Release notes

nevisAppliance 2.202111.56-LTS - 28.03.2024

Highlights

The Nevis Cluster 2.202111.56-LTS release is published.

This is a patch release for the update of the 202111-LTS, which is based mostly on the Nevis components and their respective versions released to the August 2021 Rolling Release. It replaces the 201911-LTS, which has gone into Maintenance mode. It contains a fix to prevents a potential crash when using a Navajo SSLCache with OpenSSL 3.0.

This LTS 2021 release received patches and updates of Nevis components, the same way as the LTS 2019. It provides long-term static code and functionality, and receives security and critical bugfix patches only.

See the component release notes to get an in-depth view of the fixes.

Upgraded Nevis components

• nevisproxy-4.6.18.0

Resolved issues

• UPGRADED: We upgraded the CentOS operating system to the latest available version.

nevisAppliance 2.202111.55-LTS - 29.02.2024

Highlights

The Nevis Cluster 2.202111.55-LTS release is published.

This is a patch release for the update of the 202111-LTS, which is based mostly on the Nevis components and their respective versions released to the August 2021 Rolling Release. It replaces the 201911-LTS, which has gone into Maintenance mode. It fixes a wrongly intruduced upgrade of the splunkforwarder to 9.1.2 which has been reset to the correct version 8.2.3 for the 202111-LTS branch.

This LTS 2021 release received patches and updates of Nevis components, the same way as the LTS 2019. It provides long-term static code and functionality, and receives security and critical bugfix patches only.

See the component release notes to get an in-depth view of the fixes.

Upgraded Nevis components

• none

Resolved issues

• FIXED: The splunkforwarder package has been reset to version 8.2.3
• UPGRADED: We upgraded the CentOS operating system to the latest available version.

nevisAppliance 2.202111.54-LTS - 21.02.2024

Highlights

The Nevis Cluster 2.202111.54-LTS release is published.

This is a patch release for the update of the 202111-LTS, which is based mostly on the Nevis components and their respective versions released to the August 2021 Rolling Release. It replaces the 201911-LTS, which has gone into Maintenance mode.

This LTS 2021 release received patches and updates of Nevis components, the same way as the LTS 2019. It provides long-term static code and functionality, and receives security and critical bugfix patches only.

See the component release notes to get an in-depth view of the fixes.

Upgraded Nevis components

• nevisadapt 1.8.12.3
• nevisadmin4 4.12.15.2
• nevisadmin-plugin 4.12.15.1
• nevisauth 4.32.16.1
• nevisdetect 1.8.12.3
• nevisdp 2.18.9.7885924689
• nevisfido 1.15.10.2
• nevisidm 2.82.12.7885413860
• nevisidmcl 2.82.12.7885413860
• nevisidmdb 7.7.12.7885413860
• nevismeta 1.12.10.0

Resolved issues

• UPGRADED: We upgraded the CentOS operating system to the latest available version.

nevisAppliance 2.202111.53-LTS - 16.01.2024

Highlights

The Nevis Cluster 2.202111.53-LTS release is published.

This is an emergency patch release due to an issue with modsewcurity for the update of the 202111-LTS, which is based mostly on the Nevis components and their respective versions released to the August 2021 Rolling Release. It replaces the 201911-LTS, which has gone into Maintenance mode. It contains a security fix for nevisproxy.

This LTS 2021 release received patches and updates of Nevis components, the same way as the LTS 2019. It provides long-term static code and functionality, and receives security and critical bugfix patches only.

See the component release notes to get an in-depth view of the fixes.

Upgraded Nevis components

• nevisproxy 4.6.17.0

Resolved issues

• UPGRADED: We upgraded the CentOS operating system to the latest available version.

nevisAppliance 2.202111.52-LTS - 16.01.2024

Highlights

The Nevis Cluster 2.202111.52-LTS release is published.

This is a patch release for the update of the 202111-LTS, which is based mostly on the Nevis components and their respective versions released to the August 2021 Rolling Release. It replaces the 201911-LTS, which has gone into Maintenance mode. It contains a security fix for nevisproxy.

This LTS 2021 release received patches and updates of Nevis components, the same way as the LTS 2019. It provides long-term static code and functionality, and receives security and critical bugfix patches only.

See the component release notes to get an in-depth view of the fixes.

Upgraded Nevis components

• nevisproxy 4.6.16.0

Resolved issues

• UPGRADED: We upgraded the CentOS operating system to the latest available version.

nevisAppliance 2.202111.51-LTS - 11.12.2023

Highlights

The Nevis Cluster 2.202111.51-LTS release is published.

This is a patch release for the update of the 202111-LTS, which is based mostly on the Nevis components and their respective versions released to the August 2021 Rolling Release. It replaces the 201911-LTS, which has gone into Maintenance mode.

This LTS 2021 release received patches and updates of Nevis components, the same way as the LTS 2019. It provides long-term static code and functionality, and receives security and critical bugfix patches only.

See the component release notes to get an in-depth view of the fixes.

Upgraded Nevis components

• nevisadapt 1.8.11.7
• nevisdetect 1.8.11.7

Resolved issues

• UPGRADED: We upgraded the CentOS operating system to the latest available version.

nevisAppliance 2.202111.50-LTS - 15.11.2023

Highlights

The Nevis Cluster 2.202111.50-LTS release is published.

This is a patch release for the update of the 202111-LTS, which is based mostly on the Nevis components and their respective versions released to the August 2021 Rolling Release. It replaces the 201911-LTS, which has gone into Maintenance mode.

This LTS 2021 release received patches and updates of Nevis components, the same way as the LTS 2019. It provides long-term static code and functionality, and receives security and critical bugfix patches only.

NevisProxy Openssl 3.0 based

There is a breaking change in this release. Starting with the nevisAppliance LTS21 and RR November release and going forward, nevisAppliance includes the nevisProxy OpenSSL3 based package by default.

For the majority of the integrations we expect this change to be transparent for the customers, no breaking changes and no action required when migrating to the OpenSSL3 packages. Therefore we urge customers to use the new packages as this will also help to prepare for the eventual LTS24 migration.

If customers face any issues with the nevisAppliance LTS21 November release that relates to the nevisProxy OpenSSL3 migration, an OpenSSL1.1.1 based version can be delivered upon request.

See the component release notes to get an in-depth view of the fixes.

Upgraded Nevis components

• nevisadapt 1.8.10.1
• nevisadmin4 4.12.14.3
• nevisauth 4.32.15.1
• nevisdp 2.18.8.6744713495
• nevisdetect 1.8.10.1
• nevisfido 1.15.9.2
• nevisidm 2.82.11.6796349741
• nevisidmCl 2.82.11.6796349741
• nevisidmdb 7.7.11.6796349741
• nevislogrend 1.14.9.1
• nevismeta 1.12.9.0
• nevisproxy 4.6.15.0

Resolved issues

• UPGRADED: We upgraded the CentOS operating system to the latest available version.

nevisAppliance 2.202111.49-LTS - 25.09.2023

Highlights

The Nevis Cluster 2.202111.49-LTS release is published.

