Vulnerabilities (fixed in January 2023)
Customer(s)
All customers are required to update Germain with the below patches.
Description
As part of our SOC2 compliance program, here are the security breaches that have been found in December, and patches to address those. We remain available to help you with these issues. Please contact us if needed.
Vulnerability | Severity | Scope | Detected | Reviewed | Resolved | Affected versions | Fix implemented in | Link |
|---|---|---|---|---|---|---|---|---|
HIGH | apache-tomcat [8.5.53] -> [8.5.54] | 1/14/2023 | 1/16/2023 | 1/16/2023 | < 2022.5 | 2022.3-57, 2022.4-43 |
Germain 2022.3-57
Download
https://germain-apm.s3.us-west-2.amazonaws.com/GermainAPM/2022/GermainAPMEngine-2022.3-57-binary.tar.gz
https://germain-apm.s3.us-west-2.amazonaws.com/GermainAPM/2022/GermainAPMEngine-2022.3-57-binary.zip
https://germain-apm.s3.us-west-2.amazonaws.com/GermainAPM/2022/GermainAPMServer-2022.3-57-binary.tar.gz
https://germain-apm.s3.us-west-2.amazonaws.com/GermainAPM/2022/GermainAPMServer-2022.3-57-binary.zip
https://germain-apm.s3.us-west-2.amazonaws.com/GermainAPM/2022/GermainAPMService-2022.3-57-binary.tar.gz
https://germain-apm.s3.us-west-2.amazonaws.com/GermainAPM/2022/GermainAPMService-2022.3-57-binary.zip
Docker
public.ecr.aws/h0m9e4y5/germainapm-engines:2022.3-57
public.ecr.aws/h0m9e4y5/germainapm-server:2022.3-57
public.ecr.aws/h0m9e4y5/germainapm-services:2022.3-57
Germain 2022.4-43
Download
https://germain-apm.s3.us-west-2.amazonaws.com/GermainAPM/2022/GermainAPMEngine-2022.4-43-binary.tar.gz
https://germain-apm.s3.us-west-2.amazonaws.com/GermainAPM/2022/GermainAPMEngine-2022.4-43-binary.zip
https://germain-apm.s3.us-west-2.amazonaws.com/GermainAPM/2022/GermainAPMServer-2022.4-43-binary.tar.gz
https://germain-apm.s3.us-west-2.amazonaws.com/GermainAPM/2022/GermainAPMServer-2022.4-43-binary.zip
https://germain-apm.s3.us-west-2.amazonaws.com/GermainAPM/2022/GermainAPMService-2022.4-43-binary.tar.gz
https://germain-apm.s3.us-west-2.amazonaws.com/GermainAPM/2022/GermainAPMService-2022.4-43-binary.zip
Docker
public.ecr.aws/h0m9e4y5/germainapm-engines:2022.4-43
public.ecr.aws/h0m9e4y5/germainapm-server:2022.4-43
public.ecr.aws/h0m9e4y5/germainapm-services:2022.4-43