Releases: OpenVoxProject/openvox
Release list
9.0.0-alpha2
What's Changed
Security Issues Resolved
| Identifier | CVSS 3.1 Score | Resolved By |
|---|---|---|
| CVE-2026-34182 | 9.1 | pkg:github/openssl/openssl@3.5.7 |
| CVE-2026-45447 | 8.8 | pkg:github/openssl/openssl@3.5.7 |
| CVE-2026-7383 | 8.1 | pkg:github/openssl/openssl@3.5.7 |
| CVE-2026-45445 | 7.5 | pkg:github/openssl/openssl@3.5.7 |
| CVE-2026-42764 | 7.5 | pkg:github/openssl/openssl@3.5.7 |
| CVE-2026-34183 | 7.5 | pkg:github/openssl/openssl@3.5.7 |
| CVE-2026-34180 | 7.5 | pkg:github/openssl/openssl@3.5.7 |
| CVE-2026-9076 | 7.5 | pkg:github/openssl/openssl@3.5.7 |
| CVE-2026-34181 | 7.4 | pkg:github/openssl/openssl@3.5.7 |
| CVE-2026-42767 | 5.9 | pkg:github/openssl/openssl@3.5.7 |
| CVE-2026-42766 | 5.9 | pkg:github/openssl/openssl@3.5.7 |
| CVE-2026-42769 | 5.3 | pkg:github/openssl/openssl@3.5.7 |
| CVE-2026-45446 | 4.8 | pkg:github/openssl/openssl@3.5.7 |
| CVE-2026-42770 | 3.7 | pkg:github/openssl/openssl@3.5.7 |
| CVE-2026-42768 | 3.7 | pkg:github/openssl/openssl@3.5.7 |
Breaking Changes 🛠
- Decouple :posix feature from :syslog library check by @silug in #458
- remove pe_serverversion fact by @corporate-gadfly in #397
- return to preprocessing deferred functions by default by @binford2k in #462
New Features 🎉
Bug Fixes 🐛
- Manage group members on EL 10 without libuser by @Sharpie in #476
- Fix File.open Ruby 3.2 regression in FileSystem::Uniquefile by @JonasVerhofste in #450
Dependency Updates ⬆️
- Update rubocop requirement from ~> 1.86.1 to ~> 1.87.0 by @dependabot[bot] in #465
Other Changes
- Add JRuby 10.0.5.0 and 10.1.0.0 to test matrix by @silug in #463
- CI: Use bot account for backports by @bastelfreak in #472
- Promote puppet-runtime 2026.06.09.1 into main by @OpenVoxProjectBot in #479
New Contributors
- @JonasVerhofste made their first contribution in #450
Full Changelog: 9.0.0-alpha1...9.0.0-alpha2
8.28.0
What's Changed
Security Issues Resolved
| Identifier | CVSS 3.1 Score | Resolved By |
|---|---|---|
| CVE-2026-34182 | 9.1 | pkg:github/openssl/openssl@3.0.21 |
| CVE-2026-45447 | 8.8 | pkg:github/openssl/openssl@3.0.21 |
| CVE-2026-7383 | 8.1 | pkg:github/openssl/openssl@3.0.21 |
| CVE-2026-34180 | 7.5 | pkg:github/openssl/openssl@3.0.21 |
| CVE-2026-45445 | 7.5 | pkg:github/openssl/openssl@3.0.21 |
| CVE-2026-9076 | 7.5 | pkg:github/openssl/openssl@3.0.21 |
| CVE-2026-42766 | 5.9 | pkg:github/openssl/openssl@3.0.21 |
| CVE-2026-42767 | 5.9 | pkg:github/openssl/openssl@3.0.21 |
| CVE-2026-45446 | 4.8 | pkg:github/openssl/openssl@3.0.21 |
| CVE-2026-42770 | 3.7 | pkg:github/openssl/openssl@3.0.21 |
New Features 🎉
Bug Fixes 🐛
- [Backport 8.x] Manage group members on EL 10 without libuser by @OpenVoxProjectBot in #477
- [Backport 8.x] Fix File.open Ruby 3.2 regression in FileSystem::Uniquefile by @OpenVoxProjectBot in #478
Other Changes
- Promote puppet-runtime 2026.06.09.1 into 8.x by @OpenVoxProjectBot in #480
Full Changelog: 8.27.0...8.28.0
9.0.0-alpha1
What's Changed
New Features 🎉
- Promote openfact 5.6.1 into main by @OpenVoxProjectBot in #436
- Add platform definitions for Fedora 44 by @Sharpie in #455
Bug Fixes 🐛
- avoid badly anchored regular expression by @corporate-gadfly in #414
Other Changes
- Add release version check and stop trying to bump to an RC version by @nmburgan in #413
- Modify S3 copy command to suppress progress output by @corporate-gadfly in #423
