This update fixes the following issues:
golang-github-lusitaniae-apache_exporter:
- Security issues fixed:
- CVE-2022-32149: Fix denial of service vulnerability (bsc#1204501)
- CVE-2022-41723: Fix uncontrolled resource consumption (bsc#1208270)
- CVE-2022-46146: Fix authentication bypass vulnarability (bsc#1208046)
- Changes and bugs fixed:
- Updated to 1.0.0 (jsc#PED-5405)
- Improved flag parsing
- Added support for custom headers
- Changes from 0.13.1
- Fix panic caused by missing flagConfig options
- Added AppArmor profile
- Added sandboxing options to systemd service unit
- Build using promu
- Build with Go 1.19
- Exclude s390 architecture
golang-github-prometheus-prometheus:
- This update introduces breaking changes. Please, read carefully the provided informations.
- Security issues fixed:
- CVE-2022-41723: Fix uncontrolled resource consumption by updating Go to version 1.20.1 (bsc#1208298)
- Updated to 2.45.0 (jsc#PED-5406):
- [FEATURE] API: New limit parameter to limit the number of items returned by
/api/v1/status/tsdb endpoint
- [FEATURE] Config: Add limits to global config
- [FEATURE] Consul SD: Added support for
path_prefix
- [FEATURE] Native histograms: Add option to scrape both classic and native histograms.
- [FEATURE] Native histograms: Added support for two more arithmetic operators
avg_over_time and sum_over_time
- [FEATURE] Promtool: When providing the block id, only one block will be loaded and analyzed
- [FEATURE] Remote-write: New Azure ad configuration to support remote writing directly to Azure Monitor workspace
- [FEATURE] TSDB: Samples per chunk are now configurable with flag
storage.tsdb.samples-per-chunk. By default set
to its former value 120
- [ENHANCEMENT] Native histograms: bucket size can now be limited to avoid scrape fails
- [ENHANCEMENT] TSDB: Dropped series are now deleted from the WAL sooner
- [BUGFIX] Native histograms: ChunkSeries iterator now checks if...