...
Dependency | Updated from version | Updated to version | Description |
---|---|---|---|
bouncycastle.bcprov | bouncycastle.bcprov-jdk15@140 | org.bouncycastle.bcprov-jdk15to18@1.70 | Dependency in Kerberos component of Kantega SSO Enterprise, org.simplericity.serberuhs. Our internal managed fork of serberuhs contains the new updates. |
org.bouncycastle.bcpkix | bcpkix-jdk15on@1.59 | org.bouncycastle.bcpkix-jdk15to18@1.70 | Dependency in SAML component of Kantega SSO Enterprise |
Security vulnerabilities
...
patched
The dependency patching resolved the following vulnerabilities:
...
Rewrote and improved the User Lookup page with more powerful regex transformation test and improved UXStatus colour Red title SAML/OIDC
Keep Improve how progress is kept in setup wizard when navigating to previous stepsStatus colour Red title SAML/oidc
...
Setup wizard did no allow characters outside ISO-8859-1Status colour Red title Saml/oidc
Could not abort automatic redirect on login page with esc buttonStatus colour Red title Saml/oidc
Managed groups under Group Memberships had inconsistencies and didn’t work properlyStatus colour Red title saml/oidc
Inconsistent login test result status regarding user not foundStatus colour Yellow title saml
Incorrect summary on Kerberos test page when Kerberos is disabled but is still enabled for users in a certain user group or directory.Status colour Blue title kerberos Update of config warning flag gave wrong link path to Configuration status from certain pages
Security
...
vulnerabilities patched
Audit and update NPM packages and one maven dependency. The following vulnerabilities were patched:
Vulnerabilities | Dependency | Package |
---|---|---|
CVE-2021-3807 | ansi-regex:4.1.0 | |
CVE-2020-28469 | glob-parent:3.1.0 | |
CVE-2020-15168 | node-fetch:2.6.1 | |
CVE-2022-0122 | node-forge:0.10.0 | |
CVE-2021-23382 | postcss:7.0.39 | |
CVE-2019-12400 | org.apache.santuario:xmlsec:2.0.10) |
Changes in 5.5.4
Bug fixes
In this release, we temporary roll back Kerberos (back toStatus colour Blue title kerberos bouncycastle.bcprov-jdk15@140 in org.simplericity.serberuhs
) due to some compatibility issues with the library update performed in verison 5.5.2. We will investigate and troubleshoot the issues with the update before reintroducing it more stabilized in a later release.
Setup wizard summary step was stuck on ‘Loading…’ due to changes in 5.5.3Status colour Red title saml
Metadata URL was not saved after SAML IDP setup due to changes in 5.5.3Status colour Red title saml
Unchanged display name was not persisted in IDP setup draft due to changes in 5.5.3Status colour Red title saml/oidc