We are delighted to announce the availability of version 14.14.1 of Chef Infra Server.
New Features
External OpenSearch Support
Chef Infra Server now supports external OpenSearch for indexing.
Improvements
-
Improved performance of
chef-server-ctl reindex-opc-piecewise. -
Fixed an inconsistency issue with
knife search. The inconsistency was due to theread_only_allow_deletesetting in Elasticsearch, which would not update indices. Added preflights to identify Elasticsearch'sread_only_allow_deletesetting in an index.
Security
PostgreSQL
Updated PostgreSQL from 13.5 to 13.6.
Elasticsearch
Added additional cleanup steps to remove Log4j vulnerable libraries that may be present on some setups.
Updated libxml2 to 2.9.13 to resolve the following CVE's:
- CVE-2022-23308
- CVE-2021-3541
- CVE-2021-3537
- CVE-2021-3518
- CVE-2021-3517
- CVE-2020-24977
- CVE-2020-7595
- CVE-2019-20388
- CVE-2019-19956
Updated Go to 1.18 to resolve the following CVE's:
- CVE-2022-27191
- CVE-2022-24921
- CVE-2022-23806
- CVE-2022-23773
- CVE-2022-23772
- CVE-2021-44716
- CVE-2021-41772
- CVE-2021-41771
- CVE-2021-39293
- CVE-2021-38297
Updated Expat to 2.4.7 to resolve the following CVE's:
- CVE-2022-25315
- CVE-2022-25314
- CVE-2022-25313
- CVE-2022-25236
- CVE-2022-25235
- CVE-2022-23990
- CVE-2022-23852
- CVE-2022-22827
- CVE-2022-22826
- CVE-2022-22825
- CVE-2022-22824
- CVE-2022-22823
- CVE-2022-22822
- CVE-2021-46143
- CVE-2021-45960
Get the Build
You can download binaries directly from downloads.chef.io.