January 2022 Releases – Horizon 29.0.5, Meridians 2021.1.10, 2020.1.18, 2019.1.29
In January, we released updates to all OpenNMS Meridian versions under active support, as well as Horizon 29.
OpenNMS On the Horizon – Config Manager, Log4j, TimescaleDB, Twin API, Karaf, Router Configs, CI, Docs, Helm, Sentinel, FeatherDS, Graphs
Since last time, we worked on the config manager, Log4j, TimescaleDB, the Twin API, Karaf updates, router config handling, CI improvements, flow/Minion/Sentinel doc improvements, interface and node caching, Helm, Sentinel health-check, resource graphs in the featherds UI, and jQuery.
OpenNMS On the Horizon – Config API, OIA, Detectors, Log4j2, TFTP, Nephron, Events, Caching, ReST, OpenAPI, Vue, Helm, Geomap
Since last time, we did more work on config manager migrations, OIA, asynchronous detectors, log4j2, TFTP, Nephron docs, events, caching, resource ReST API, OpenAPI, the Vue UI, Helm tests, and the geomap.
OpenNMS On the Horizon – Log4j, Prometheus, Grafana, Enlinkd, IPC, Docs, Config API, Non-Root, Sentinel, Minion, Flows, Thresholding, Discovery, OIA, TimescaleDB, Karaf, Twin API, Provisioning, Vue, Geomap, Helm
Since last time, we released Horizon and Meridian 73 times, and worked on Prometheus collections, Grafana package signatures, Enlinkd performance, IPC config, reports, docs for daemons, VMware, flows, and topology, config API support, running as non-root, Sentinel, Maven, Minion, flow thresholding, discovery config, OIA, TimescaleDB, Log4j2, Karaf, the Twin API, provisioning, the vue geomap, the new UI, and Helm.
Security Releases – Horizon 29.0.4, Meridian 2021.1.9, 2020.1.17, 2019.1.28
(deep breath) Today we released off-cycle updates to all OpenNMS Meridian versions under active support, as well as Horizon 29, to address additional Log4j2 "Log4Shell" vulnerabilities.
Security Releases – Horizon 29.0.3, Meridians 2021.1.8, 2020.1.16, 2019.1.27
Today we released updates to all OpenNMS Meridian versions under active support, as well as Horizon 29, to address the Log4j2 "Log4Shell" vulnerability.
OpenNMS Products Affected by Apache Log4j Vulnerability CVE-2021-44228, CVE-2021-45046, and CVE-2021-45105 (updated Dec. 20, 2021)
Updates The log4j.formatMsgNoLookups work-around is no longer recommended. We are evaluating CVE-2021-45105 and at this time do not believe our products are affected. December 14, 2021: Horizon 26.1.2 and earlier versions. December 16, 2021: CVE-2021-45046. December 20, 2021: CVE-2021-45105. Note: Major text changes appear in red Background Serious remote code [...]
December 2021 Releases – Horizon 29.0.2, Meridians 2021.1.7, 2020.1.15, 2019.1.26
In December, we released updates to all OpenNMS Meridian versions under active support, as well as Horizon 29.
OpenNMS On the Horizon – Config API, OIA, VMware, Twin API, Collectd, Enlinkd, Karaf, Flows, BMP, JAAS, Sentinel, FeatherDS, Vue, Geomaps, Helm
Since last time, we worked on config management and validation, OIA, VMware collection, Twin API tracing, documentation, Collectd, IPC, Enlinkd, Karaf, flow thresholding, Pollerd, router config backup, discovery `exclude-url`, BMP telemetry RRDs, JAAS and Setinel, FeatherDS UI updates, Vue geomaps, smoke tests, and Helm.
OpenNMS On the Horizon – Docs, Karaf, Config Management, Twin API, Maven, VMware, Flows, Thresholding, Collectd, Enlinkd, OIA, Minion, FeatherDS UI, Geomap, REST
Since last time, we worked on docs, Karaf support and config migration in the config management API, the Twin API, Maven component mapping, integration test fixes, VMware support, flow thresholding, collector and Enlinkd improvements, OIA on the Minion, file editing in the new UI, the Vue geomap, requisition editing, and REST APIs.
