Maintained with ☕️ by
IcePanel logo

We released an updated version of Apigee X (1-10-0-apigee-1)

Share

Services

## Announcement On May 17, 2023, we released an updated version of Apigee X (1-10-0-apigee-1). **Note:** Rollouts of this release began today and may take four or more business days to be completed across all Google Cloud zones. Your instances may not have the features and fixes available until the rollout is complete. ## Fix | Bug ID | Description | | ------------------------------- | -------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- | | N/A | **Upgraded infrastructure and libraries.** | | 271217050 | **Fixed issue resulting in missing execution records in debug sessions for the JavaCallout policy.** | | 271894110, 273568673, 273571029 | **Fix enables support for TLS 1.3 for southbound targets.** | | 271539836 | **Fixed intermittent Cloud Logging failures.** | | 277090269 | **Fixed encryption of internal proxy chaining headers to avoid proxy invocation misuse.** | | 273561434 | **Fixed issue with incomplete debug session information for proxies deployed in the same environment.** | | 158132963 | **Improved capture of relevant target flow variables in trace and analytics in the event of target timeouts.** | | 271093461 | **Fixed issue with heap exhaustion when using OASValidation policy.** | | 269514256 | **Fixed issue causing GoogleTokenGeneration failure.** | | 261924658 | **Optimization to reduce latency in Quota policy.** | | 252864240 | **Fixed issue to support bot detection with Analytics obfuscation enabled.** | | 222024484 | **CORS policy now returns Access-Contol-Allow-Credentials header in preflight response when is set to true.** | | 261205290 | **Optimization to reduce resource usage on Cassandra connections.** | | 266814873 | **Fixed issue with retrieval of environment-scoped KVM entries containing encryption keys with non-UTF-8 characters.** | | 260342163 | **Fixed issue causing 100% CPU usage by runtime pod threads under specific circumstances.** | | 273800523, 273800717 | **Security fixes for Apigee.** The fixes address the following vulnerabilities:[CVE-2022-41881](https://nvd.nist.gov/vuln/detail/CVE-2022-41881)[CVE-2022-24823](https://nvd.nist.gov/vuln/detail/CVE-2022-24823)[CVE-2021-43797](https://nvd.nist.gov/vuln/detail/CVE-2021-43797)[CVE-2022-46363](https://nvd.nist.gov/vuln/detail/CVE-2022-46363)[CVE-2022-46364](https://nvd.nist.gov/vuln/detail/CVE-2022-46364)[CVE-2023-0286](https://nvd.nist.gov/vuln/detail/CVE-2023-0286)[CVE-2022-4450](https://nvd.nist.gov/vuln/detail/CVE-2022-4450)[CVE-2021-3999](https://nvd.nist.gov/vuln/detail/CVE-2021-3999)[CVE-2023-0215](https://nvd.nist.gov/vuln/detail/CVE-2023-0215)[CVE-2022-2097](https://nvd.nist.gov/vuln/detail/CVE-2022-2097)[CVE-2022-4304](https://nvd.nist.gov/vuln/detail/CVE-2022-4304) |