Security Information
Default minimum password length increased to 16 characters
For the Common Criteria enabled version of the PCE, the default minimum required password length is increased to 16 characters from the previous 8 characters, with an acceptable length of 16-64 characters.
activerecord upgraded to v6.1.7.1
Rails gems including activerecord were upgraded to v6.1.7.1 to address CVE-2023-22792.
consul upgraded to v1.13.2
consul was upgraded to v1.13.2 to address CVE-2021-41803 and CVE-2022-40716.
curl upgraded to v7.87.0
curl was upgraded to v7.87.0 to address CVE-2022-32221 and CVE-2022-35252.
fluentd upgraded to v1.15.3 fluentd was upgraded to v1.15.3 to address CVE-2022-39379.
loofah updated to v2.19.1 loofah was upgraded to v2.19.1 to address CVE-2022-23516.
nokogiri upgraded to 1.13.10
nokogiri was upgraded to 1.13.10 address CVE-2022-23476.
rails-html-sanitizer upgraded to v1.4.4 rails-html-sanitizer was upgraded to v1.4.4 to address CVE-2022-23520, CVE-2022-23519, CVE-2022-23518, and CVE-2022-23517.
sinatra upgraded to v2.2.4
sinatra was upgraded to v 2.2.4 to address CVE-2022-45442.