Skip to content

Security Bug Fix Release

Compare
Choose a tag to compare
@minio-trusted minio-trusted released this 23 Apr 01:56
· 4056 commits to master since this release
RELEASE.2020-04-23T00-58-49Z
6817c5e

Highlights

  • Critical security release to address authentication bypass issue in admin API. See (#9422) for more details. Please upgrade immediately. See here for specifc details.
  • Call cleanup functions properly. See (#9417, #9418) for more details.
  • Increase response header timeouts for gateway. See (#9400) for more details.
  • Migrate mint tests to use latest versions. See (#9424) for more details.

Changelog

  • migrate mint tests to latest versions (#9424) (04/22/20) (Harshavardhana)
  • fix: Add missing return in admin requests auth (#9422) (04/22/20) (Anis Elleuch)
  • fix: cacheReader.Close in all paths that don't return it. (#9418) (04/22/20) (Egon Elbre)
  • Call cleanup funcs when skip fails (#9417) (04/22/20) (Egon Elbre)
  • Update server startup example to showcase local erasure code (#9407) (04/22/20) (Nitish Tiwari)
  • Increase response header timeout for gateway (#9400) (04/21/20) (poornas)