Review required
Dependencies
Breaking upgrade
Malicious node-ipc detection + CI npm hardening
Upgrade now
Dependencies
Go 1.26.3 upgrade + retract detection
Review required
Auth
RCE / SSRF
React CVE-2025-55182
Upgrade now
RCE / SSRF
CWE-78 fix + SARIF version
wazuh
v4.14.5
Security relevant
·
Security fixes
- DAPI callable resolution restriction
- Buffer overflow in analysisd regex match
- Path traversal in authd via agent group name
Upgrade now
Auth
RCE / SSRF
Security fixes
↳
v3.0.21
(1mo)
—
Security fixes
Monitor
Security hardening
↳
v0.74.1
(2mo)
—
Security hardening
↳
v0.71.3
(2mo)
—
OS CVE patches + attestations
wazuh
v4.14.4
Security relevant
·
Security fixes
- Fixed heap-based null WRITE Buffer Underflows
Review required
Auth
Dependencies
Credential security hardening
↳
v0.70.4
(2mo)
—
Vuln DB hardening
↳
v0.66.0
(2mo)
—
Security hardening
↳
v0.59.3
(2mo)
—
Audit & security fixes
↳
v0.59.0
(2mo)
—
Security hardening
↳
v0.58.1
(2mo)
—
ClawHub trust hardening
↳
v0.31.3
(3mo)
—
ClawHub trust hardening
wazuh
v4.14.3
Security relevant
·
Security fixes
- Buffer overflow fixes in SCA decoder
- Memory leak fix in CIS-CAT decoder
Notable features
- Added hostname and architecture metadata to Windows keep-alive messages
Upgrade now
Crypto / TLS
TweetNaCl memory exhaustion fix
