Werk 16116 was adapted. The following is the new Werk, a diff is shown at the end of the message.
[//]: # (werk v2)
# Fixed association of contacts with hosts/services/contactgroups
key | value
---------- | ---
date | 2024-04-05T13:48:37+00:00
version | 2.3.0b4
class | fix
edition | cre
component | livestatus
level | 3
compatible | yes
Checkmk 2.3 beta introduced a regression regarding contacts when
then Nagios core was used: The association of contacts with hosts,
services and contact groups was incorrect. A symptom of this bug
were e.g. missing hosts or services in the GUI.
------------------------------------<diff>-------------------------------------------
[//]: # (werk v2)
# Fixed association of contacts with hosts/services/contactgroups
key | value
---------- | ---
date | 2024-04-05T13:48:37+00:00
- version | 2.3.0b5
? ^
+ version | 2.3.0b4
? ^
class | fix
edition | cre
component | livestatus
level | 3
compatible | yes
Checkmk 2.3 beta introduced a regression regarding contacts when
then Nagios core was used: The association of contacts with hosts,
services and contact groups was incorrect. A symptom of this bug
were e.g. missing hosts or services in the GUI.
Werk 16628 was adapted. The following is the new Werk, a diff is shown at the end of the message.
[//]: # (werk v2)
# Enforcing password change redirect with 2FA enabled
key | value
---------- | ---
date | 2024-04-04T14:47:34+00:00
version | 2.3.0b4
class | fix
edition | cre
component | wato
level | 1
compatible | yes
Before this werk, the site failed to redirect users to the
"Change Password" page following a successful login when
two-factor authentication (2FA) was enabled. This werk resolves
the issue by ensuring that, after completing 2FA, users are now
redirected correctly.
------------------------------------<diff>-------------------------------------------
[//]: # (werk v2)
# Enforcing password change redirect with 2FA enabled
key | value
---------- | ---
date | 2024-04-04T14:47:34+00:00
- version | 2.3.0b5
? ^
+ version | 2.3.0b4
? ^
class | fix
edition | cre
component | wato
level | 1
compatible | yes
Before this werk, the site failed to redirect users to the
"Change Password" page following a successful login when
two-factor authentication (2FA) was enabled. This werk resolves
the issue by ensuring that, after completing 2FA, users are now
redirected correctly.
Werk 16180 was adapted. The following is the new Werk, a diff is shown at the end of the message.
[//]: # (werk v2)
# Ruleset API: Datamodel changes for Proxy FormSpec
key | value
---------- | ---
date | 2024-03-28T13:45:23+00:00
version | 2.3.0b4
class | feature
edition | cre
component | checks
level | 1
compatible | yes
This only affects plugin developers using the new API `cmk.rulesets.v1`.
The datamodel for the `Proxy`, `Levels`, `TimePeriod` and `Password` Formspecs is changed.
Use the `migrate_to_...` migration function to update your stored configurations to the newer datamodel.
------------------------------------<diff>-------------------------------------------
[//]: # (werk v2)
# Ruleset API: Datamodel changes for Proxy FormSpec
key | value
---------- | ---
date | 2024-03-28T13:45:23+00:00
- version | 2.3.0b5
? ^
+ version | 2.3.0b4
? ^
class | feature
edition | cre
component | checks
level | 1
compatible | yes
This only affects plugin developers using the new API `cmk.rulesets.v1`.
The datamodel for the `Proxy`, `Levels`, `TimePeriod` and `Password` Formspecs is changed.
Use the `migrate_to_...` migration function to update your stored configurations to the newer datamodel.
Werk 16650 was adapted. The following is the new Werk, a diff is shown at the end of the message.
[//]: # (werk v2)
# Extension manager crashes if local 'cmk_addon' folder is missing
key | value
---------- | ---
date | 2024-04-03T21:37:00+00:00
version | 2.3.0b4
class | fix
edition | cre
component | checks
level | 1
compatible | yes
This regression only affected the 2.3.0b\* versions.
------------------------------------<diff>-------------------------------------------
[//]: # (werk v2)
# Extension manager crashes if local 'cmk_addon' folder is missing
key | value
---------- | ---
date | 2024-04-03T21:37:00+00:00
- version | 2.3.0b5
? ^
+ version | 2.3.0b4
? ^
class | fix
edition | cre
component | checks
level | 1
compatible | yes
This regression only affected the 2.3.0b\* versions.
Werk 16612 was adapted. The following is the new Werk, a diff is shown at the end of the message.
[//]: # (werk v2)
# notifications: Fix plugin permissions not loaded automatically
key | value
---------- | ---
compatible | yes
version | 2.3.0b4
date | 2024-03-27T14:22:37+00:00
level | 1
class | fix
component | notifications
edition | cre
Previously, it was possible for users with the "Notification configuration"
permission to edit notification rules even if they did not have the permission
to the plugin that was being used in the rule. When such a user edited
such a rule, they were able to overwrite the notification plugin with
any plugin they were allowed to use.
This werk stops users from editing rules that use notification plugins
they don't have access to.
------------------------------------<diff>-------------------------------------------
[//]: # (werk v2)
# notifications: Fix plugin permissions not loaded automatically
key | value
---------- | ---
compatible | yes
- version | 2.3.0b5
? ^
+ version | 2.3.0b4
? ^
date | 2024-03-27T14:22:37+00:00
level | 1
class | fix
component | notifications
edition | cre
Previously, it was possible for users with the "Notification configuration"
permission to edit notification rules even if they did not have the permission
to the plugin that was being used in the rule. When such a user edited
such a rule, they were able to overwrite the notification plugin with
any plugin they were allowed to use.
