients using KMIP versions prior to 1.3.
kmip (enterprise): Fix Query operation response that omitted streaming capability and supported profiles.
licensing (enterprise): update autoloaded license cache after reload
secrets/pki: Allow patching issuer to set an empty issuer name. [GH-18466]
secrets/transit: Do not warn about unrecognized parameter 'batch_input' [GH-18299]
storage/raft (enterprise): An already joined node can rejoin by wiping storage
and re-issueing a join request, but in doing so could transiently become a
non-voter. In some scenarios this resulted in loss of quorum. [GH-18263]
storage/raft (enterprise): Fix some storage-modifying RPCs used by perf standbys that weren't returning the resulting WAL state.
storage/raft: Don't panic on unknown raft ops [GH-17732]
ui: fixes query parameters not passed in api explorer test requests [GH-18743]