Skip to content

Commit

Permalink
Update CHANGELOG.md
Browse files Browse the repository at this point in the history 
Co-authored-by: Gus Luxton <gus@gravitational.com>
  • Loading branch information
@webvictim @russjones
2 people authored and russjones committed Dec 15, 2020
1 parent b2a40ab commit 6dd4485
Showing 1 changed file with 3 additions and 1 deletion.
4 changes: 3 additions & 1 deletion CHANGELOG.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -4,7 +4,9 @@

This release of Teleport contains a security fix.

* Patch a SAML authentication bypass (see https://github.com/russellhaering/gosaml2/security/advisories/GHSA-xhqq-x44f-9fgg): [#5122](https://github.com/gravitational/teleport/pull/5122). Users with SAML SSO providers should upgrade as soon as possible.
* Patch a SAML authentication bypass (see https://github.com/russellhaering/gosaml2/security/advisories/GHSA-xhqq-x44f-9fgg): [#5122](https://github.com/gravitational/teleport/pull/5122).

Any Enterprise SSO users using Okta, Active Directory, OneLogin or custom SAML connectors should upgrade their auth servers to version 4.3.9 and restart Teleport. If you are unable to upgrade immediately, we suggest disabling SAML connectors for all clusters until the updates can be applied.

## 4.3.8

Expand Down

0 comments on commit 6dd4485

Please sign in to comment.