teleport 14.1.0

[BrewTestBot]

Created by brew bump

---

Created with brew bump-formula-pr.

release notes

### New features

Teleport Connect 14.1 introduces Connect My Computer which makes it possible to add your personal machine to a Teleport cluster in just a couple of clicks. Whether you're exploring capabilities of Teleport or want to make your computer available in your private cluster, Connect My Computer lets you do that without having to use the terminal to get the job done. Docs: https://goteleport.com/docs/connect-your-client/teleport-connect/#connect-my-computer
Resource pinning allows you to pin your most frequently accessed resources to a separate page for easy access.
Access Monitoring provides a view of risky accounts access and access anti-patterns in clusters using Athena as the audit log backend.
Users can connect to EC2 instances via AWS EC2 Instance Connect endpoints without needing to install Teleport agents.
Access list owners will be able to perform regular periodic reviews of the access list members.

Security fixes

Updated golang.org/x/net dependency. #33420

swift-nio-http2 vulnerable to HTTP/2 Stream Cancellation Attack: CVE-2023-44487


Updated google.golang.org/grpc to v1.57.1. #33487

swift-nio-http2 vulnerable to HTTP/2 Stream Cancellation Attack: CVE-2023-44487


Updated OpenTelemetry dependency. #33523 #33550

OpenTelemetry-Go Contrib vulnerable to denial of service in otelhttp due to unbound cardinality metrics: CVE-2023-45142


Updated babel/core to 7.3.2. #33441

Arbitrary code execution when compiling specifically crafted malicious code: CVE-2023-45133



Other fixes and improvements

Web SSH sessions are terminated right away when a user closes the tab. #33529
Added the ability for bots to submit access request reviews. #33509
Added access review notifications when logging in via tsh or running tsh status. #33468
Added database automatic user provisioning support for MySQL. #33379
Added job to update the Teleport version for deployments in Amazon ECS used during RDS Enrollment. #33313
Fixed Teleport Assist SQL view names. #33581
Fixed hardware key support for sso web login. #33548
Fixed access lists to allow them to affect access request permissions. #33350
Prevented remote proxies from impersonating users from different clusters. #33539
Added link to access request in ServiceNow incidents. #33593
Added new "Identity Governance & Security" navigation section in web UI. #33423
Fixed tsh connection issue when Proxy is in separate mode and Web port is TLS-terminated by a load balancer. #32531 #33406
Fixed panic when trying to register resources from older Kubernetes clusters with extensions/v1beta1 group/version. #33402
Fixed access list audit log messages to properly include user names. #33383
Added notification icon to Web UI to show Access List review notifications. #33381
Fixed creation of @teleport-access-approver role to v6 to support downgrades to Teleport 13. #33354
Added ability to specify PIV slot for hardware key supoprt. #33352 #33353
Extended timeout when waiting for hardware key touch/PIN. #33348
Added support for Windows AD root domain for PKI operations. #33275
Added resources to Slack notification of Access Requests. #33264
Fixed provision tokens to make system roles case-insensitive. #33260

Download
Download the current and previous releases of Teleport at https://goteleport.com/download.

labels: security-patch=yes

[github-actions]

🤖 An automated task has requested bottles to be published to this PR.