e3bbb1b
\r\n[maven-release-plugin] prepare release bootstrap-5.0.036f2729
\r\nbump to 5.0.0 - fixes #158f69c7e1
\r\n[maven-release-plugin] prepare for next development iteration34ce27d
\r\n[maven-release-plugin] prepare release bootstrap-5.0.0-beta3aa1cfa8
\r\n[maven-release-plugin] prepare for next development iterationcf9581f
\r\n[maven-release-plugin] prepare release bootstrap-5.0.0-beta21887130
\r\nbump to 5.0.0-beta2 - fixes #150002ec51
\r\n[maven-release-plugin] prepare for next development iteration38aaf15
\r\n[maven-release-plugin] prepare release bootstrap-4.6.06fa162a
\r\nbump to 4.6.0 - fixes #1481e2dd49
\r\n[maven-release-plugin] prepare release bootstrap-3.4.0f82a47e
\r\nbump to 3.4.0 - fixes #880083f9c
\r\n[maven-release-plugin] prepare for next development iteration30ae572
\r\n[maven-release-plugin] prepare release bootstrap-3.3.7-11ef8ea7
\r\ninclude less files - fixes #47814e088
\r\n[maven-release-plugin] prepare for next development iterationef83a86
\r\n[maven-release-plugin] prepare release bootstrap-4.0.0-alpha.3d2da161
\r\nbump to 4.0.0-alpha.3 - fixes #4656c5c0a
\r\n[maven-release-plugin] prepare for next development iterationf2a0bb5
\r\n[maven-release-plugin] prepare release bootstrap-3.3.72648b9e
\r\nprepare release 1.2.13bb09515
\r\nfix CVE-2023-63784573294
\r\nstart work on 1.2.13-SNAPSHOTa388193
\r\nMerge branch 'branch_1.2.x' of github.com:qos-ch/logback into\r\nbranch_1.2.xde44dc4
\r\nprepare release 1.2.12ca0cf17
\r\nMerge pull request #532\r\nfrom joakime/fix-jetty-requestloge31609b
\r\nremoved unused files21e29ef
\r\nMerge pull request #567\r\nfrom spliffone/LOGBACK-1633e869000
\r\nfix: published POM file contain the wrong scm URL009ea46
\r\nversion for next dev cycleSourced from com.h2database:h2's\r\nreleases.
\r\n\r\n\r\nVersion 2.2.220
\r\nChanges since 2.1.214 release:
\r\n\r\n
... (truncated)
\r\n66185fb
\r\nchangelog adjustmentf3c8222
\r\nversion and release date087522b
\r\njavadoc1ae052a
\r\nspell-check4ac5343
\r\nMerge pull request #3834\r\nfrom katzyn/version72f6e98
\r\nUpdate TestMVStore81bac50
\r\nUpdate changelogf047d77
\r\nAdd 2.0.* and 2.1.* versions to Upgrade utility1341fea
\r\nIncrease database format version581ed18
\r\nMerge pull request #3833\r\nfrom katzyn/passwordc48da13
\r\nhttp2: fix TestServerContinuationFlood flakes762b58d
\r\nhttp2: fix tipos in commentba87210
\r\nhttp2: close connections when receiving too many headersebc8168
\r\nall: fix some typos3678185
\r\nhttp2: make TestCanonicalHeaderCacheGrowth faster448c44f
\r\nhttp2: remove clientTesterc7877ac
\r\nhttp2: convert the remaining clientTester tests to testClientConnd8870b0
\r\nhttp2: use synthetic time in TestIdleConnTimeoutd73acff
\r\nhttp2: only set up deadline when Server.IdleTimeout is positive89f602b
\r\nhttp2: validate client/outgoing trailersSourced from google.golang.org/grpc's\r\nreleases.
\r\n\r\n\r\nRelease 1.56.3
\r\nSecurity
\r\n\r\n
\r\n- \r\n
\r\nserver: prohibit more than MaxConcurrentStreams handlers from running\r\nat once (CVE-2023-44487)
\r\nIn addition to this change, applications should ensure they do not\r\nleave running tasks behind related to the RPC before returning from\r\nmethod handlers, or should enforce appropriate limits on any such\r\nwork.
\r\nRelease 1.56.2
\r\n\r\n
\r\n- status: To fix a panic,
\r\nstatus.FromError
now returns an\r\nerror withcodes.Unknown
when the error implements the\r\nGRPCStatus()
method, and callingGRPCStatus()
\r\nreturnsnil
. (#6374)Release 1.56.1
\r\n\r\n
\r\n- client: handle empty address lists correctly in\r\naddrConn.updateAddrs
\r\nRelease 1.56.0
\r\nNew Features
\r\n\r\n
\r\n- client: support channel idleness using
\r\nWithIdleTimeout
\r\ndial option (#6263)\r\n\r\n
\r\n- This feature is currently disabled by default, but will be enabled\r\nwith a 30 minute default in the future.
