Category:
release
Meet the Chef Analytics Platform
By James Casey
Update: Learn more about Chef Analytics in our upcoming webinar on September 17, 2014 at 10am Pacific. The Chef analytics platform is a premium feature of Chef.
Read moreRelease: Chef Container 0.2.0 (beta)
By Tom Duffield
This week, Chef released a version of the Chef client that can run inside a Linux container. This container-friendly client is called chef-container. In this post we’ll give you an introduction to chef-container, its purpose and its components. We’ll also tell you about a new knife plugin for managing container images.
Read moreSupermarket Grand Opening
We are excited to announce the Grand Opening of Supermarket – the new Chef community site! On July 7th, 2014 at 12:00 PM PDT (2014–07–07 19:00 UTC) we will close the old community site and redirect all traffic to https://supermarket.getchef.com. At that time, Supermarket will be the official community site.
Read moreSecurity Vulnerability Releases of Chef Server
By Joseph Smith
Hello, Today we are releasing new versions of Enterprise Chef Server and Open Source Chef Server to address a PostgreSQL configuration vulnerability error. The defect allows any local user on the system hosting the Chef Server’s PostgreSQL components full access to databases.
Read moreChef Server 11.1.3 Security Release
By Adam Edwards
Enterprise Chef Server 11.1.3 is a security release to address a PostgreSQL configuration error. The defect allows any local user on the system hosting the Chef Server’s PostgreSQL components full access to databases. We advise all Chef Server users to update to this latest release which corrects the error.
Read moreEnterprise Chef Server 1.4.13 Release
By Adam Edwards
Enterprise Chef Server 1.4.3 is a security release to address a PostgreSQL configuration error. The defect allows any local user on the system hosting the Chef Server’s PostgreSQL components full access to databases. We advise all Chef Server users to update to this latest release which corrects the error.
Read moreEnterprise Chef Server 11.1.8 Release
By Adam Edwards
Enterprise Chef Server 11.1.8 is a security release to address a PostgreSQL configuration error. The defect allows any local user on the system hosting the Chef Server’s PostgreSQL components full access to databases. We advise all Chef Server users to update to this latest release which corrects the error.
Read moreChef Client Windows Patches for OpenSSL CVE-2014-0224 Vulnerability
By Serdar Sutay
Ohai Chefs, We have just released Chef Client versions 11.12.8-2 and 10.32.2-3 which includes the mitigation for the recently reported OpenSSL vulnerability CVE-2014-0224. Note that after installing these builds, if you check the OpenSSL version using `OpenSSL::OPENSSL_VERSION` you will see `OpenSSL 1.0.0k 5 Feb 2013`.
Read moreChef Security Releases: 11.12.8 & 10.32.2-2
By Serdar Sutay
Ohai Chefs, Today we are releasing Chef Client 11.12.8 & 10.32.2-2 which include an updated version of OpenSSL that patches CVE-2014-0224. All installs of Chef Client should be upgraded immediately. This bug permits an attacker to execute an undetectable MITM attack on an otherwise secure connection.
Read moreChef Releases for OpenSSL (CVE-2014-0224) Vulnerability
By Ian Garrison
On Thursday June 5th at approximately 14:00 UTC, the CHEF engineering team was made aware of OpenSSL CVE-2014-0224. A bug in the OpenSSL framework could permit a MITM attack under certain circumstances using a carefully constructed request. Due to the nature of this vulnerabilty, we recommend that you upgrade your installations immediately.
Read more