Added
- a9s MariaDB: a9s MariaDB SPI: Add a new custom parameter
grant_performance_schema_permissions that grants the user
the necessary permissions to access the performance_schema feature. - docs: Application Developer: a9s MariaDB: Extend the "Custom Parameter" page with information regarding the new
parameter
grant_performance_schema_permissions. For more information, see
a9s MariaDB - Custom Parameters. - docs: Platform Operator: all services: Add missing ports between a9s Backup Manager and a9s Service Broker to the
corresponding tables. For more information, see a9s Platform Required Ports.
Changed
- all services: Adapt the
prepare.sh script to not fail, when a9s-pg is not deployed. - all services: a9s Bee: Update internal go dependencies to the latest minor version.
- all services: Update
- bpm to v1.4.20.
- nginx to v1.28.0.
- routing to v0.338.0.
- all services: a9s Service Broker:
- Update Rails to v7.2.
- Update to the newest database field encryption method. After deploying the newest version, the
migrate-service-broker-encrypted-database-fields errand needs to be run for each Data Service. - The errand
migrate-service-broker-encrypted-database-fields is now part of the broker instance group and
therefore its dedicated instance group has been removed.
- a9s-pg: a9s Logstash: Logstash 8: Update logstash8 to v8.18.1.
- a9s Backup Manager:
- Update ruby on rails to v7.2.
- Update to the newest database field encryption method. After deploying the newest version, the
migrate-backup-manager-encrypted-database-fields errand needs to be run. - The errand
migrate-backup-manager-encrypted-database-fields is now part of the backup-manager instance group and
therefore its dedicated instance group is removed.
- a9s Billing:
- Update Ruby to v3.4.1.
- Add missing
Consul job to the Add a9s Invoices Ops File to fix connection
problems with a9s-pg. - Add missing
bpm job to the grafana instance group of the Add Grafana Route Ops File
to fix an issue with the route_registrar.
- a9s CF Service Guard: Update Rails to v7.2.
- a9s KeyValue: a9s Logstash: Logstash 8: Update logstash8 to v8.18.1.
- a9s MariaDB: Update
- a9s Logstash: logstash8 to v8.18.1.
- MariaDB 10.6: MariaDB 10.6.22.
- MariaDB 10.11: MariaDB 10.11.12
- a9s Messaging: a9s Logstash: Update logstash8 to v8.18.1.
- a9s MongoDB: Update
- a9s Logstash:
- a9s MongoDB 7:
- mongodb to v7.0.20.
- mongosh to v2.5.1.
- a9s PostgreSQL: a9s Logstash: Update logstash8 to v8.18.1.
- a9s Prometheus: Update
- prometheus2:
- grafana to v10.4.18.
- bosh_exporter to v3.7.0
- prometheus-legacy:
- promgraf2:
- a9s Redis: Update
- a9s Search: a9s Logstash: Update logstash8 to v8.18.1.
- docs: all services: Fix multiple links, typos, metadata issues and leftover anchors from the recent documentation
restructuring.
- docs: all services: Update all the a9s Data Services logos across all affected index pages to the new style.
- docs: Application Developer: a9s Prometheus: Fix cross-reference links between the "a9s Prometheus - Service Instance
Access" page and the "Grafana Dashboard" page. For more information, see a9s Prometheus - Grapahana Dashboard.
- docs: Application Developer: a9s Search: Rename misleading id in the "a9s Search - Service Instance Access" page's
metadata. For more information, see a9s Search - Service Instance Access.
- docs: Platform Operator: Update the
EOL in Vendor column. For more information, see
a9s Platform Operator - Sunrise Sunset. - docs: Platform Operator: all services: Fix erroneous a9s Billing Command in "Getting Started" section. For more
information, see a9s Data Services Installation - 12. Deploy a9s Billing (optional).
- docs: Platform Operator: a9s PostgreSQL: Add instructions on how to handle unarchived WAL files after a cluster, with
Continuous Archiving enabled, crashes. For more information, see a9s PostgreSQL - Cluster Recovery.
- BOSH stemcell: all services: Update Jammy stemcell to version
1.824 for internal tests of all supported services.
Removed
- a9s Prometheus: Remove
PostgresDatabaseSize alert as it, due to its misconfiguration, was triggered based on a
global threshold for all Service Plans, which can cause premature alerts on Service Instances with large disks.
Security
- all services: a9s Backup Agent: Fix CVEs:
- CVE-2025-46727
- CVE-2025-32414
- CVE-2025-32415
- all services: a9s BOSH Deployer: Fix CVEs:
- CVE-2025-32414
- CVE-2025-32415
- all services: a9s Service Broker: Fix CVEs:
- CVE-2025-27610
- CVE-2025-27788
- CVE-2025-46727
- CVE-2025-32414
- CVE-2025-32415
- CVE-2025-24855
- CVE-2024-55549
- all services: a9s Smoke Tests: Fix CVEs:
- CVE-2025-22869
- CVE-2025-46727
- all services: a9s Deployment Updater: Fix CVE: CVE-2025-46727
- all services: a9s SSO Proxy: Fix CVE: CVE-2025-46727
- all services: a9s Bee: Fix CVE: CVE-2025-22869
- all services: a9s CF Service Guard: Fix CVEs:
- CVE-2025-46727
- CVE-2025-32414
- CVE-2025-32415
- a9s-pg: Fix CVE: CVE-2025-22869
- a9s Backup Services:
- a9s Backup Monit: Fix CVEs:
- CVE-2025-46727
- CVE-2025-32414
- CVE-2025-32415
- a9s Backup Manager: Fix CVEs:
- CVE-2025-46727
- CVE-2025-32414
- CVE-2025-32415
- a9s Billing: Fix CVEs:
- CVE-2024-55549
- CVE-2025-24855
- a9s KeyValue: a9s KeyValue SPI: Fix CVE: CVE-2025-46727
- a9s LogMe2: a9s LogMe2 SPI: Fix CVE: CVE-2025-46727
- a9s MariaDB:
- a9s MariaDB 10.11: Fix CVE: CVE-2025-22869
- a9s MariaDB 10.6: Fix CVE: CVE-2025-22869
- a9s MariaDB SPI: Fix CVE: CVE-2025-46727
- a9s Messaging: a9s Messaging SPI: Fix CVE: CVE-2025-46727
- a9s MongoDB: a9s MongoDB SPI: Fix CVE: CVE-2025-46727
- a9s PostgreSQL: a9s PostgreSQL SPI: Fix CVE: CVE-2025-46727
- a9s Prometheus: a9s Prometheus SPI: Fix CVE: CVE-2025-46727
- a9s Redis:
- a9s Redis SPI: Fix CVE: CVE-2025-46727
- a9s Redis 7: Fix CVE: CVE-2025-21605
- a9s Search: a9s Search SPI: Fix CVE: CVE-2025-46727