This werk stops users from editing rules that use notification plugins
they don't have access to.
Werk 16618 was adapted. The following is the new Werk, a diff is shown at the end of the message.
[//]: # (werk v2)
# Fix XSS in graph rendering
key | value
---------- | ---
date | 2024-04-04T14:24:50+00:00
version | 2.3.0b4
class | security
edition | cre
component | wato
level | 1
compatible | yes
Prior to this Werk a service name with html tags lead to cross site scripting in the graph rendering.
We found this vulnerability internally.
**Affected Versions**:
Only 2.3.0 is affected, older versions are NOT affected.
**Vulnerability Management**:
We have rated the issue with a CVSS Score of 4.6 (Medium) with the following CVSS vector:
`CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N`.
We assigned CVE-2024-2380 to this vulnerability.
**Changes**:
This Werk changes the encoding engine to use our customized JSON encoder.
------------------------------------<diff>-------------------------------------------
[//]: # (werk v2)
# Fix XSS in graph rendering
key | value
---------- | ---
date | 2024-04-04T14:24:50+00:00
- version | 2.3.0b5
? ^
+ version | 2.3.0b4
? ^
class | security
edition | cre
component | wato
level | 1
compatible | yes
Prior to this Werk a service name with html tags lead to cross site scripting in the graph rendering.
We found this vulnerability internally.
**Affected Versions**:
Only 2.3.0 is affected, older versions are NOT affected.
**Vulnerability Management**:
We have rated the issue with a CVSS Score of 4.6 (Medium) with the following CVSS vector:
`CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N`.
We assigned CVE-2024-2380 to this vulnerability.
**Changes**:
This Werk changes the encoding engine to use our customized JSON encoder.
Werk 16653 was adapted. The following is the new Werk, a diff is shown at the end of the message.
[//]: # (werk v2)
# Windows DHCP: Fix rendering glitch in 2.3 beta
key | value
---------- | ---
date | 2024-04-05T11:14:49+00:00
version | 2.3.0b4
class | fix
edition | cre
component | checks
level | 1
compatible | yes
------------------------------------<diff>-------------------------------------------
[//]: # (werk v2)
# Windows DHCP: Fix rendering glitch in 2.3 beta
key | value
---------- | ---
date | 2024-04-05T11:14:49+00:00
- version | 2.3.0b5
? ^
+ version | 2.3.0b4
? ^
class | fix
edition | cre
component | checks
level | 1
compatible | yes
Werk 16674 was adapted. The following is the new Werk, a diff is shown at the end of the message.
[//]: # (werk v2)
# Ruleset API: Add option to group Dictionary elements
key | value
---------- | ---
date | 2024-04-02T15:57:33+00:00
version | 2.3.0b4
class | feature
edition | cre
component | checks
level | 1
compatible | yes
This is only relevant for plugin developers.
If some Dictionary entries are thematically closer related to each other than others they can now be configured and displayed as such.
------------------------------------<diff>-------------------------------------------
[//]: # (werk v2)
# Ruleset API: Add option to group Dictionary elements
key | value
---------- | ---
date | 2024-04-02T15:57:33+00:00
- version | 2.3.0b5
? ^
+ version | 2.3.0b4
? ^
class | feature
edition | cre
component | checks
level | 1
compatible | yes
This is only relevant for plugin developers.
If some Dictionary entries are thematically closer related to each other than others they can now be configured and displayed as such.
Werk 16677 was adapted. The following is the new Werk, a diff is shown at the end of the message.
[//]: # (werk v2)
# Ruleset API: Rename PredictiveLevels.prefill_stddev_diff to prefill_stdev_diff
key | value
---------- | ---
date | 2024-04-08T14:16:32+00:00
version | 2.3.0b4
class | fix
edition | cre
component | checks
level | 1
compatible | no
This change is only relevant for plugin developers.
------------------------------------<diff>-------------------------------------------
[//]: # (werk v2)
# Ruleset API: Rename PredictiveLevels.prefill_stddev_diff to prefill_stdev_diff
key | value
---------- | ---
date | 2024-04-08T14:16:32+00:00
- version | 2.3.0b5
? ^
+ version | 2.3.0b4
? ^
class | fix
edition | cre
component | checks
level | 1
compatible | no
This change is only relevant for plugin developers.
Werk 16605 was adapted. The following is the new Werk, a diff is shown at the end of the message.
[//]: # (werk v2)
# check_wmi_webservices: fix CurrentConnections monitoring
key | value
---------- | ---
date | 2024-04-02T06:44:07+00:00
version | 2.3.0b4
class | fix
edition | cre
component | checks
level | 1
compatible | yes
The CurrentConnections metric was calculated "per second".
We now directly show the number of connections returned by the service.
------------------------------------<diff>-------------------------------------------
[//]: # (werk v2)
# check_wmi_webservices: fix CurrentConnections monitoring
key | value
---------- | ---
date | 2024-04-02T06:44:07+00:00
- version | 2.3.0b5
? ^
+ version | 2.3.0b4
? ^
class | fix
edition | cre
component | checks
level | 1
compatible | yes
The CurrentConnections metric was calculated "per second".
We now directly show the number of connections returned by the service.