This is a patch release for the update of the 202111-LTS, which is based mostly on the Nevis components and their respective versions released to the August 2021 Rolling Release. It replaces the 201911-LTS, which has gone into Maintenance mode.

This LTS 2021 release received patches and updates of Nevis components, the same way as the LTS 2019. It provides long-term static code and functionality, and receives security and critical bugfix patches only.

See the component release notes to get an in-depth view of the fixes.

Upgraded Nevis components

• nevisauth 4.32.14.1

Resolved issues

• UPGRADED: We upgraded the CentOS operating system to the latest available version.

nevisAppliance 2.202111.48-LTS - 16.08.2023

Highlights

The Nevis Cluster 2.202111.48-LTS release is published.

This is a patch release for the update of the 202111-LTS, which is based mostly on the Nevis components and their respective versions released to the August 2021 Rolling Release. It replaces the 201911-LTS, which has gone into Maintenance mode.

This LTS 2021 release received patches and updates of Nevis components, the same way as the LTS 2019. It provides long-term static code and functionality, and receives security and critical bugfix patches only.

See the component release notes to get an in-depth view of the fixes.

Upgraded Nevis components

• nevisadapt 1.8.9.1
• nevisadmin 3.8.15.2
• nevisagent 3.8.15.2
• nevisauth 4.32.13.3
• neviscred 2.0.20.0
• nevisdetect 1.8.9.1
• nevisdetectcl 1.8.9.1
• nevisdp 2.18.7.5669758154
• nevisfido 1.15.8.1
• nevisfidocl 1.15.8.1
• nevisidm 2.82.10.5808055902
• nevisidmcl 2.82.10.5808055902
• nevisidmdb 7.7.10.5808055902
• nevislogrend 1.14.8.1
• nevismeta 1.12.8.1
• nevisproxy 4.6.14.0

Resolved issues

• UPGRADED: We upgraded the CentOS operating system to the latest available version.
• UPGRADED: We upgraded MariaDB to 10.3.39 to patch CVE-2022-47015.

nevisAppliance 2.202111.43-LTS - 10.07.2023

Highlights

The Nevis Cluster 2.202111.43-LTS release is published.

This is a patch release for the update of the 202111-LTS, which is based mostly on the Nevis components and their respective versions released to the August 2021 Rolling Release. It replaces the 201911-LTS, which has gone into Maintenance mode.

This LTS 2021 release received patches and updates of Nevis components, the same way as the LTS 2019. It provides long-term static code and functionality, and receives security and critical bugfix patches only.

See the component release notes to get an in-depth view of the fixes.

Upgraded Nevis components

• nevisauth 4.32.12.0

Resolved issues

• UPGRADED: We upgraded the CentOS operating system to the latest available version. `

nevisAppliance 2.202111.42-LTS - 19.06.2023

Highlights

The Nevis Cluster 2.202111.42-LTS release is published.

This is a patch release for the update of the 202111-LTS, which is based mostly on the Nevis components and their respective versions released to the August 2021 Rolling Release. It replaces the 201911-LTS, which has gone into Maintenance mode.

This LTS 2021 release received patches and updates of Nevis components, the same way as the LTS 2019. It provides long-term static code and functionality, and receives security and critical bugfix patches only.

See the component release notes to get an in-depth view of the fixes.

Upgraded Nevis components

• nevisauth 4.32.11.0

Resolved issues

• UPGRADED: We upgraded the CentOS operating system to the latest available version. `

nevisAppliance 2.202111.41-LTS - 05.06.2023

Highlights

The Nevis Cluster 2.202111.41-LTS release is published.

This is a patch release for the update of the 202111-LTS, which is based mostly on the Nevis components and their respective versions released to the August 2021 Rolling Release. It replaces the 201911-LTS, which has gone into Maintenance mode.

This LTS 2021 release received patches and updates of Nevis components, the same way as the LTS 2019. It provides long-term static code and functionality, and receives security and critical bugfix patches only.

See the component release notes to get an in-depth view of the fixes.

Upgraded Nevis components

• nevisadapt 1.8.8.6
• nevisadmin4 4.12.12.0
• nevisdetect 1.8.8.6

Resolved issues

• UPGRADED: We upgraded the CentOS operating system to the latest available version.

nevisAppliance 2.202111.40-LTS - 17.05.2023

Highlights

The Nevis Cluster 2.202111.40-LTS release is published.

This is a patch release for the update of the 202111-LTS, which is based mostly on the Nevis components and their respective versions released to the August 2021 Rolling Release. It replaces the 201911-LTS, which has gone into Maintenance mode.

This LTS 2021 release received patches and updates of Nevis components, the same way as the LTS 2019. It provides long-term static code and functionality, and receives security and critical bugfix patches only.

See the component release notes to get an in-depth view of the fixes.

Upgraded Nevis components

• nevisadmin 3.8.15.2
• nevisagent 3.8.15.2
• nevisauth 4.32.10.1
• nevisdp 2.18.6.4719797536
• nevisfido 1.15.7.1
• nevisfidocl 1.15.7.1
• nevisidm 2.82.9.4937895678
• nevisidmcl 2.82.9.4937895678
• nevisidmdb 7.7.9.4937895678
• nevislogrend 1.14.7.2
• nevismeta 1.12.7.0
• nevisproxy 4.6.13.0

Resolved issues

• UPGRADED: We upgraded the CentOS operating system to the latest available version.

nevisAppliance 2.202111.39-LTS - 24.04.2023

Highlights

The Nevis Cluster 2.202111.38-LTS patch release is published.

This is a patch release for the update of the 202111-LTS, which is based mostly on the Nevis components and their respective versions released to the August 2021 Rolling Release. It replaces the 201911-LTS, which has gone into Maintenance mode.

This LTS 2021 release received patches and updates of Nevis components, the same way as the LTS 2019. It provides long-term static code and functionality, and receives security and critical bugfix patches only.

See the component release notes to get an in-depth view of the fixes.

Upgraded Nevis components

• nevisadmin-3.8.15.2

Resolved issues

• UPGRADED: We upgraded the CentOS operating system to the latest available version.

nevisAppliance 2.202111.37-LTS - 27.03.2023

Highlights

The Nevis Cluster 2.202111.37-LTS patch release is published.

This is a patch release for the update of the 202111-LTS, which is based mostly on the Nevis components and their respective versions released to the August 2021 Rolling Release. It replaces the 201911-LTS, which has gone into Maintenance mode.

This LTS 2021 release received patches and updates of Nevis components, the same way as the LTS 2019. It provides long-term static code and functionality, and receives security and critical bugfix patches only.

