Today we’ve released a new version of Chef Client 11.16.4 with some
security & major bug fixes. The changes included in the release are:
- Windows omnibus installer security updates for redistributed bash.exe
/ sh.exe vulnerabilities (“Shellshock”) CVE-2014-6271, CVE-2014-6271,
CVE-2014-6278, CVE-2014-7186, CVE-2014-7187.
- Fix bug on Windows where using the env resource on path could render
the path unusable.
- Chef Client now retries when it gets 50X from Chef Server.
- Chef Client 11.16.4 can use the policyfiles generated with Chef DK
You can also check out our blog post for instructions to get this release: