We are delighted to announce the availability of version 15.6.1 of Chef Infra Server.
Improvements
- We fixed an issue where cookbook uploads would fail due to mismatched signatures. Some server configurations (e.g. uppercase letters in FQDNs) could cause erroneous signature calculations leading to verification failures.
Updated Components
- Meck
- MochiWeb
- Bump spring from 4.1.0 to 4.1.1 in /src/oc-id
Security
-
Added
Cache-Control: no-store
andPragma: no-cache
headers to certain SSL pages. -
Updated OpenJRE to 11.0.18+10 to resolve the following CVEs:
- CVE-2023-21830
- CVE-2023-21835
- CVE-2023-21843
Get the Build
You can download binaries directly from downloads.chef.io.