ent-changelog-1.18.3

1.18.3 Enterprise (July 11, 2024)

This release is created to share the Consul Enterprise changelog and notify consumers of availability. The attached source and assets do not include Consul Enterprise code and should not be used in place of official Docker images or binaries.

Enterprise LTS: Consul Enterprise 1.18 is a Long-Term Support (LTS) release.

SECURITY:

• Upgrade envoy module dependencies to version 1.27.7, 1.28.5 and 1.29.7 or higher to resolve CVE-2024-39305 [GH-21524]
• Upgrade go version to 1.22.5 to address CVE-2024-24791 [GH-21507]
• Upgrade go-retryablehttp to address CVE-2024-6104 [GH-21384]
• agent: removed reflected cross-site scripting vulnerability [GH-21342]
• ui: Pin and namespace sub-module dependencies related to the Consul UI [GH-21378]

IMPROVEMENTS:

• mesh: update supported envoy version 1.29.4
• mesh: update supported envoy version 1.29.5 in addition to 1.28.4, 1.27.6. [GH-21277]
• upgrade go version to v1.22.3. [GH-21113]
• upgrade go version to v1.22.4. [GH-21265]

BUG FIXES:

• core: Fix multiple incorrect type conversion for potential overflows [GH-21251]
• core: Fix panic runtime error on AliasCheck [GH-21339]
• dns: Fixes a spam log message "Failed to parse TTL for prepared query..." that was always being logged on each prepared query evaluation. [GH-21381]
• terminating-gateway: (Enterprise Only) Fixed issue where enterprise metadata applied to linked services was the terminating-gateways enterprise metadata and not the linked services enterprise metadata. [GH-21382]
• txn: Fix a bug where mismatched Consul server versions could result in undetected data loss for when using newer Transaction verbs. [GH-21519]
• v2dns: Fix a regression where DNS SRV questions were returning duplicate hostnames instead of encoded IPs. This affected Nomad integrations with Consul. [GH-21361]
• v2dns: Fix a regression where DNS tags using the standard lookup syntax, tag.name.service.consul, were being disregarded. [GH-21361]