v2.23.5

kubermatic-bot released this 17 Oct 10:54

· 433 commits to main since this release

Bugfixes

Correctly validate Hetzner API response for server type while calculating resource requirements and for networks while validating cloud spec (#12716)

Updates

Update nginx-ingress-controller to v1.9.3 (fixes CVE-2023-44487, HTTP/2 rapid reset attack) (#12714)
Update to Go 1.20.10 (#12698)
Update to OSM v1.3.3 (#12710)
Add Cilium 1.13.7 as supported CNI version, deprecate cilium version 1.13.6 as it's impacted by CVE-2023-39347, CVE-2023-41333 (Moderate Severity), CVE-2023-41332 (Low Severity) (#12695)
Update to quay.io/kubermatic/util:2.3.1 as helper image (includes curl version patched against CVE-2023-38545 and CVE-2023-38546) (#12733)

New Feature

Introduce DisableAdminKubeconfig flag in KubermaticSettings to disable the admin kubeconfig feature from dashboard (#12679)

Assets 10