Teleport 2.0.5 Security Fixes

May 3, 2017 by 

Sasha Klizhentas

TLDR: Teleport 2.0.5 fixes several security vulnerabilities. Upgrade here

Impact

We have identified several vulnerabilities in Teleport 2.0. The full list of changes can be seen in the release notes. They are relevant to the heavy users of Teleport web-UI.

As a result of this, we strongly recommend Teleport users upgrade to Teleport 2.0.5 as soon as possible.

The most pressing issues can be resolved by upgrading the web proxy which would mitigate most of the potential attacks, however all nodes should be upgraded to 2.0.5 as soon as possible to mitigate all vulnerabilities.

Full Report

We will release a full report and more details in one week - our main goal is to let everyone to upgrade and not make it easy to exploit the vulnerabilities discovered for the folks who haven’t upgraded yet.

Teleport cybersecurity blog posts and tech news

Every other week we'll send a newsletter with the latest cybersecurity news and Teleport updates.

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Actions

Upgrade to 2.0.5 here

Try Teleport today

In the cloud, self-hosted, or open source
Get StartedView developer docs