Quantum Fabric Docker Containers Hotfix 9.3.1.15

Fixed Issues

This hotfix contains security fixes for OSL vulnerabilities. These fixes were developed on top of the V9 ServicePack 3 FixPack 1 Release.

Enhancements

Added the TOMCAT_ALLOWED_CIPHERS variable in the YAML files,which can be used to specify the allowed ciphers that are required for SSL encryption. The default allowed ciphers are as follows:
- TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
- TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
- TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
- TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
- TLS_ECDHE_RSA_WITH_RC4_128_SHA
- TLS_RSA_WITH_AES_128_CBC_SHA256
- TLS_RSA_WITH_AES_128_CBC_SHA
- TLS_RSA_WITH_AES_256_CBC_SHA256c
- SSL_RSA_WITH_RC4_128_SHA

NOTE: The weaker ciphers have been removed by default. Only the suggested ciphers are enabled.

In this topic

Bookmark Name	Actions