Falcon LogScale 1.76.4 Stable (2023-06-22)
Version? | Type? | Release Date? | Availability? | End of Support | Security Updates | Upgrades From? | JDK Compatibility? | Req. Data Migration | Config. Changes? |
---|---|---|---|---|---|---|---|---|---|
1.76.4 | Stable | 2023-06-22 | Cloud On-Prem | 2024-02-28 | No | 1.44.0 | 11 | No | No |
TAR Checksum | Value |
---|---|
MD5 | db953465da81f218ea623eda9eb1bbe0 |
SHA1 | 2a8103e67e25f5875b0d9fb64df7b200553e2e2a |
SHA256 | c9ea2a7accd3e68b4a38dadc8a4a2db61551501d5faf13fa45422fd62433a9ed |
SHA512 | 04f3e5f98eea9fb40c9af0ca3bf00ed1941dd54d6ab2d3fc030d9ea98fca735a5fc9a9aa3d83dc5d66a47955c0242ba78dca291321c6b53880a7239d1831c259 |
Docker Image | SHA256 Checksum |
---|---|
humio | 764db9a8db6139b18f8e6757c1bfd8b3adfe61cfae07f923a453a1fbe7831fe7 |
humio-core | a885340105544d8054463717a4457cc6cda3b42bdcb5df12a830677b8a232803 |
kafka | 92250700f7357110151726ebbe1cb38f63534c25e24566ffdb5f3d9c042158f3 |
zookeeper | 76417a09f8e5bfcbf647ade6456acce088c5dcb4cb7be02686dcc6c2a30b616e |
Download: https://repo.humio.com/repository/maven-releases/com/humio/server/1.76.4/server-1.76.4.tar.gz
Security fixes.
Advanced Warning
The following items are due to change in a future release.
Bug Fixes
Security
Verified that LogScale does not use the affected Akka dependency component in CVE-2023-31442 by default, and have taken additional precautions to notify customers.
For:
LogScale Cloud/Falcon Long Term Repository:
This CVE does not impact LogScale Cloud or LTR customers.
LogScale Self-Hosted:
Exposure to risk:
Potential risk is only present if a self hosted customer has modified the Akka parameters to a non default value of
akka.io.dns.resolver = async-dns
during initial setup.By default LogScale does not use this configuration parameter.
CrowdStrike has never recommended custom Akka parameters. We recommend using default values for all parameters.
Steps to mitigate:
Setting akka.io.dns.resolver to default value (inet-address) will mitigate the potential risk.
On versions older than 1.92.0:
Unset the custom Akka configuration. Refer to Akka documentation for more information on how to unset or pass a different value to the parameter here.
CrowdStrike recommends upgrading LogScale to 1.92.x or higher versions.