\r\n- client: when using pickfirst, keep channel state in\r\nTRANSIENT_FAILURE until it becomes READY (gRFC\r\nA62) (#6306)
\r\n- xds: Add support for Custom LB Policies (gRFC\r\nA52) (#6224)
\r\n- xds: support pick_first Custom LB policy (gRFC\r\nA62) (#6314)\r\n(#6317)
\r\n- client: add support for pickfirst address shuffling (gRFC\r\nA62) (#6311)
\r\n- xds: Add support for String Matcher Header Matcher in RDS (#6313)
\r\n- xds/outlierdetection: Add Channelz Logger to Outlier Detection LB\r\n(#6145)\r\n
\r\n\r\n
\r\n- Special Thanks:
\r\n@s-matyukevich
- xds: enable RLS in xDS by default (#6343)
\r\n- orca: add support for application_utilization field and missing\r\nrange checks on several metrics setters
\r\n- balancer/weightedroundrobin: add new LB policy for balancing between\r\nbackends based on their load reports (gRFC\r\nA58) (#6241)
\r\n- authz: add conversion of json to RBAC Audit Logging config (#6192)
\r\n- authz: add support for stdout logger (#6230\r\nand #6298)
\r\n- authz: support customizable audit functionality for authorization\r\npolicy (#6192 #6230 #6298 #6158 #6304\r\nand #6225)
\r\nBug Fixes
\r\n\r\n
\r\n- orca: fix a race at startup of out-of-band metric subscriptions that\r\nwould cause the report interval to request 0 (#6245)
\r\n- xds/xdsresource: Fix Outlier Detection Config Handling and correctly\r\nset xDS Defaults (#6361)
\r\n- xds/outlierdetection: Fix Outlier Detection Config Handling by\r\nsetting defaults in ParseConfig() (#6361)
\r\nAPI Changes
\r\n\r\n
\r\n- orca: allow a ServerMetricsProvider to be passed to the ORCA service\r\nand ServerOption (#6223)
\r\nRelease 1.55.1
\r\n\r\n
\r\n- status: To fix a panic,
\r\nstatus.FromError
now returns an\r\nerror withcodes.Unknown
when the error implements the\r\nGRPCStatus()
method, and callingGRPCStatus()
\r\nreturnsnil
. (#6374)Release 1.55.0
\r\nBehavior Changes
\r\n\r\n\r\n
... (truncated)
\r\n1055b48
\r\nUpdate version.go to 1.56.3 (#6713)5efd7bd
\r\nserver: prohibit more than MaxConcurrentStreams handlers from running at\r\nonce...bd1f038
\r\nUpgrade version.go to 1.56.3-dev (#6434)faab873
\r\nUpdate version.go to v1.56.2 (#6432)6b0b291
\r\nstatus: fix panic when servers return a wrapped error with status OK (#6374)\r\n...ed56401
\r\n[PSM interop] Don't fail target if sub-target already failed (#6390)\r\n(#6405)cd6a794
\r\nUpdate version.go to v1.56.2-dev (#6387)5b67e5e
\r\nUpdate version.go to v1.56.1 (#6386)d0f5150
\r\nclient: handle empty address lists correctly in addrConn.updateAddrs (#6354)\r\n...997c1ea
\r\nChange version to 1.56.1-dev (#6345)Sourced from h2's\r\nreleases.
\r\n\r\n\r\nVersion 2.2.220
\r\nChanges since 2.1.214 release:
\r\n\r\n
... (truncated)
\r\n66185fb
\r\nchangelog adjustmentf3c8222
\r\nversion and release date087522b
\r\njavadoc1ae052a
\r\nspell-check4ac5343
\r\nMerge pull request #3834\r\nfrom katzyn/version72f6e98
\r\nUpdate TestMVStore81bac50
\r\nUpdate changelogf047d77
\r\nAdd 2.0.* and 2.1.* versions to Upgrade utility1341fea
\r\nIncrease database format version581ed18
\r\nMerge pull request #3833\r\nfrom katzyn/passwordSourced from com.jayway.jsonpath:json-path's\r\nreleases.
\r\n\r\n\r\njson-path-2.9.0
\r\nWhat's Changed
\r\n\r\n
\r\n- Fix for CVE-2023-51074.