- Update github_changelog_generator by @nmburgan in #424
- Changes to prepare for 8.x branching by @nmburgan in #425
- Change branch name in promote workflow by @nmburgan in #428
- Promote puppet-runtime 2026.05.07.1 into main by @OpenVoxProjectBot in #429
- Update acceptance defaults and descriptions for OpenVox 9 by @nmburgan in #431
- Switch from puppet-strings to openvox-strings by @tuxmea in #434
- Promote puppet-runtime 2026.05.11.1 into main by @OpenVoxProjectBot in #437
- Clarify "ref" description in GitHub build workflow by @Sharpie in #445
- Fix rubocop 1.86.2 lint by @Sharpie in #447
- Promote puppet-runtime 2026.05.20.1 into main by @OpenVoxProjectBot in #453
New Contributors
Full Changelog: 8.26.2...9.0.0-alpha1
8.27.0
What's Changed
Security Issues Resolved
| Identifier | CVSS 3.1 Score | Resolved By |
|---|---|---|
| CVE-2026-41316 | 8.1 | pkg:gem/erb@4.0.3.1 |
| CVE-2026-42258 | 9.8 | pkg:gem/net-imap@0.4.24 |
| CVE-2026-42257 | 9.8 | pkg:gem/net-imap@0.4.24 |
| CVE-2026-42245 | 7.5 | pkg:gem/net-imap@0.4.24 |
| CVE-2026-42246 | 7.4 | pkg:gem/net-imap@0.4.24 |
| CVE-2026-5773 | 7.5 | pkg:github/curl/curl@8.20.0 |
| CVE-2026-6276 | 7.5 | pkg:github/curl/curl@8.20.0 |
| CVE-2026-5545 | 6.5 | pkg:github/curl/curl@8.20.0 |
| CVE-2026-6253 | 5.9 | pkg:github/curl/curl@8.20.0 |
| CVE-2026-4873 | 5.9 | pkg:github/curl/curl@8.20.0 |
| CVE-2026-7168 | 5.3 | pkg:github/curl/curl@8.20.0 |
| CVE-2026-6429 | 5.3 | pkg:github/curl/curl@8.20.0 |
| CVE-2026-7009 | 5.3 | pkg:github/curl/curl@8.20.0 |
| CVE-2026-6732 | 7.5 | pkg:github/gnome/libxml2@2.15.3 |
Bug Fixes 🐛
- avoid badly anchored regular expression by @corporate-gadfly in #414
Other Changes
- Add release version check and stop trying to bump to an RC version by @nmburgan in #413
- Modify S3 copy command to suppress progress output by @corporate-gadfly in #423
- Update github_changelog_generator by @nmburgan in #424
- Changes to prepare for 8.x branching by @nmburgan in #425
- Promote puppet-runtime 2026.05.07.1 into 8.x by @OpenVoxProjectBot in #430
- Promote openfact 5.6.1 into 8.x by @OpenVoxProjectBot in #438
- Promote puppet-runtime 2026.05.11.1 into 8.x by @OpenVoxProjectBot in #439
- 8.x Backport: Fix rubocop 1.86.2 lint by @Sharpie in #448
Full Changelog: 8.26.2...8.27.0
8.26.2
What's Changed
Bug Fixes 🐛
- (#406) packaging: Set Maj.Min.Patch version as
providesinstead of major one by @bastelfreak in #407 - Revert "Add syslog as a runtime dependency" by @nmburgan in #410
Other Changes
- .gitignore: Ignore /acceptance/.vendor by @bastelfreak in #408
- Promote puppet-runtime 2026.04.17.1 by @OpenVoxProjectBot in #411
Full Changelog: 8.26.1...8.26.2
8.26.1
What's Changed
Other Changes
- avoid command injection risk by @corporate-gadfly in #398
- Add syslog as a runtime dependency by @nmburgan in #400
- Add signoff to promote action by @nmburgan in #402
- Promote puppet-runtime 2026.04.15.1 by @OpenVoxProjectBot in #404
- acceptance: add hiera-eyaml v5 backend test by @nmburgan in #399
New Contributors
- @corporate-gadfly made their first contribution in #398
Full Changelog: 8.26.0...8.26.1
8.26.0
What's Changed
New Features 🎉
- Feature: file etag support by @C24-AK in #329
- Add a renew_cert subcommand to puppet ssl by @jay7x in #363
- Make regsubst() sensitive-aware by @cocker-cc in #354
- Add environment parameter to the package resource type by @C24-AK in #321
Bug Fixes 🐛
- unbreak OpenBSD package handling. by @buzzdeee in #316
