Skip to content

OPSC-17911 OpsCenter 6.8.52 release#282

Open
orion104 wants to merge 1 commit into
masterfrom
opscenter-6.8.52-release
Open

OPSC-17911 OpsCenter 6.8.52 release#282
orion104 wants to merge 1 commit into
masterfrom
opscenter-6.8.52-release

Conversation

@orion104

Copy link
Copy Markdown
Collaborator

Release Notes Automation

If you name your pull-request as "Product x.y.z Release ...", after merging the
PR, a GitHub Action will automatically create a product version tag "product-x.y.z".

Supported product names are:

  • DSE
  • OpsCenter
  • Studio
  • Luna Streaming

Version supports 3 sets or 4 sets of digits.

* Fixed a bug where disk alerts could be triggered when disk usage data was unavailable. (OPSC-17699)

## Provisioning
* Fixed an issue where LCM configuration jobs (install/configure/upgrade) overwrote custom SSL settings in OpsCenter's cluster.conf. The [agents] section's ssl_truststore was incorrectly set to the keystore path. For the [cassandra] section, a new per-cluster setting, "Manage Cassandra SSL" (enabled by default), lets users opt out of LCM managing those SSL settings, preserving any values configured directly in cluster.conf. The setting appears as a checkbox in the Add/Edit Cluster dialog when client encryption is enabled, or can be set via the manage-opsc-cassandra-ssl property in the LCM API. (OPSC-17677)

Copy link
Copy Markdown
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Suggested change
* Fixed an issue where LCM configuration jobs (install/configure/upgrade) overwrote custom SSL settings in OpsCenter's cluster.conf. The [agents] section's ssl_truststore was incorrectly set to the keystore path. For the [cassandra] section, a new per-cluster setting, "Manage Cassandra SSL" (enabled by default), lets users opt out of LCM managing those SSL settings, preserving any values configured directly in cluster.conf. The setting appears as a checkbox in the Add/Edit Cluster dialog when client encryption is enabled, or can be set via the manage-opsc-cassandra-ssl property in the LCM API. (OPSC-17677)
* Fixed an issue where LCM install, configure, and upgrade configuration jobs overwrote custom SSL settings in OpsCenter's `cluster.conf`. The `[agents]` section's `ssl_truststore` was incorrectly set to the keystore path. Created a new per-cluster setting, `Manage Cassandra SSL`, enabled by default, in the `[cassandra]` section. This setting allows users to opt out of LCM managing custom SSL settings and preserve any values configured directly in `cluster.conf`. The setting appears as a checkbox in the `Add/Edit Cluster` dialog when client encryption is enabled, or can be set via the `manage-opsc-cassandra-ssl` property in the LCM API. (OPSC-17677)

* Fixed an issue where LCM configuration jobs (install/configure/upgrade) overwrote custom SSL settings in OpsCenter's cluster.conf. The [agents] section's ssl_truststore was incorrectly set to the keystore path. For the [cassandra] section, a new per-cluster setting, "Manage Cassandra SSL" (enabled by default), lets users opt out of LCM managing those SSL settings, preserving any values configured directly in cluster.conf. The setting appears as a checkbox in the Add/Edit Cluster dialog when client encryption is enabled, or can be set via the manage-opsc-cassandra-ssl property in the LCM API. (OPSC-17677)

## Security
* Upgraded dojo, dijit, dojox, and dojo-util to 1.17.3, addressing CVE-2021-23450 (CWE-1321: Improperly Controlled Modification of Object Prototype Attributes Prototype Pollution). (OPSC-17877)

Copy link
Copy Markdown
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Suggested change
* Upgraded dojo, dijit, dojox, and dojo-util to 1.17.3, addressing CVE-2021-23450 (CWE-1321: Improperly Controlled Modification of Object Prototype Attributes Prototype Pollution). (OPSC-17877)
* Upgraded `dojo`, `dijit`, `dojox`, and `dojo-util` to version 1.17.3, addressing CVE-2021-23450 (CWE-1321: Improperly Controlled Modification of Object Prototype Attributes Prototype Pollution). (OPSC-17877)


## Security
* Upgraded dojo, dijit, dojox, and dojo-util to 1.17.3, addressing CVE-2021-23450 (CWE-1321: Improperly Controlled Modification of Object Prototype Attributes Prototype Pollution). (OPSC-17877)
* Updated jackson to version 2.21.4 to address CVE-2026-54512. (OPSC-17976)

Copy link
Copy Markdown
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Suggested change
* Updated jackson to version 2.21.4 to address CVE-2026-54512. (OPSC-17976)
* Updated `jackson` to version 2.21.4 to address CVE-2026-54512. (OPSC-17976)

@annieden annieden left a comment

Copy link
Copy Markdown
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Left my suggestions which should be incorporated, but approving for time's sake.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

2 participants