doc/releases/squid: More notable changes in RGW

author Adam C. Emerson <aemerson@redhat.com>

Wed, 23 Jul 2025 18:01:08 +0000 (14:01 -0400)

committer Yuri Weinstein <yweinste@redhat.com>

Thu, 24 Jul 2025 20:20:27 +0000 (13:20 -0700)
author Adam C. Emerson <aemerson@redhat.com>
Wed, 23 Jul 2025 18:01:08 +0000 (14:01 -0400)
committer Yuri Weinstein <yweinste@redhat.com>
Thu, 24 Jul 2025 20:20:27 +0000 (13:20 -0700)
diff --git a/doc/releases/releases.yml b/doc/releases/releases.yml

index c4329b56e30a704faa389ccbeb4f4a9e96d8aec6..6d15c78f651b0910739d28eab7d604b90ac559b2 100644 (file)
--- a/doc/releases/releases.yml
+++ b/doc/releases/releases.yml
@@ -20,7 +20,7 @@ releases:
      target_eol: 2026-09-19
      releases:
        - version: 19.2.3
-        released: 2025-07-22
+        released: 2025-07-28
        - version: 19.2.2
          released: 2025-04-10
        - version: 19.2.1
diff --git a/doc/releases/squid.rst b/doc/releases/squid.rst

index ceeb4a410712c185b9ae8a9b57aed153f7bb63c7..4e0e3eae71737807996fd2e49f3aac7b0df1258a 100644 (file)
--- a/doc/releases/squid.rst
+++ b/doc/releases/squid.rst
@@ -25,6 +25,12 @@ Notable Changes
  * MGR: MGR's always-on modulues/plugins can now be force-disabled. This can be
    necessary in cases where MGR(s) needs to be prevented from being flooded by
    the module commands when coresponding Ceph service is down/degraded.
+* RGW: An authentication bypass vulnerability in STS
+  [CVE-2023-43040] has been fixed.
+* RGW: S3 policy now enforces ARN-based conditionals.
+* RGW: Copying an object to itself no longer causes data
+  loss. Potential corruption on ETIMEDOUT (not enabled by default),
+  was also fixed.
  
  Changelog
  ---------
author	Adam C. Emerson <aemerson@redhat.com>
	Wed, 23 Jul 2025 18:01:08 +0000 (14:01 -0400)
committer	Yuri Weinstein <yweinste@redhat.com>
	Thu, 24 Jul 2025 20:20:27 +0000 (13:20 -0700)
doc/releases/releases.yml		patch \| blob \| history
doc/releases/squid.rst		patch \| blob \| history