Vault 1.18.0, 1.17.7, 1.16.11, and 1.15.16 are released!

22 views
Skip to first unread message

Tom Chwojko-Frank

unread,
Oct 9, 2024, 7:11:23 PMOct 9
to Vault

Hi all,


The Vault team is announcing the general availability of 1.18, as well as Vault Enterprise 1.17.7, 1.16.11, and 1.15.16.


Community Edition binary can be downloaded at [1]. Enterprise binaries are available to customers as well.


As a reminder, if you believe you have found a security issue in Vault, please responsibly disclose by emailing secu...@hashicorp.com and do not use the public issue tracker. Our security policy and our PGP key can be found at [2].


The major features and improvements in these releases are:


  • PKI Certificate Management Protocol - Version 2 (CMPv2) (Enterprise) to enable 5G wireless providers address 3GPP standards requirements related to automated certificate enrollment.

  • Workload Identity Federation UI for AWS (Enterprise) allows configuration through the Vault UI.

  • Rootless rotation for PostgreSQL static roles (Enterprise) enables credential rotation without requiring a privileged account. 

  • Inline TLS configuration for the PostgreSQL Database Secrets Engine allows a Vault admin to protect the connection between Vault and database server, relieving the dependency on sysadmins.

  • Adaptive Overload Protection GA (Enterprise): Actively limits the length of Vault's storage queue to handle Vault cluster overload scenarios. (Enabled by default for Integrated Storage)

  • Client Count Export API Enhancements: The export API for client counts will now return identity information when it is available.

  • Vault Audit Entry Exclusion (Enterprise): Vault Audit devices can now be configured to exclude fields using expression-based rules.

  • UI Support for KVv2 Patch and Subkey (Enterprise): The Vault UI can now be used to show and selectively update KVv2 subkeys.


See the Changelog at [3] for the full list of improvements and bug fixes.


See the Feature Deprecation Notice and Plans page [8] for our upcoming feature deprecation plans.


Community [6] and Enterprise [7] Docker images will be available soon.


---


Upgrading


See [4] for general upgrade instructions and [5] for upgrade instructions and known issues.


As always, we recommend upgrading and testing this release in an isolated environment. If you experience any non-security issues, please report them on the Vault GitHub issue tracker or post to the Vault Discuss Forum at [9].


We hope you enjoy Vault 1.18.0!


Sincerely, The Vault Team


[1] https://releases.hashicorp.com/vault/1.18.0  

[2] https://www.hashicorp.com/security

[3] https://github.com/hashicorp/vault/blob/main/CHANGELOG.md 

[4] https://developer.hashicorp.com/vault/docs/upgrading

[5] https://developer.hashicorp.com/vault/docs/v1.18.x/release-notes

[6] https://hub.docker.com/r/hashicorp/vault

[7] https://hub.docker.com/r/hashicorp/vault-enterprise

[8] https://developer.hashicorp.com/vault/docs/deprecation

[9] https://discuss.hashicorp.com/c/vault
Reply all
Reply to author
Forward
0 new messages