2.12.12

Fixed

• Completion scripts corruption during package release.

2.12.11

Overview

Updated the go and docker package versions to address known security issues.

2.12.10

Overview

This release updates the cartridge version in use.

Changed

• Update cartridge to 2.8.4 in application template.

2.12.9

Overview

This release updates the version of go used for builds to fix several vulnerabilities.

2.12.8

Overview

This release updates the cartridge version in use.

Changed

• Update checks to 3.3.0, cartridge to 2.8.1, metrics to 1.0.0 and cartridge-metrics-role to 0.1.1 in application template.

2.12.7

Overview

The release doesn't add any new functionality, only fixes a few known issues.

Changed

• Remove decorations (dots at the beginning of each line) from output to stdout in admin commands.

• Updated the go version used to build the binary, that fixes known security issues.

2.12.6

Overview

The release doesn't add any new functionality, only fixes a few known issues.

Fixed

• cartridge enter now does not crash on \q input.

Changed

• Updated the go version used to build the binary, that fixes known security issues.
  List of List of known issues:

  +-------------------+---------------------------------------+----------------+
  |        CVE        |         Infected Version              |  Fix Version   |
  +-------------------+---------------------------------------+----------------+
  | CVE-2023-24538    | < 1.19.8,1.20.0-0 ≤ Ver < 1.20.3      | 1.19.8,1.20.3  |
  | CVE-2023-24540    | < 1.19.9,1.20.0-0 ≤ Ver < 1.20.4      | 1.19.9,1.20.4  |
  | CVE-2022-30635    | < 1.17.12,1.18.0-0 ≤ Ver < 1.18.4     | 1.17.12,1.18.4 |
  | CVE-2022-28131    | < 1.17.12,1.18.0 ≤ Ver < 1.18.4       | 1.17.12,1.18.4 |
  | CVE-2022-30580    | < 1.17.11,1.18.0-0 ≤ Ver < 1.18.3     | 1.17.11,1.18.3 |
  | CVE-2023-24534    | < 1.19.8,1.20.0-0 ≤ Ver < 1.20.3      | 1.19.8,1.20.3  |
  | CVE-2022-41724    | < 1.19.6,1.20.0-0 ≤ Ver < 1.20.1      | 1.19.6,1.20.1  |
  | CVE-2022-30633    | < 1.17.12,1.18.0-0 ≤ Ver < 1.18.4     | 1.17.12,1.18.4 |
  | CVE-2022-30630    | < 1.17.12,1.18.0-0 ≤ Ver < 1.18.4     | 1.17.12,1.18.4 |
  | CVE-2022-29804    | < 1.17.11,1.18.0 ≤ Ver < 1.18.3       | 1.17.11,1.18.3 |
  | CVE-2023-24539    | < 1.19.9,1.20.0-0 ≤ Ver < 1.20.4      | 1.19.9,1.20.4  |
  | CVE-2022-41725    | < 1.19.6,1.20.0-0 ≤ Ver < 1.20.1      | 1.19.6,1.20.1  |
  | CVE-2023-29400    | < 1.19.9,1.20.0-0 ≤ Ver < 1.20.4      | 1.19.9,1.20.4  |
  | CVE-2022-41722    | < 1.19.6,1.20.0-0 ≤ Ver < 1.20.1      | 1.19.6,1.20.1  |
  | CVE-2022-32189    | < 1.17.13,1.18.0-0 ≤ Ver < 1.18.5     | 1.17.13,1.18.5 |
  | CVE-2022-2880     | < 1.18.7,1.19.0-0 ≤ Ver < 1.19.2      | 1.18.7,1.19.2  |
  | CVE-2022-30631    | < 1.17.12,1.18.0 ≤ Ver < 1.18.4       | 1.17.12,1.18.4 |
  | CVE-2022-41716    | < 1.18.8,1.19.0-0 ≤ Ver < 1.19.3      | 1.18.8,1.19.3  |
  | CVE-2022-2879     | < 1.18.7,1.19.0-0 ≤ Ver < 1.19.2      | 1.18.7,1.19.2  |
  | CVE-2022-41715    | < 1.18.7,1.19.0-0 ≤ Ver < 1.19.2      | 1.18.7,1.19.2  |
  | CVE-2023-24536    | < 1.19.8,1.20.0-0 ≤ Ver < 1.20.3      | 1.19.8,1.20.3  |
  | CVE-2022-30634    | < 1.17.11,1.18.0-0 ≤ Ver < 1.18.3     | 1.17.11,1.18.3 |
  | CVE-2022-30632    | < 1.17.12,1.18.0 ≤ Ver < 1.18.4       | 1.17.12,1.18.4 |
  | CVE-2022-41720    | < 1.18.9,1.19.0-0 ≤ Ver < 1.19.4      | 1.18.9,1.19.4  |
  | CVE-2023-24537    | < 1.19.8,1.20.0-0 ≤ Ver < 1.20.3      | 1.19.8,1.20.3  |
  | CVE-2022-32148    | < 1.17.12,1.18.0-0 ≤ Ver < 1.18.4     | 1.17.12,1.18.4 |
  | CVE-2023-24532    | < 1.19.7,1.20.0-0 ≤ Ver < 1.20.2      | 1.19.7,1.20.2  |
  | CVE-2022-1705     | < 1.17.12,1.18.0-0 ≤ Ver < 1.18.4     | 1.17.12,1.18.4 |
  | CVE-2022-1962     | < 1.17.12,1.18.0 ≤ Ver < 1.18.4       | 1.17.12,1.18.4 |
  | CVE-2022-30636    | ≤ 1.18.3                              | 1.18.4         |
  | CVE-2022-30629    | < 1.17.11,1.18.0-0 ≤ Ver < 1.18.3     | 1.17.11,1.18.3 |
  +-------------------+---------------------------------------+----------------+

2.12.5

Overview

This release updates the cartridge version in use, fixes application name handling and sets compat.fiber_slice_default to new for tarantool >= 2.11.0.

Changed

• Updated checks to 3.2.0, cartridge to 2.7.9 and metrics to 0.16.0 in application template.
• Set compat.fiber_slice_default to new by default in application template.

Fixed

• Fixed support for instance names as application name and names with dots.

2.12.4

Overview

This release fixes several problems and improves the pack command.

Changed

• Updated cartridge to 2.7.7 and metrics to 0.15.1 in application template.
• Now file times are preserved when copying.
• Now packing cache saves before post-build stage.

2.12.3

Overview

This release fixes several problems and adds functionality to the `cartridge benchmark' command.

Changed

• A unix domain socket pathname (used in cartridge-cli to connect to instances) longer
  than the value defined by the system resulted in a connection error.
  It now works fine or throws a human readable error if we can't work around this
  limitation by connecting to an instance with a relative socket path.

Added

• Tarantool benchmark tool update (select and update operations):
  • option --insert has been added - sets percentage of insert operations to bench space.
  • option --select has been added - sets percentage of select operations from bench space.
  • option --update has been added - sets percentage of update operations in bench space.
  • option --fill" has been added - sets number of records to pre-fill the space.
• An ability to choose Tarantool version to install in the result docker image:
  • command line option --tarantool-version
  • tarantool.txt config file with TARANTOOL option

Fixed

• Fixed sporadic "Failed to dial" errors on cartridge cli different commands. Only
  local instances will be used for commands execution.