See the component release notes to get an in-depth view of the fixes.

Upgraded Nevis components

• nevisauth-4.32.9.3

Resolved issues

• FIXED: We fixed the nevisauth SAML vulnerability.
• UPGRADED: We upgraded the CentOS operating system to the latest available version.

nevisAppliance 2.202111.36-LTS - 28.02.2023

Highlights

The Nevis Cluster 2.202111.36-LTS patch release is published.

This is a patch release for the update of the 202111-LTS which is based mostly on the Nevis components and their respective versions released to the August 2021 Rolling Release, and replaces the 201911-LTS, which has gone into Maintenance mode.

This LTS 2021 release received patches and updates of Nevis components, the same way as the LTS 2019. It provides long-term static code and functionality, and receives security and critical bugfix patches only.

See the component release notes to get an in-depth view of the fixes.

Upgraded Nevis components

• nevisproxy-4.6.12.0

Resolved issues

• UPGRADED: We upgraded the CentOS operating system to the latest available version.

nevisAppliance 2.202111.35-LTS - 15.02.2023

Highlights

The Nevis Cluster 2.202111.35-LTS Release is published.

The 202111-LTS is based mostly on the Nevis components and their respective versions released to the August 2021 Rolling Release, and replaces the 201911-LTS, which has gone into Maintenance mode.

This LTS 2021 release received patches and updates of Nevis components, the same way as the LTS 2019. It provides long-term static code and functionality, and receives security and critical bugfix patches only.

Please note that MariaDB 10.3.37 has a security issue reported here: https://jira.mariadb.org/browse/MDEV-29988. This version was included in the LTS-21 nevisAppliance release in November 2022. MariaDB has been upgraded in this release to 10.3.38 which is not on the reported list of affected versions. Please upgrade to this release as soon as possible.

See the component release notes to get an in-depth view of the fixes.

Upgraded Nevis components

• nevisAdapt: 1.8.7.0
• nevisAdmin: 3.8.14.2
• nevisAdmin4: 4.12.9.3
• nevisAgent: 3.8.14.2
• nevisAuth: 4.32.9.2
• nevisDetect: 1.8.7.0
• nevisDetectCl: 1.8.7.0
• nevisDp: 2.18.5.4124553285
• nevisFido: 1.15.6.1
• nevisFidoCl: 1.15.6.1
• nevisIdm: 2.82.8.4105051486
• nevisIdmCl: 2.82.8.4105051486
• nevisIdmDb: 7.7.8.4105051486
• nevisLogrend: 1.14.6.2
• nevisMeta: 1.12.6.1
• nevisProxy: 4.6.11.0

Resolved issues

• UPGRADED: We upgraded the CentOS operating system to the latest available version.
• UPGRADED: We upgraded OpenJDK to 1.8.0.362.b08
• UPGRADED: We upgraded MariDB to 10.3.38

nevisAppliance 2.202111.33-LTS - 03.01.2023

Highlights

The Nevis Cluster 2.202111.33-LTS patch release is published.

This is a nevisadm3 security patch release for the update of the 202111-LTS which is based mostly on the Nevis components and their respective versions released to the August 2021 Rolling Release, and replaces the 201911-LTS, which has gone into Maintenance mode.

This LTS 2021 release received patches and updates of Nevis components, the same way as the LTS 2019. It provides long-term static code and functionality, and receives security and critical bugfix patches only.

See the component release notes to get an in-depth view of the fixes.

Upgraded Nevis components

• nevisagent-3.8.14.2
• nevisadmin-3.8.14.2

Resolved issues

• UPGRADED: We upgraded the CentOS operating system to the latest available version.

nevisAppliance 2.202111.29-LTS - 16.11.2022

Highlights

The Nevis Cluster 2.202111.29-LTS Release is published.

The 202111-LTS is based mostly on the Nevis components and their respective versions released to the August 2021 Rolling Release, and replaces the 201911-LTS, which has gone into Maintenance mode.

This LTS 2021 release received patches and updates of Nevis components, the same way as the LTS 2019. It provides long-term static code and functionality, and receives security and critical bugfix patches only.

See the component release notes to get an in-depth view of the fixes.

Upgraded Nevis components

• nevisadapt-1.8.6.1
• nevisadmin-3.8.13.1
• nevisadmin4-4.12.8.3
• nevisagent-3.8.13.1
• nevisauth-4.32.8.2
• neviscred-2.0.20.0
• nevisdetect-1.8.6.1
• nevisdetectcl-1.8.6.1
• nevisdp-2.18.4.3287514911
• nevisfido-1.15.5.2
• nevisfidocl-1.15.5.2
• nevisidm-2.82.7.3422628283
• nevisidmcl-2.82.7.3422628283
• nevisidmdb-7.7.7.3422628283
• neviskeybox-2.2.4.1
• nevislogrend-1.14.5.1
• nevismeta-1.12.5.4
• nevisproxy-4.6.10.0

Resolved issues

• UPGRADED: We upgraded the CentOS operating system to the latest available version.
• UPGRADED: We upgraded OpenJDK to 1.8.0.352.b08

nevisAppliance 2.202111.26-LTS - 28.10.2022

Highlights

The Nevis Cluster 2.202111.26-LTS patch release is published.

This is a patch release for the nevisAppliance August 2022 LTS-21 Release (2.202111.25-LTS). Do not download/use 2.202111.25-LTS as it contains a bad version of nevisProxy that has been fixed/replaced in this release.

See the component Release Notes to get an in-depth view of the fixes.

Upgraded Nevis components

• nevisProxy 4.6.9.0

Resolved issues

• UPGRADED: We upgraded the CentOS operating system to the latest available version.
• UPGRADED: We upgraded OpenJDK to 1.8.0.352.b08.

nevisAppliance 2.202111.25-LTS - 24.10.2022

Highlights

The Nevis Cluster 2.202111.25-LTS patch release is published.

This is a patch release for the nevisAppliance August 2022 LTS-21 Release (2.202111.24-LTS).

See the component Release Notes to get an in-depth view of the fixes.

Upgraded Nevis components

• nevisIdm 2.82.6.3263417221
• nevisIdmDb 7.7.6.3263417221
• nevisIdmCl 2.82.6.3263417221

Resolved issues

• UPGRADED: We upgraded the CentOS operating system to the latest available version.
• UPGRADED: We upgraded OpenJDK to 1.8.0.352.b08.

nevisAppliance 2.202111.24-LTS - 14.10.2022

Highlights

The Nevis Cluster 2.202111.24-LTS patch release is published.

This is a patch release for the nevisAppliance August 2022 LTS-21 Release (2.202111.23-LTS).

See the component Release Notes to get an in-depth view of the fixes.

