With this release, we have improved security in various ways.
New functions and enhancements
ID 15662: Update Traefik to version 2.11
The Traefik reverse proxy has been updated from version 2.3 to 2.11. This update addresses several known security vulnerabilities and ensures compatibility with the latest versions of Kubernetes. The update will be applied automatically during the next system synchronization.
ID 17390: Update Keycloak from version 24 to version 26
With this update, Keycloak is now available in version 26. The new version offers enhanced security features and performance optimizations.
ID 18598: When Traefik is accessed from a host other than the one specified in edoc system control, it should return a timeout response
With this release, Traefik's behavior regarding TLS requests has been tightened. Connections with unconfigured hostnames no longer receive a response and will time out instead of returning a default certificate and a 404 status. This enhances security and ensures the system complies with the requirements for strict SNI checking.
Bug fixes and improvements
No bugs were fixed in this release.