|
1 | 1 | # Changelog |
2 | 2 |
|
| 3 | +### (2025-10-14) What’s new in **ROR 1.67.0** |
| 4 | +* **🚨 Security Fix** (KBN) [CVE-2025-58754](https://nvd.nist.gov/vuln/detail/CVE-2025-58754) |
| 5 | +* **🚨 Security Fix** (ES) [CVE-2025-58057](https://nvd.nist.gov/vuln/detail/CVE-2025-58057), [CVE-2025-58056](https://nvd.nist.gov/vuln/detail/CVE-2025-58056) |
| 6 | +* **🚀 New** (ES) [Added support for defining a custom audit serializer directly in ROR settings (no code required)](https://docs.readonlyrest.com/elasticsearch/audit#using-configurable-serializer) |
| 7 | +* **🚀 New** (ES) [Introduced new predefined audit serializers: `ReportingAllEventsAuditLogSerializer`, `ReportingAllEventsWithQueryAuditLogSerializer`](https://docs.readonlyrest.com/elasticsearch/audit#predefined-serializers) |
| 8 | +* **🚀 New** (ES) Added new rules: [`ror_kbn_authentication`](https://docs.readonlyrest.com/elasticsearch#ror_kbn_authentication) and [`ror_kbn_authorization`](https://docs.readonlyrest.com/elasticsearch#ror_kbn_authorization), as alternatives to the existing `ror_kbn_auth` rule |
| 9 | +* **🧐 Enhancement** (KBN) [Added OIDC `clock-skew-tolerance` configuration option in `kibana.yml`](https://docs.readonlyrest.com/kibana#clock-skew-tolerance) |
| 10 | +* **🧐 Enhancement** (KBN) [Added option to disable Kibana termination on watermark errors in `kibana.yml`](https://docs.readonlyrest.com/kibana#terminate-kibana-on-es-high-watermark) |
| 11 | +* **🐞 Fix** (KBN) Logout did not invalidate the app session when the `ror_kbn_auth` rule was used with local group definitions |
| 12 | +* **🐞 Fix** (KBN) [Restored keyword field value suggestions in Discover/Data View filters](https://forum.readonlyrest.com/t/kibana-data-view-filter-not-working-with-keyword/2843) |
| 13 | +* **🐞 Fix** (KBN) Integration-based options were visible in search results even when the app was marked as hidden |
| 14 | +* **🐞 Fix** (KBN) Index Management appeared in app search results even when the app was declared as hidden |
| 15 | +* **🐞 Fix** (KBN) Resolved an issue with CSRF token override when multiple browser tabs were open |
| 16 | +* **🐞 Fix** (KBN) Fixed OIDC compatibility for Kibana 7.10.2 and earlier |
| 17 | +* **🐞 Fix** (ES) Restored backward compatibility for custom audit log serializer implementations extending the `DefaultAuditLogSerializer` class. Custom serializers compiled against ROR 1.65 or 1.66 that use `DefaultAuditLogSerializer` must be recompiled to work correctly. |
| 18 | +* **🐞 Fix** (ES) Fixed a defect that broke the "Snapshot and Restore" functionality in Kibana |
| 19 | + |
3 | 20 | ### (2025-09-03) What's new in **ROR 1.66.1** |
4 | 21 | * **🚀New** (KBN) 9.1.5, 9.1.4, 9.0.8, 9.0.7 8.19.5, 8.19.4, 8.18.7 support |
5 | 22 | * **🚀New** (ES) 9.1.5, 9.1.4, 9.0.8, 9.0.7, 8.19.5, 8.19.4, 8.18.8, 8.18.7 support |
|
0 commit comments