maschmiAug 8, 2025

In case you missed it: there are/were multiple vulnerabilities in #hasicorp #vault

https://discuss.hashicorp.com/t/hcsec-2025-22-multiple-vulnerabilities-impacting-hashicorp-vault-and-vault-enterprise/76096

If not already done it may be a good time to think about updating and an automated update strategy :)

Oh and #cyberark #conjur is not risk free as well. Sadly their security bulletins seem to be begin a login page. https://www.cyberark.com/product-security/

Source is this German article https://www.csoonline.com/article/4035574/hashicorp-vault-cyberark-conjur-kompromittiert.html

HCSEC-2025-22 - Multiple Vulnerabilities Impacting HashiCorp Vault and Vault Enterprise

Bulletin ID: HCSEC-2025-22 Affected Products / Versions: HashiCorp recently published eight security bulletins for issues impacting Vault and Vault Enterprise, all of which have been addressed in the latest Vault versions: 1.20.2, 1.19.8, 1.18.13, and 1.16.24. Publication Date: August 6, 2025 Summary HashiCorp recently published eight security bulletins for issues impacting Vault Community Edition and Vault Enterprise, all of which have been addressed in the latest Vault versions: 1.20.2, 1....

HashiCorp Discuss
Show threadJody GarnettAug 12, 2023

@jimmysjolund open source is very much under strain. Watching #Hasicorp nope out is a symptom. Regulatory pressure of #CRA is a symptom. #GeoServer community not testing release candidates a symptom

Sustainable requires care: with time (participation) or money (delegate participation)

RedHat saying "no" to customers who purchase enterprise support (the product) for 1 server and the rely on bug-for-bug distribution for N-1 servers seems fair. Approach breaks delegating participation

DenisJul 3, 2023

Shipping tracker says my new #minipc should be arriving today. Looking forward to setting it up as a new low power #homelab box. Reserve my 2u server for stuff I need to lab occasionally not always on.

Plans for it include #proxmox #homeassistant #ansible #netbox #grafana #InfluxDB #graylog #unpoller #hasicorp #vault #pihole #mosquitto forget what else #nginx oh an #acme container that looks after #letsencrypt certificate renewal scripts. some other misc #programming dev boxes.