Upgraded Nevis components

• nevisAdapt 1.8.5.0
• nevisDetect 1.8.5.0
• nevisProxy 4.6.8.0

Resolved issues

• UPGRADED: We upgraded the CentOS operating system to the latest available version.
• UPGRADED: We upgraded OpenJDK to 1.8.0.345.b01.

nevisAppliance 2.202111.23-LTS - 31.08.2022

Highlights

The Nevis Cluster 2.202111.23-LTS patch r**elease** is published.

This is a patch release for the nevisAppliance August 2022 LTS-21 Release (2.202111.22-LTS). Included are several component fixes like a ModsecurityFilter patch in nevisProxy and also fixes in nevisAdapt, nevisDetect and nevisAuth that have been discovered after the Cluster release.

See the component Release Notes to get an in-depth view of the fixes.

Upgraded Nevis components

• nevisAdapt 1.8.4.1
• nevisAuth 4.32.6.3
• nevisDetect 1.8.4.1
• nevisProxy 4.6.7.0

Resolved issues

• UPGRADED: We upgraded the CentOS operating system to the latest available version.
• UPGRADED: We upgraded OpenJDK to 1.8.0.342.b07.

nevisAppliance 2.202111.22-LTS - 17.08.2022

Highlights

The Nevis Cluster 2.202111.22-LTS Release is published.

The 202111-LTS is based mostly on the Nevis components and their respective versions released to the August 2021 Rolling Release, and replaces the 201911-LTS, which has gone into Maintenance mode.

This LTS 2021 release received patches and updates of Nevis components, the same way as the LTS 2019. It provides long-term static code and functionality, and receives security and critical bugfix patches only.

See the component release notes to get an in-depth view of the fixes.

Upgraded Nevis components

• nevisAdmin 3.8.12.4
• nevisAdmin4 4.12.6.2
• nevisAgent 3.8.12.4
• nevisAuth 4.32.6.3
• nevisDp 2.18.3.2695502534
• nevisFido 1.15.4.4
• nevisFidocl 1.15.4.4
• nevisIdm 2.82.5.2830665211
• nevisIdmcl 2.82.5.2830665211
• nevisIdmdb 7.4.5.2830665211
• nevisLogrend 1.14.4.0
• nevisMeta 1.12.4.1
• nevisProxy 4.6.6.0

Resolved issues

• UPGRADED: The CentOS operating system is upgraded to the latest available version.
• UPGRADED: OpenJDK is upgraded to 1.8.0.342.b07.

nevisAppliance 2.202111.20-LTS - 10.06.2022

Highlights

We are pleased to announce the publication of the Nevis Appliance 2.202111.20-LTS Release.

Announcement

This is a nevisAuth only bugfix release.

See the component Release Notes to get an in-depth view of the fixes.

Upgraded Nevis components

• nevisAuth 4.32.5.1

Resolved issues

• UPGRADED: The CentOS operating system is upgraded to the latest available version.

nevisAppliance 2.202111.19-LTS - 18.05.2022

Highlights

We are pleased to announce the publication of the Nevis Cluster**2.202111.19-LTS**Release.

The 202111-LTS is based mostly on the Nevis components and their respective versions released to the August 2021 Rolling Release, and replaces the 201911-LTS, which has gone into Maintenance mode.

This LTS 2021 release received patches and updates of Nevis components the same way as the LTS 2019. It provides long-term static code and functionality, and receives security and critical bugfix patches only.

See the component release notes to get an in-depth view of the fixes.

Upgraded Nevis components

• nevisAdapt 1.8.3.4
• nevisAdmin 3.8.11.1
• nevisAdmin4 4.15.0.10
• nevisAgent 3.8.10.1
• nevisAuth 4.32.4.14
• nevisDetect 1.8.3.4
• nevisDp 2.18.2.2207953556
• nevisFido 1.15.3.2
• nevisIdm 2.82.4.2166298264
• nevisIdmDb 7.4.4.2166298264
• nevisIdmCl 2.82.4.2166298264
• nevisLogrend 1.14.3.4
• nevisMeta 1.12.3.3
• nevisProxy 4.6.5.1

Resolved issues

• UPGRADED: The CentOS operating system is upgraded to the latest available version.
• UPGRADED: OpenJDK is upgraded to 1.8.0.332.b09.

nevisAppliance 2.202111.16-LTS - 24.03.2022

Highlights

We are pleased to announce the publication of the Nevis Appliance 2.202111.16-LTS Release.

Announcement

This is a security fix release, addressing the lately found Common Vulnerability and Exposures (CVEs) :

• CVE-2022-23943
• CVE-2022-22721
• CVE-2022-22720
• CVE-2022-22719
• CVE-2022-0778

We urge you to update soon to keep your Nevis systems safe.

Upgraded Nevis components

• nevisProxy 4.6.4.0

Resolved issues

• FIXED: CVE-2022-23943, CVE-2022-22721, CVE-2022-22720, CVE-2022-22719, and CVE-2022-0778.
• UPGRADED: The CentOS Stream 7 operating system is upgraded to the latest available version.

nevisAppliance 2.202111.11-LTS - 16.02.2022

Highlights

We are pleased to announce the publication of the Nevis Appliance 2.202111.11-LTS Release.

The 202111-LTS is based mostly on the Nevis components and their respective versions released to the August 2021 Rolling Release, and replaces the 201911-LTS, which is gone into Maintenance mode now.

This LTS 2021 release has received patches and updates of Nevis components the same way the LTS 2019 was released, providing you the same confidence of long-term static code and functionality, receiving security and critical bugfix patches only.

See the component release notes to get an in-depth view of the fixes.

Upgraded Nevis components

• nevisAdapt 1.8.2.5
• nevisAdmin 3.8.10.1
• nevisAdmin4 4.12.4.2
• nevisAgent 3.8.10.1
• nevisAuth 4.32.3.3
• nevisDetect 1.8.2.5
• nevisDp 2.17.2.1745278210
• nevisFido 1.15.2.1
• nevisIdm 2.82.3.1816855279
• nevisIdmDb 7.4.3.1816855279
• nevisIdmCl 2.82.3.1816855279
• nevisLogrend 1.14.2.1
• nevisMeta 1.12.2.0
• nevisProxy 4.6.3.0

Resolved issues

• UPGRADED: The CentOS operating system is upgraded to the latest available version.
• UPGRADED: MariaDB is upgraded to 10.3.34.

nevisAppliance 2.202111.8-LTS - 17.12.2021

Highlights

We are pleased to announce the publication of the Nevis Appliance 2.202111.8-LTS Release.

This nevisAppliance release contains Nevis components affected by the log4j(https://github.com/advisories/GHSA-7rjr-3q55-vv33 "CVE-2021-45046") and also a security update of nevisProxy regarding modSecurity.

See the component release notes to get an in-depth view of the fixes.

