11.0.2-rc.4

bookshelf 1.0.3

Improvement

• Convert file IO to raw mode - Switching from cooked to raw mode to
  reduce the number of processes created per-request. Cooked mode creates
  at least 1 process per FD which can become an issue if the bookshelf
  server receives a sudden burst of traffic.
• Tuning default values to handle high load.
• Create bookshelf data dir and setup ownership before running migration.

OpenResty 1.4.3.6

Bug Fixes

• [CVE-2013-4547] - security restriction bypass flaw due to whitespace parsing.

opscode-solr

Bug Fixes

• [CHEF-4792] - Disable insecure JMX settings leading to potential remote code
  execution.

opscode-chef-mover (Migration)

Bug Fixes

• Shifting up Mover log clean up in case the upgrade needs to be restarted.
• Changing start opscode-chef-mover to a restart in case it is already running
  after a failed upgrade.
• Adding a quick sleep before starting the migrate script to give time for all
  mover services to be running.
• Remove recursive chown, run migration as opscode user.
• Use compile mode and avoid /usr/bin/env for cookbook migration escript.

opscode-webui rel-3.8.10

Bug Fixes

• [CVE-2013-4389] Possible DoS Vulnerability in Action Mailer
• Render html for all 404s to avoid errors for other file types.
• Coerce uptime to string in case it's a Fixnum.

Ruby 1.9.3-p484

Bug Fixes

• [CVE-2013-4164] - Heap Overflow in Floating Point Parsing