Announcing Graylog 5.2.4

This is a bug-fix release improving the functionality of Graylog. Please read on for information on what has changed.

Download Links

• DEB and RPM packages are available in our repositories
• Container images
  • Graylog Open
  • Graylog Enterprise
  • Graylog Data Node
• Tarballs for manual installation
  • Graylog Server
  • Graylog Server (bundled JVM, linux-x64)
  • Graylog Server (bundled JVM, linux-aarch64)
  • Graylog Enterprise Server
  • Graylog Enterprise Server (bundled JVM, linux-x64)
  • Graylog Enterprise Server (bundled JVM, linux-aarch64)
  • Graylog Data Node (bundled JVM, linux-x64)
  • Graylog Data Node (bundled JVM, linux-aarch64)

GRAYLOG FORWARDER

• Tarball (manual installation)
  • Graylog Forwarder
• OS Packages
  • DEB Package
  • RPM Package
• Docker Compose
• Docker image
  • Docker Hub
  • docker pull graylog/graylog-forwarder:5.2-1

Please report bugs and any other issues in our GitHub issue tracker. Thank you!

GRAYLOG OPEN 5.2.4

Released: 2024-02-07

Added

• Added ‘field_value_suggestion_mode’ config parameter, that allows to switch field value suggestions off, turn them on and turn them on only for textual fields. graylog2-server#18032 graylog2-server#18095
• Added link to first start logs to log into preflight UI graylog2-server#18113

Changed

• Ensured password secret meets the minimum length requirement if using/for the DataNode. graylog2-server#17523 graylog2-server#17719 graylog2-server#18111
• Updated the select_jsonpath pipeline function to accept JSON strings as the json parameter in addition to parsed JsonNode objects. graylog2-server#17647 graylog2-server#17683

Fixed

• Improved migration and error handling for event definitions that are missing a field value. graylog2-server#17367 graylog2-server#18051
• Fixed UI failure when getting Processing and Indexing Failures stream name for non enterprise version graylog2-server#17743 graylog2-server#18143
• Fixed error when attempting to share entities with stream dependencies. graylog2-server#17882 graylog2-server#17891
• Fixed issue where enabled event definitions would be incorrectly set to disabled through the REST API. graylog2-server#17958 graylog2-server#17959
• Fixed UI runtime error when request for alerts overview returns an error. graylog2-server#17995 graylog2-server#18000
• Fixed issue preventing the lookup_all pipeline function from working with json arrays graylog-plugin-enterprise#6363 graylog2-server#17820
• Fixed bug causing null response from array_contains pipeline function when passed null array. graylog2-server#17909
• Propagated proxied request body to opensearch. graylog2-server#17984
• Fixed LDAP / AD authentication with legacy TLS. graylog2-server#18028
• Fixed Session not timing out on index set details page graylog2-server#18063 graylog2-server#18091
• Added permission check for displaying content pack uninstall details. graylog2-server#18177

Security

• Always create new sessions for authentication attempts to fix a potential session fixation vulnerability. GHSA-3xf8-g8gr-g7rh
• Restrict classes allowed for cluster config and event types. GHSA-p6gg-5hf4-4rgj graylog2-server#18165

GRAYLOG OPERATIONS/SECURITY 5.2.4

Released: 2024-02-07

Fixed

• Added mitigation fix to F5 BIG-IP Log Events Input to avoid intermittent 401 Unauthorized errors. graylog-plugin-enterprise#6336 graylog-plugin-enterprise#6394
• Fixing report rendering bug where it times out if it takes longer than 30 seconds. graylog-plugin-enterprise#6395 graylog-plugin-enterprise#6396

CHANGELOGS

• Graylog Server
• Graylog Operations

Let us know what you’d like to have included in our GitHub issue tracker.