Upgraded Nevis components

• nevisIdm 2.82.2.1582902752
• nevisIdmDb 7.4.2.1582902752
• nevisIdmCl 2.82.2.1582902752
• nevisProxy 4.6.2.0

Resolved issues

• UPGRADED: The CentOS operating system is upgraded to the latest available version.
• UPGRADED: Splunk Forwarder is upgraded to 8.2.3.

nevisAppliance 2.202111.3 LTS - 17.22.2021

Highlights

We are pleased to announce the publication of the Nevis Cluster 2.202111.3-LTS Release.

Announcement

The 202111-LTS is based mostly on the Nevis components and their respective versions released to the August 2021 Rolling Release, and replaces the 201911-LTS, which is gone into Maintenance mode now.

This LTS release will receive patches and updates of Nevis components the same way the LTS 2019 was released, providing you the same confidence of long-term static code and functionality, receiving security and critical bugfix patches only.

Upgraded Nevis components

• nevisAdapt 1.8.1.3
• nevisAdmin3 3.8.9.2
• nevisAdmin4 4.12.3.5
• nevisAgent 3.8.9.2
• nevisAuth 4.32.2.2
• nevisDetect 1.8.1.3
• nevisDataPorter 2.17.1.1412249687
• nevisfFIDO 1.15.1.3
• nevisIDM 2.82.1.1441644291
• nevisidmdb 7.4.1.1441644291
• nevisLogRend 1.14.1.1
• nevisMeta 1.12.1.0
• nevisProxy 4.6.1.1

Resolved issues

• UPGRADED: The CentOS operating system is upgraded to the latest available version.
• UPGRADED: OpenJDK is upgraded to 1.8.0.312.b07.

nevisAppliance 2.202108.943 - 18.08.2021

Highlights

We are pleased to announce the publication of the Nevis Cluster 2.202108.943 Rolling Release.

Announcement

This is the last Rolling Release that is Centos-7 based. Due to Centos 7 becoming EOL, we switch for the November 2021 Rolling Release to a new Centos8-stream based Operating System as the base for the nevisAppliance to keep up with up-to-date software and security fixes. See the component release notes for more specific information.

Removed

Support for adnwildfly and adnjboss as deployment containers is now removed. This also pertains to the two J2EE deployment containers.

Upgraded Nevis components

• nevisAdapt 1.8.0.4
• nevisAdmin 3.8.8.8
• nevisAdmin 4.12.0.8
• nevisAgent 3.8.8.8
• nevisAuth 4.32.0.3
• nevisDetect 1.8.0.4
• nevisDataPorter 2.17.0.1049456321
• nevisfFIDO 1.15.0.3
• nevisIDM 2.82.0.1117104689
• nevisidmdb 7.4.0.1117104689
• nevisLogRend 1.14.0.2
• nevisMeta 1.12.0.0
• nevisProxy 4.6.0.1

Resolved issues

• UPGRADED: The CentOS operating system is upgraded to the latest available version.

nevisAppliance 2.202105.939 - 20.07.2021

Highlights

We are pleased to announce the publication of the Nevis Cluster 2.202105.939 Rolling Release bugfix release. It contains an updated nevisAuth component with improved RelyingPartyState functionality. See the nevisAuth release notes for more information on this security fix: nevisAuth 4.31.1.0 - 19.07.2021.

Removed

Support for adnwildfly and adnjboss as deployment containers has been removed. This also pertains to the two J2EE deployment containers.

Upgraded Nevis components

• nevisAuth 4.31.1.0

Resolved issues

• UPGRADED: The CentOS operating system has been upgraded to the latest available version.

nevisAppliance 2.202105.938 - 01.07.2021

Highlights

We are pleased to present the Nevis Cluster 2.202105.938 Rolling Release bugfix release. It contains an updated nevisMeta component. See the nevisMeta release notes for more information on this security fix: nevisMeta 1.11.0.5 - 05.07.2021.

Removed

Support for adnwildfly and adnjboss as deployment containers has been removed. This also pertains to the two J2EE deployment containers.

Upgraded Nevis components

• nevisMeta 1.11.0.5

Resolved issues

• UPGRADED: The CentOS operating system, to the latest available version.

nevisAppliance 2.202105.937 - 28.06.2021

Highlights

We are pleased to present the Nevis Cluster 2.202105.937 Rolling Release security hotfix. It contains an updated nevisProxy component. See the nevisProxy release notes for more information on this security fix: nevisProxy 4.5.1 - 25.6.2021.

Removed

Support for adnwildfly and adnjboss as deployment containers has been removed in this release. This also pertains to the two J2EE deployment containers.

Upgraded Nevis components

• nevisProxy 4.5.1.0

Resolved issues

• UPGRADED: The CentOS operating system, to the latest available version.

nevisAppliance 2.202105.936 - 22.06.2021

Highlights

We are pleased to present the Nevis Cluster 2.202105.936 Rolling Release Update. This nevisAppliance release fixes the unsupported and incompatible OpenJDK version (1.8.0.292), which was delivered with the extended image set. Using this Java version can cause the issues mentioned in the blog post Java OpenJDK 1.8.0.292 incompatibility. If you are using the nevisAppliance extended image version 2.202105.934, upgrade to this new version.

Removed

Support for adnwildfly and adnjboss as deployment containers has been removed. This also pertains to the two J2EE deployment containers.

Resolved issues

• FIXED: The issue with the delivery of the unsupported OpenJDK version 1.8.0.292 (instead of the supported version 1.8.0.282) on the nevisAppliance has been fixed.
• UPGRADED: The CentOS operating system has been upgraded to the latest available version.

nevisAppliance 2.202105.934 - 15.06.2021

Highlights

We are pleased to present the Nevis Cluster 2.202105.934 Rolling Release Update. This nevisAppliance release fixes the memory leak that occurred when using OpenOffice with adnooprint as the nevisIDM printing facility. If you use the nevisIDM printing functionality on the extended nevisAppliance image, we recommend upgrading to this latest version.

Currently, the only supported printing facility is adnooprint together with LibreOffice. To give a clear plot, we removed the oooserver package in this release. Migration To use the new printing tool, perform the following steps:

1. Adjust the OPENOFFICE_HOME variable in the /var/opt/adnooprint/<instance>/conf/env.conf file as shown in the next code snippet:

...
OPENOFFICE_HOME=/usr/lib64/libreoffice
...

2. The /tmp/.config folder can prevent LibreOffice from starting (ending in a TIMEOUT). Therefore, remove an existing /tmp/.config folder completely after installing the nevisAppliance images. Use the following command: rm -Rf /tmp/.config

Removed

Support for adnwildfly and adnjboss as deployment containers has been removed in this release. This also pertains to the two J2EE deployment containers.

Upgraded Nevis components

• adnooprint-1.2.1.928552561

Removed Nevis components

• oooserver-1.1.0.0

Resolved issues

• FIXED: The issue with the memory leak in OpenOffice has been fixed with a full replacement.
• UPGRADED: The CentOS operating system has been upgraded to the latest available version.

nevisAppliance 2.202105.933 - 19.05.2021

Highlights

We are pleased to present the Nevis Cluster 2.202105.933 Rolling Release. We are heading towards the upcoming LTS switch (November 2021) and therefore are cleaning up/adjusting components. As there are issues with newer OpenJDK versions regarding TLS (see also the separate Nevis statement on this), the nevisAppliance continues to use OpenJDK 1.8.0.282.b08-1.el7_9, to provide a safe and good working Nevis environment.

• With this release, you get the latest component updates.

Removed

Support for adnwildfly and adnjboss as deployment containers has been removed in this release. This also pertains to the two J2EE deployment containers.

Upgraded Nevis components

• adnooprint-1.2.0.683684080
• nevisAdapt 1.7.0.5
• nevisAdmin 3.8.7.5
• nevisAdmin4 4.11.0.9
• nevisAuth 4.31.0.1
• nevisDetect 1.7.0.5
• nevisFIDO 1.14.0.1
• nevisIDM 2.81.0.830749540
• nevisIDMDb 7.4.0.830749540
• nevisIDMCl 2.81.0.830749540
• nevisKeybox 2.2.4.1
• nevisLogrend 1.13.0.1
• nevisMeta 1.11.0.3
• nevisProxy 4.5.0.2

Removed Nevis components

• adnjboss (EOL since November 2020)
• adnwildfly (EOL since November 2020)
• nevisPortal (EOL since May 2019)

Resolved issues

• FIXED: The issue with the memory leak in adnooprint has been fixed with an upgraded version.
• UPGRADED: The CentOS operating system has been upgraded to the latest available version.

nevisAppliance 2.202102.911 - 08.04.2021

Highlights

We are pleased to present the Nevis February 2.202102.911 hotfix Rolling Release.

• This release contains a security fix for nevisProxy regarding the following OpenSSL issues:

For more, see the nevisProxy upgrade and release notes: nevisProxy 4.4.1 - 8.4.2021.

Deprecated

Support of adnwildfly as deployment container has been removed. Migrate your adnwildfly-based instances to a standalone container deployment.

Upgraded Nevis components

• nevisProxy 4.4.1.0

Resolved issues

• UPGRADED: The CentOS operating system, to the latest available versions.

nevisAppliance 2.202102.908 - 08.03.2021

Highlights

We are pleased to present the Nevis February 2.202102.908 hotfix Rolling Release.

• This hotfix is only of relevance to you if you are still using nevisAdmin 3 for deployments. It fixes a redeploy issue that was introduced in the February 2.202102 Release. Only the nevisAdmin3 nevisAppliance image has been changed/upgraded in this release. For further details, see the nevisAdmin 3 release notes.

  Deprecated

Support for adnwildfly as deployment container has been removed. Migrate your adnwildfly-based instances to a standalone container deployment.

Upgraded Nevis components

• nevisAdmin3 3.8.7.3

Resolved issues

• FIXED: The bug that caused a redeploy issue in nevisAdmin 3 asking for an unknown password has been fixed.
• UPGRADED: The CentOS operating system has been upgraded to the latest available version.

nevisAppliance 2.202102.902 - 23.02.2021

Highlights

We are pleased to present the Nevis February 2.202102.902 hotfix Rolling Release.

• This hotfix is of relevance to you if you use nevisAdmin 4 for deployments. It fixes a ConcurrentModification exception during deployment generation on multicore machines as well as some issues with patterns in the nevisAdmin 4 component. For further details, see the nevisAdmin 4.10.1 release notes.

  Deprecated

Support for adnwildfly as deployment container has been removed. Migrate your adnwildfly-based instances to a standalone container deployment.

Upgraded Nevis components

• nevisAdmin4 4.10.1.2

Resolved issues

• FIXED: The bug that caused a ConcurrentModification exception in nevisAdmin 4.
• FIXED: Some issues with nevisAdmin 4 patterns.
• UPGRADED: The CentOS operating system, to the latest available version.

nevisAppliance 2.202102.901 - 17.02.2021

Highlights

We are pleased to present the Nevis Cluster 2.202102.901 Rolling Release.

• With this release, you get the latest component updates as well as a security fix for the sudo(https://nvd.nist.gov/vuln/detail/CVE-2021-3156) that recently has been identified. To improve security even more, the rolling release comes with the audit daemon activated and preconfigured with CIS Lvl2 recommended configuration.

  Deprecated

Support for adnwildfly as deployment container has been removed. Migrate your adnwildfly-based instances to a standalone container deployment.

Upgraded Nevis components

• nevisAdapt 1.0.6.6
• nevisAdmin 3.8.6.9
• nevisAdmin4 4.10.0.8
• nevisAuth 4.30.0.2
• nevisDetect 1.0.6.6
• nevisFIDO 1.13.0.1
• nevisIDM 2.80.0.552486535
• nevisIDMDb 7.3.0.552486535
• nevisIDMCl 2.80.0.552486535
• nevisLogrend 1.12.0.1
• nevisMeta 1.10.0.0
• nevisProxy 4.4.0.0

Resolved issues

• NEW: The audit daemon of CentOS is installed and activated.
• FIXED: sudo vulnerability CVE-2021-3156.
• FIXED: on the nevisAppliance DB image (only), /proc/sys/vm/swappiness has been lowered to 10 to reduce swappiness, which is important while running MariaDB.
• UPGRADED: The CentOS operating system has been upgraded to the latest available version.

nevisAppliance 2.202011.788 - 16.12.2020

Highlights

We are pleased to present the Nevis November 2.202011.788 hotfix Rolling**Release**.

• This release contains a security fix for nevisProxy. For more, see the component-specific upgrade and release notes: nevisProxy 4.3.1 - 16.12.2020.

  Deprecated

Support of adnwildfly as deployment container has been removed. Migrate your adnwildfly-based instances to a standalone container deployment.

Upgraded Nevis components

• nevisProxy 4.3.1.0

Resolved issues

• UPGRADED: CLAM-AV, to version 0.103. This version supports the configuration of proxy certificates for updates.
• UPGRADED: The CentOS operating system, to the latest available versions.

nevisAppliance 2.202011.785 - 24.11.2020

Highlights

We are pleased to present the Nevis November 2.202011.785 hotfix Rolling**Release**.

• This release aligns the nevisIDM version with the RPM software delivery for the Nevis November 2020 official Cluster release. Do not install release version 2.202011.784 but use this one instead.

  Deprecated

Support of adnwildfly as deployment container has been removed. Migrate your adnwildfly-based instances to a standalone container deployment.

Upgraded Nevis components

• nevisIDM 2.79.0.347578032
• nevisIDMDb 6.0.0.347578032
• nevisIDMCl 2.79.0.347578032

Resolved issues

• FIXED: The issue with the old version of nevisIDM that was delivered with release version 2.202011.784
• UPGRADED: The CentOS operating system, to the latest available versions.

nevisAppliance 2.202011.784 - 18.11.2020

Highlights

We are pleased to present the Nevis Cluster 2.202011.784 Rolling**Release**.

