Release notes: 3.0.52

Find out what's new in version 3.0.52.

1 minute read

The StackRox Kubernetes Security Platform version 3.0.52 includes new features, bug fixes, and system changes. To upgrade to this release from a previous version, see the Upgrade StackRox section.

Release date: November 18, 2020

New features

Integrate by using the syslog protocol

You can now send alert notifications and audit events from the StackRox Kubernetes Security Platform to a SIEM or a syslog collector. To get started, see Integrate using Syslog protocol.

Support for Kubernetes 1.19

The StackRox Kubernetes Security Platform version 3.0.52 supports the latest Kubernetes version 1.19. See the supported platforms topic to learn more about the operating systems, container platforms, and managed Kubernetes services that we support.

Added in version 3.0.52.1

Release date: Dec 7, 2020

External endpoint support for network graph

The StackRox Kubernetes Security Platform version 3.0.52.1 adds support for external network endpoints in the network graph See the network graph topic to learn more about viewing and configuring external endpoints in the network graph.

Important bug fixes

  • ROX-5597: Previously, if you were monitoring Google’s Container-Optimized OS with Collector by using eBPF probes, sometimes the OS reported high CPU usage. We’ve optimized the Collector image to reduce CPU usage.
  • ROX-5758: Previously, Scanner didn’t mark some ASP.Net Core CVEs as fixable (only for patch releases) because the corresponding NVD database didn’t report fixes for those CVEs. We’ve updated Scanner, and it now reports fixable ASP.Net Core CVEs.

Resolved in version 3.0.52.1

Release date: Dec 7, 2020

  • ROX-5984: We’ve fixed an issue where unconfigurable options were visible when configuring the syslog integration.
  • ROX-5988: We’ve fixed an issue where viewing image components caused UI errors under certain conditions.
  • ROX-6070: Previously, when integrating with some OpenID Connect (OIDC) Identity Providers, the Test Login option would report connection errors. We’ve fixed this issue.

Important system changes

StackRox portal

We’ve removed the redundant option to filter risks by priority from the Risk view.

Scanner

Scanner now identifies vulnerabilities in the latest Ubuntu version 20.10 images, and distroless Docker images.

Policy criteria

We’ve added new policy criteria called Container Name that evaluate policy against the provided container name.

Image versions

ImageDescriptionCurrent version
MainIt includes Central, Sensor, Admission Controller, and Compliance. It also includes roxctl for use in Continuous Integration systems.stackrox.io/main:3.0.52.1
ScannerScans images.stackrox.io/scanner:2.7.1
Scanner DBStores image scan results and vulnerability definitions.stackrox.io/scanner-db:2.7.1
CollectorCollects runtime activity in Kubernetes or OpenShift clusters.collector.stackrox.io/collector:3.1.8-latest

Documentation changes

ChangePageDescription
New topicStackRox architectureDiscover the StackRox Kubernetes Security Platform architecture and concepts.
New sectionExamine imagesAdded a new Supported operating systems section.
New sectionSupported platformsAdded a new StackRox Kubernetes Security Platform support section and clarified the Kubernetes versions we support.

Questions?

We're happy to help! Reach out to us to discuss questions, issues, or feature requests.

© 2021 StackRox Inc. All rights reserved.