- Use usermod(8) on OpenBSD to unbreak password management by @klemensn in #294
- fix: puppet module install should honor manage_file_permissions=false by @dotconfig404 in #362
Dependency Updates ⬆️
- Update rubocop requirement from ~> 1.81.6 to ~> 1.86.1 by @dependabot[bot] in #369
Other Changes
- Restore the legend of help help help help help by @nmburgan in #364
- Promote puppet-runtime 2026.04.05.1 by @OpenVoxProjectBot in #372
- Add libffi-devel to Windows setup script by @nmburgan in #373
- Fix acceptance tests for systemd PrivateTmp compatibility by @nmburgan in #375
- fix: skip SHA1 CSR signing test when OpenSSL doesn't support it by @silug in #378
- Fixes for Ruby 4.0 compatibility by @silug in #311
- Fix acceptance tests for systemd PrivateTmp compatibility by @nmburgan in #376
- fix: stub SRV DNS in ca_server session spec by @silug in #377
- Promote puppet-runtime 2026.04.09.1 by @OpenVoxProjectBot in #386
- Promote openfact 5.6.0 by @OpenVoxProjectBot in #387
New Contributors
- @buzzdeee made their first contribution in #316
- @C24-AK made their first contribution in #329
- @d1nuc0m made their first contribution in #300
- @jay7x made their first contribution in #363
- @klemensn made their first contribution in #294
- @cocker-cc made their first contribution in #354
- @dotconfig404 made their first contribution in #362
Full Changelog: 8.25.0...8.26.0
8.25.0
What's Changed
New Features 🎉
- Do not explicitly disable SSLv3 by @smortex in #287
- Drop multi_json support by @ekohl in #293
- Add SLES16 by @sbernhard in #302
- Add SLES 16 ARM64 support by @bastelfreak in #306
- feat: add
{debian13,ubuntu24.04,ubuntu25.04}-armhfplatform configs by @Gitii in #286 - Add Ubuntu 26.04 support by @bastelfreak in #315
- Remove monkey patch to remove daemonize by @ekohl in #307
- Reduce OpenSSL monkey patch to only calling set_params by @ekohl in #308
Bug Fixes 🐛
Other Changes
- Update promotion action by @nmburgan in #283
- Promote openssl-fips 2025.12.17.1 by @OpenVoxProjectBot in #284
- puppet-runtime: Update 2025.12.05.1->2026.01.30.1 by @bastelfreak in #305
- Promote puppet-runtime 2026.02.06.1 by @OpenVoxProjectBot in #313
- Promote openfact 5.4.0 by @OpenVoxProjectBot in #322
- Promote puppet-runtime 2026.02.16.1 by @OpenVoxProjectBot in #324
New Contributors
- @eciii made their first contribution in #272
- @sbernhard made their first contribution in #302
- @Gitii made their first contribution in #286
Full Changelog: 8.24.2...8.25.0
8.24.2
What's Changed
Other Changes
- Promote openfact 5.2.1 by @OpenVoxProjectBot in #277
- Relax version requirements for some default gems by @nmburgan in #275
Full Changelog: 8.24.1...8.24.2
8.24.1
Important
The 8.24.x releases will be the last release for EL 7 and Fedora 41 platforms. Amazon Linux 2 will remain until its EOL next year. Additionally, SLES 15 will be subject to availability of the free container. Typically, only the latest version of SLES is provided as a free container image without a subscription. When the current SLES 15 image is removed in favor of 16, we'll only have the option to build 16, unless sponsorship provides us the ability to obtain a subscription for the older images.
What's Changed
Other Changes
- Add dbus feature by @ananace in #261
- Promote puppet-runtime 2025.12.05.1 by @OpenVoxProjectBot in #266
- Update augeas test to detect provider failure by @nmburgan in #265
New Contributors
Full Changelog: 8.24.0...8.24.1