• With this release, we had to remove Oracle products (SQLplus, jdbc driver) from the nevisAppliance due to Oracle's license restrictions. If you need these products back, you will find instructions in the new section in the nevisAppliance reference guide. In this new FAQ section, we provide answers to often asked questions and How-to's regarding the handling of the nevisAppliance.

• To support nevisReports, we added the latest *beats-collection (Filebeat, Heartbeat, Journalbeat) to this release on all image types.

  Deprecated

Support of adnwildfly as deployment container has been removed. Migrate your adnwildfly-based instances to a standalone container deployment.

Upgraded Nevis components

• nevisAdapt 1.0.5.5
• nevisAdmin 3.8.5.222
• nevisAdmin 4 4.9.0.7
• nevisAuth 4.29.0.249
• nevisDetect 1.0.5.5
• nevisFIDO 1.12.0.1272
• nevisIDM 2.79.0.347578032
• nevisIDMDb 5.4.0.207381899
• nevisIDMCl 2.79.0.347578032
• nevisLogrend 1.11.0.120
• nevisMeta 1.9.0.110
• nevisProxy 4.3.0.0

Resolved issues

• FIXED: The issue with the removed JDK support tools (jstack, jstat and jmap). They are now available again.
• FIXED: The bug where the sssd.service was not automatically started on reboot although it was activated in systemd.
• FIXED: The bug regarding the duplicate entries in the /etc/passwd and /etc/group files.
• UPGRADED: The CentOS operating system, to the latest available versions.

nevisAppliance 2.202008.740 - 15.10.2020

Issue with automatic start of Nevis components

Who is affected?

• Customers that used nevisAdmin 3 (or inst createcommands) to set up instances.
• NOT affected: nevisAdmin 4 customers.

What is the problem?

• Since the last nevisAppliance 2.202008.729 RR release (August 2020), some Nevis components were not automatically started after the nevisAppliance reboot.
• Older RR releases are not affected.

Installation steps

1. Make sure that all your Nevis standalone instances are enabled at systemd-level.

• If this is not the case, enable them using the command systemctl enable.

2. Install the hot fix release 2.202008.740.
3. After reboot, check that all instances are running.

Background

The August 2020 RR release provided an improved nevisAppliance startup process, including a better systemdintegration. From this release on, dependencies in systemd files are configured such that custom scripts are completed before Nevis components are started. In the release notes of the August release, this change was marked as "FIXED: The issue regarding the boot order and the configuration of custom init.d scripts.".

This change accidentally removed the automatic startup of container-based setups, such as instances that are started as part of adnglassfish, adnwildfly or adnjboss. Also, standalone instances disabled in systemd were not started anymore after reboot.

With this hotfix release, the startup of container-based instances has been re-introduced to keep backward compatibility. To start standalone instances (such as nevisProxy, nevisAgent, nevisAuth, nevisLogrend), enable them in systemd first as per the above installation steps.

Deprecated

Support of adnwildfly as deployment container is deprecated and will be removed in the November 2020 release. Plan the migration of your adnwildfly based instances to a standalone container deployment until this date.

Upgraded Nevis components

• nevisCred 2.0.20.0
• nevisKeybox 2.2.2.17

Resolved issues

• FIXED: The issue where Nevis component instances were not automatically started after reboot.
• FIXED: This issue with the missing hpssacli package (HP Smart Storage Administrator). The package is now available. ****HP renamed the "hpssacli" tool. It is now called "ssacli".
• FIXED: The issue with the missing neviswf command on PATH. The command is now available.
• UPGRADED: The CentOS operating system has been upgraded to the latest available versions.

nevisAppliance 2.202008.729 - 19.08.2020

Highlights

We are pleased to present the Nevis Cluster 2.202008.729 Rolling Release.

Deprecated

Support of adnwildfly as deployment container is deprecated and will be removed in the November 2020 release. Plan the migration of your adnwildfly based instances to a standalone container deployment accordingly until this date.

Upgraded Nevis components

• nevisAdapt 1.0.4.3
• nevisAdmin 3 3.8.3.198
• nevisAdmin 4 4.8.0.12
• nevisAuth 4.28.0.230
• nevisDetect 1.0.4.3
• nevisFIDO 1.11.0.1267
• nevisIDM 2.78.0.207381899
• nevisIDMDb 5.4.0.207381899
• nevisLogrend 1.10.0.101
• nevisMeta 1.8.0.98
• nevisProxy 4.2.0.0

Resolved issues

• CHANGED: The nevisIDM EELS version is no longer available.
• CHANGED: Applied additional hardening to the group nobody and the user nvbuser.
• FIXED: The issue regarding the boot order and the configuration of custom init.d scripts has been fixed.
• FIXED: The issue regarding the unique IDs of users (/etc/passwd) and groups (/etc/group) has been fixed. It is now ensured that users and groups have unique IDs.
• FIXED: The bug where an error message was sent about a missing sssd-shadowutils file when running the nevis-update.sh script.

nevisAppliance 2.202005.622 - 15.06.2020

Highlights

We are pleased to present the Nevis Cluster 2.202005.622 Rolling Release.

This release is a hot fix release for nevisProxy.

Read the nevisProxy release notes for additional information.

Upgraded Nevis components

• nevisProxy 4.1.1.0

Resolved issues

• FIXED: A bug that caused a memory leak in openssl is now fixed.
• FIXED: A bug in the HttpConnectorServlet is now fixed.
• UPGRADED: UnbluFilter has been upgraded to the newest Unblu version 1.7.5.
• UPGRADED: The CentOS operating system and the OpenJDK have both been upgraded to the latest available versions.

nevisAppliance 2.202005.608 - 20.05.2020

Highlights

We are pleased to present the Nevis Cluster 2.202005.608 Rolling Release. With this release, we had to remove Oracle products (SQLPlus, JDBC drivers) from the NevisAppliance due to oracle's license restrictions. In case you need these back on the NevisAppliance you will find an answer in the new FAQ section in the nevisAppliance reference guide where we pick up often asked questions and answer them here and also provide helpful "How to's".

Deprecated

Support of adnwildfly as deployment container is deprecated and will be removed in the November 2020 release. Plan the migration of your adnwildfly based instances to a standalone container deployment accordingly to this date.

