security - Page 3 of 3 - Chef Blog | Chef

Products

Chef Enterprise Automation Stack

Our full suite of enterprise infrastructure, application and DevSecOps automation technologies for delivering change quickly, repeatedly, and securely.

Chef EAS is powered by:

Chef Infra Chef InSpec Chef Habitat Chef Automate Learn more

Chef Enterprise Automation Stack

Chef Infra Chef InSpec Chef Habitat Chef Automate

Chef Infrastructure Management

Chef Infrastructure Management ensures configurations are applied consistently in every environment with infrastructure management automation. Learn more

Chef Compliance

Chef Compliance makes it easy to maintain and enforce compliance across the enterprise. Learn more

Chef App Delivery

Deliver successful application outcomes consistently at scale with Chef App Delivery. Learn more

Chef Desktop

Chef Desktop allows IT teams to automate the deployment, management, and ongoing compliance of IT resources. Learn more

Chef Cloud Security

Cloud security management and governance for hybrid and multi-cloud environments. Learn more
Solutions
Security and Compliance

Compliance Audits

Compliance Solutions

PCI-DSS

GDPR

Patch Management

Cloud Security Posture Management
Application Delivery

Cloud Migration

Cloud Native

Modernizing Legacy Apps

Edge Computing Automation

Windows Application Automation

Application Deployment
DevOps and Integrations

Continuous Delivery

DevOps

DevSecOps

Chef and Docker

Chef and Kubernetes

Chef and Azure

Chef and VMware

Chef and Terraform
Industry Solutions

Financial Services

Government
Professional Services

Let our experts help accelerate your adoption of Chef and its best practices.
Learn more

Training

Hands on training for Chef practitioners designed to solve real business problems.
See training classes

Support

Got a question? Our support team is here to help.
Get support
How to buy
Learn
About Progress

Progress provides everything you need to develop, deploy and manage high-impact business applications.
Learn more

Why Chef Products

Chef delivers the Coded Enterprise, a blueprint for organizations to win in the digital future.
Learn more

Press Coverage

Catch up with the latest Progress press coverage.
Learn more
Downloads

Tag:

security

Security Release: Chef Server 12.0.1 and Enterprise Chef Server 11.2.6

December 17, 2014

Available for immediate download are Chef Server 12.0.1 and Enterprise Chef Server 11.2.6. This release addresses CVE-2014-8144, a CSRF vulnerability found in doorkeeper, a gem used by the oc-id service that ships with the Chef Server. This release updates oc-id to the latest version, 0.4.4, which contains the patched doorkeeper gem.

Read more

Posted in:

release Releases

Chef Client Windows Patches for OpenSSL CVE-2014-0224 Vulnerability

By Serdar Sutay

June 11, 2014

Ohai Chefs, We have just released Chef Client versions 11.12.8-2 and 10.32.2-3 which includes the mitigation for the recently reported OpenSSL vulnerability CVE-2014-0224. Note that after installing these builds, if you check the OpenSSL version using `OpenSSL::OPENSSL_VERSION` you will see `OpenSSL 1.0.0k 5 Feb 2013`.

Read more

Posted in:

release

Chef Security Releases: 11.12.8 & 10.32.2-2

By Serdar Sutay

June 8, 2014

Ohai Chefs, Today we are releasing Chef Client 11.12.8 & 10.32.2-2 which include an updated version of OpenSSL that patches CVE-2014-0224. All installs of Chef Client should be upgraded immediately. This bug permits an attacker to execute an undetectable MITM attack on an otherwise secure connection.

Read more

Posted in:

release Releases

Categories

INTERNET US

Chefconf Blog Banner Sidebar

Survey Blog Banner Sidebar

FOLLOW @CHEF

Tweets by @chef

Chef is part of the Progress product portfolio. Progress is the leading provider of application development and digital experience technologies.

Copyright © 2022 Progress Software Corporation and/or its subsidiaries or affiliates. All Rights Reserved.

Progress, Telerik, Ipswitch, Chef, Kemp, Flowmon and certain product names used herein are trademarks or registered trademarks of Progress Software Corporation and/or one of its subsidiaries or affiliates in the U.S. and/or other countries. See Trademarks for appropriate markings.

Do not sell my personal information

Powered by Progress Sitefinity

security