Azure Stack Hub hotfix 1.2311.3.50
Summary
- Fixed the CloudManifest feature to avoid adding non-self-signed certificates to the root store.
- Fixed an issue in the portal that might send a token to an untrusted domain when modifying custom dashboards.
Fixes rolled up from previous hotfix releases
- Fixed XSS vulnerability on metadata endpoint.
- Fixed an issue that can lead to duplicate infrastructure VMs.
- Azure Stack Hub spoofing vulnerability CVE.
Hotfix information
To apply this hotfix, you must have version 1.2311.1.22 or later.
Important
As outlined in the release notes for the 2311 update, make sure that you refer to the update activity checklist on running Test-AzureStack (with specified parameters), and resolve any operational issues that are found, including all warnings and failures. Also, review active alerts and resolve any that require action.
File information
Download the following files. Then, follow the instructions in Apply updates in Azure Stack to apply this update.
Download the hotfix xml file now.
More information
Azure Stack Hub update resources
Monitor updates in Azure Stack by using the privileged endpoint
Feedback
Coming soon: Throughout 2024 we will be phasing out GitHub Issues as the feedback mechanism for content and replacing it with a new feedback system. For more information see: https://aka.ms/ContentUserFeedback.
Submit and view feedback for