Upgraded Nevis components

• nevisAdapt 1.0.3.8
• nevisAdmin 3 3.8.2.6
• nevisAdmin 4 4.7.0.166
• nevisAuth 4.27.0.210
• nevisDetect 1.0.3.8
• nevisFIDO 1.10.0.1253
• nevisIDM 2.77.0.75
• nevisIDMDb 4.4.0.75
• nevisIDMCl 2.77.0.75
• nevisLogrend 1.9.0.93
• nevisMeta 1.7.0.68
• nevisProxy 4.1.0.0

Resolved issues

• CHANGED: The sshd configuration and the pam authentication have been hardened. (NEVISAPPLIANCE-449)
• FIXED: The problem that the sssd-shadowutils was not persisted during reboots. (NEVISAPPLIANCE-449)
• FIXED: The issue with the broken couchbase template config.dat in the February 2020 release. (NEVISAPPLIANCE-450)
• UPDATED: The MariaDB sample configuration, to match the latest nevisIDM changes. (NEVISAPPLIANCE-446)
• UPGRADED: The CentOS system and OpenJDK (to the latest available versions).

nevisAppliance 2.202002.576 - 30.04.2020

Changes

We are pleased to present the Nevis Cluster 2.202002.576 Rolling Release.

This release is a hot fix release for nevisAdmin 3. Only the images file for the admin appliance are provided.

Read the nevisAdmin 3 release notes for additional information.

Upgraded Nevis components

• nevisAdmin 3.8.1.2

nevisAppliance 2.202002.566 - 17.04.2020

Changes

We are pleased to present the Nevis Cluster 2.202002.566 Rolling Release.

This release is merely a security fix release for nevisProxy.

Read the nevisProxy release notes for additional backward incompatibilities and changes.

Upgraded Nevis components

• nevisProxy 4.0.1

Resolved issues

• UPGRADED: The Linux kernel and system libraries, to the latest available versions.

nevisAppliance 2.202002.522 - 20.02.2020

Highlights

We are pleased to present the Nevis Cluster 2.202002.522 Rolling Release.

This release ships, among many bug fixes and product improvements, with the following highlights:

• Major release of nevisProxy (4.0.0) featuring many security and other improvements.
• nevisAdmin 4 with performance-related improvements and support for Azure Database for MariaDB (requires Kubernetes deployment).
• Nevis Mobile Authentication with a new dispatcher that generates QR codes to be consumed by the Nevis Authentication Mobile SDK. You can use the QR code to transfer authentication information to the mobile device, as an alternative to the Firebase Cloud Messaging push messages.

Read the nevisProxy and nevisIDM release notes for additional backward incompatibilities and changes.

Upgraded Nevis components

• nevisAdmin 3.8.0.0
• nevisAdmin 4.6.0.63
• nevisAuth 4.26.0.192
• nevisDataPorter 2.16.0.39
• nevisFIDO 1.9.0.1227
• nevisIDM 2.76.2.63
• nevisLogRend 1.8.0.88
• nevisMeta 1.6.0.45
• nevisProxy 4.0.0
• nevisDetect 1.0.2.266

Removed Nevis components

The following components are not available anymore in rolling releases:

• nevisReports
• nevisWorkflow
• nevisGate Tunnel Worker

If you still need these components, use the LTS release.

Resolved issues

• NEW: nevisDetect and nevisAdapt are now available on the extended Nevis appliance.
• FIXED: The login for user nvauser has been fixed to /sbin/nologin.
• UPGRADED: The Linux kernel and system libraries, to the latest available versions.
• UPGRADED: The Splunk Forwarder, to version 8.0.2.
• REMOVED: There is no support anymore for the nevisReports appliance.

nevisAppliance 2.201911.427 - 26.11.2019

Highlights

We are pleased to present the Nevis Cluster 2.201911.427 LTS release. This is the first Nevis release covered by an extensive long-term-support plan, as detailed in the Nevis Product Lifetime and Platform Support Matrix. The LTS (long-term-support) releases focus on stability and will fix defects and security issues while avoiding major, potentially breaking changes.

This release ships, among many bug fixes and product improvements, with the following highlights:

• Performance improvements and faster recovery in the nevisProxy MariaDB session store, leading to a better user experience during infrastructure failovers.
• Support of TLS 1.3, the new and most secure version of the TLS protocol in nevisProxy (requires at least nevisAppliance, RHEL 7 and SLES12 only).
• Full support for OAuth 2.0 token introspection endpoints (RFC 7662).
• Protect your services with terms and conditions, using the new feature available in nevisIDM.
• Starting with this release, nevisIDM fully supports the latest long-term release of Oracle: Oracle 19c.
• Performance and stability improvements in nevisAdmin 4 when working with large deployments.
• PREVIEW Experimental support of highly automated Kubernetes deployments in nevisAdmin 4.
• … and much much more.

Upgraded Nevis components

• nevisAdmin 3.7.0.0
• nevisAdmin 4.5.0.89
• nevisAuth 4.25.0.2
• nevisDataPorter 2.16.0.39
• nevisFIDO 1.8.0.7
• nevisIDM 2.75.1.34
• nevisIDM 2.68.9.0 (EELS, fade-out support until 20 May 2020)
• nevisLogrend 1.7.11.1
• nevisMeta 1.5.3.71
• nevisProxy 3.14.3.2
• nevisReports 4.3.0
• nevisWorkflow 1.13.0.2

Upgrade notes

• This version of the nevisAppliance ships with the nevisProxy version for RHEL7, with the latest Mod Security and OpenSSL 1.1. Carefully read the nevisProxy release notes for details and backwards compatibility. There are known incompatibilities with old Mod Security rules and CA trust chains which are not created with the proper CA:TRUE flag. You can check old versions of nevisAdmin 3 used to create CA certificates without that flag on the nevisAdmin 3 host if you are affected and need to rotate all certificates signed by this CA:

openssl x509 -text -in /var/opt/nevisadmin/default/nevisadmin/repository/cert/ca_certificate.pem \
 | grep "CA:TRUE"
# OK: CA:TRUE
# NOK: (no output)

If there is no output, this CA is no longer readable by nevisProxy and all certificates must be rotated. See the nevisAdmin 3 release notes and reference guide for detailed instructions.

• Carefully read the nevisIDM, nevisAuth and nevisAdmin 4 release notes for additional backward incompatibilities.

Resolved issues

• UPGRADED: The Linux kernel and system libraries to the latest available versions.
• CHANGED: The value for kernel.pid_max parameter in /etc/sysctl.conf was increased to 65534. This increases the ability to work on systems with lots of resources and to perform under heavy load. Otherwise, errors like -bash: fork: Cannot allocate memory were displayed. It addresses an issue known to RedHat and described at `http://access.redhat.com/solutions/1434943. (NEVIS-5791, NEVISAPPLIANCE-430)
• FIXED: OpenJDK support for nevisAuth and nevisIDM when rendering images or documents, like captchas. Previously, errors like "libfreetype.so.6: cannot open shared object file: No such file or directory" occurred on the Base and DMZ nevisAppliance when using OpenJDK. This was fixed by ensuring the fontconfig packages are always installed. (NEVISAPPLIANCE-425)