Common Gateway Security Fixes

Updated Browser Components across Classic and NextGen Gateway

OpsRamp has updated browser components in both Classic and NextGen Gateway to incorporate the latest security fixes.

These updates address multiple security vulnerabilities in browser components, including issues related to memory handling, rendering, and font processing, which could potentially be exploited through specially crafted web content.

Updated components:

  • Google Chrome: 148.0.7778.96 / 148.0.7778.97
  • ChromeDriver: 148.0.7778.96
  • Microsoft Edge and Edge WebDriver: 147.0.3912.98
  • Chromium (Canary): 149.0.7826.0

NextGen Gateway:

  • Webprobe updated with the latest browser and driver versions
  • Webprobe Docker image and Helm chart: 21.1.1

Classic Gateway:

  • Embedded browser components updated to patched versions

For the above security fixes,

  • If you are planning to upgrade to version 21.1.1, no action is required. The patch will automatically update the package.
  • If you are not upgrading to 21.1.1, you must manually update the package using one of the following methods: