2023.11.07 - Release Updates

Bug Fixes

Webserver Configuration Fix: Corrected the default webserver configuration for set_real_ip_from to ensure it uses a valid IP range, enhancing security and reliability of IP handling in webserver setups.

Project Route Update Fix: Resolved an issue where gcpDiskSize was incorrectly cast to an integer in project route configurations, maintaining data accuracy and preventing configuration errors during project setups.

Autoscaling Report Logic Correction: Fixed the logic in autoscaling reports to accurately handle scale events that intersect period boundaries, ensuring that scaling activities are correctly recorded and reported, improving the accuracy of autoscaling metrics.

Tasks

• Curl Vulnerability Mitigation for Nginx Image: Addressed the Curl vulnerability (CVE-2023-38545) found in the nginx image of the Liferay Cloud stack, implementing necessary patches to secure the environment against potential security threats.
•  Curl Vulnerability Mitigation for Database Image: Addressed the Curl vulnerability (CVE-2023-38545) found in the database image of the Liferay Cloud stack, securing database services by patching the affected Curl instances.