\r\n- update dependencies by
\r\n@SingingBush
in\r\njson-path/JsonPath#965- JPMS: define Automatic-Module-Name as json.path by
\r\n@SingingBush
in\r\njson-path/JsonPath#966- Bump json-smart version from 2.4.10 to 2.5.0 by
\r\n@shoothzj
in json-path/JsonPath#945- Fixed rendering error on
\r\n$..book[?(@.price <=\r\n$['expensive'])]
in README.md by@lulunac27a
in json-path/JsonPath#967- [build] Remove deprecated gradle convetion usage by
\r\n@shoothzj
in json-path/JsonPath#946- Check for the existence of the next significant bracket by
\r\n@twobiers
in json-path/JsonPath#985- Update versions by
\r\n@kallestenflo
\r\nin json-path/JsonPath#987New Contributors
\r\n\r\n
\r\n- \r\n
@lulunac27a
made\r\ntheir first contribution in json-path/JsonPath#967- \r\n
@twobiers
\r\nmade their first contribution in json-path/JsonPath#985Full Changelog: https://github.com/json-path/JsonPath/compare/json-path-2.8.0...json-path-2.9.0
\r\njson-path-2.8.0
\r\nUpgrade json-smart to fix https://www.cve.org/CVERecord?id=CVE-2023-1370
\r\njson-path-2.7.0
\r\nNo release notes provided.
\r\n
af7e516
\r\nRelease 2.9.0af4dfcc
\r\nMake PropertyPathToken public, closes #95549b1151
\r\nUpdate versions (#987)71a09c1
\r\nCheck for the existence of the next significant bracket (#985)900ebfe
\r\nRemove deprecated gradle usage (#946)946274d
\r\nFixed rendering error on $..book[?(@.price <=\r\n$['expensive'])]
in README.md...425bcb1
\r\nBump json-smart version from 2.4.10 to 2.5.0 (#945)2d57ab3
\r\nJPMS: define Automatic-Module-Name as json.path (#966)1a57f78
\r\nupdate dependencies (#965)21de620
\r\nPrepare next versionSourced from github.com/docker/docker's\r\nreleases.
\r\n\r\n\r\nv24.0.9
\r\n24.0.9
\r\nFor a full list of pull requests and changes in this release, refer\r\nto the relevant GitHub milestones:
\r\n\r\nSecurity
\r\nThis release contains security fixes for the following CVEs affecting\r\nDocker Engine and its components.
\r\n\r\n\r\n
\r\n\r\n \r\n\r\n\r\nCVE \r\nComponent \r\nFix version \r\nSeverity \r\n\r\n \r\nCVE-2024-21626 \r\nrunc \r\n1.1.12 \r\nHigh, CVSS 8.6 \r\n\r\n \r\n\r\nCVE-2024-24557 \r\nDocker Engine \r\n24.0.9 \r\nMedium, CVSS 6.9 \r\n\r\n\r\nImportant ⚠️
\r\nNote that this release of Docker Engine doesn't include fixes for the\r\nfollowing known vulnerabilities in BuildKit:
\r\n\r\n
\r\n- CVE-2024-23651
\r\n- CVE-2024-23652
\r\n- CVE-2024-23653
\r\n- CVE-2024-23650
\r\nTo address these vulnerabilities, upgrade to Docker\r\nEngine v25.0.2.
\r\nFor more information about the security issues addressed in this\r\nrelease, and the unaddressed vulnerabilities in BuildKit, refer to the\r\nblog\r\npost. For details about each vulnerability, see the relevant\r\nsecurity advisory:
\r\n\r\n
\r\n- CVE-2024-21626
\r\n- CVE-2024-24557
\r\nPackaging updates
\r\n\r\n
\r\n- Upgrade runc to v1.1.12.\r\nmoby/moby#47269
\r\n- Upgrade containerd to v1.7.13\r\n(static binaries only). moby/moby#47280
\r\nv24.0.8
\r\n24.0.8
\r\nFor a full list of pull requests and changes in this release, refer\r\nto the relevant GitHub milestones:
\r\n\r\nBug fixes and enhancements
\r\n\r\n
\r\n\r\n- Live restore: Containers with auto remove (
\r\ndocker run\r\n--rm
) are no longer forcibly removed on engine restart. moby/moby#46857
... (truncated)
\r\nfca702d
\r\nMerge pull request from GHSA-xw73-rw38-6vjcf78a772
\r\nMerge pull request #47281\r\nfrom thaJeztah/24.0_backport_bump_containerd_binary...61afffe
\r\nMerge pull request #47270\r\nfrom thaJeztah/24.0_backport_bump_runc_binary_1.1.12b38e74c
\r\nMerge pull request #47276\r\nfrom thaJeztah/24.0_backport_bump_runc_1.1.12dac5663
\r\nupdate containerd binary to v1.7.1320e1af3
\r\nvendor: github.com/opencontainers/runc v1.1.12858919d
\r\nupdate runc binary to v1.1.12141ad39
\r\nMerge pull request #47266\r\nfrom vvoland/ci-fix-makeps1-templatefail-24db968c6
\r\nhack/make.ps1: Fix go list pattern61c51fb
\r\nMerge pull request #47221\r\nfrom vvoland/pkg-pools-close-noop-24