Skip to main content
logoTetrate Service BridgeVersion: 1.13.x

Release Notes

Version 1.13.0

  • Starting from 1.13, the permissions to create clusters and retrieve the cluster install templates have changed. These operations now require organization admin privileges (that is, permission to SetPolicy at the organization level and Create cluster permission). This does not affect the normal operation of existing clusters; the new permissions are only required to create new clusters and to retrieve the cluster install templates.
  • Management Plane now automatically creates and manages the xcp-central-cert secret so there is no need for users to manage this secret. Any existing secret will be updated, and the options for configuring the secret have been removed from the helm charts.
  • Fixed CVE-2025-22868, CVE-2025-47907, CVE-2025-55163, CVE-2025-48924.
  • Fixes an issue where the IAM component required a restart for Control Plane clusters to report their status. IAM now automatically updates by subscribing to TSB Service Account events.

Outstanding CVEs

At the time of shipping, there are no Critical and High vulnerabilities flagged. The following CVEs (medium/low) have been identified as being present in some images by our security tools. They have been evaluated by Tetrate Product Security and are not exploitable in TSB installations. Where applicable, this was ascertained by using static code analysis tools.

  • PRISMA-2022-0168 - No fix available.
  • CVE-2024-10963 - No fix available.
  • CVE-2025-8114 - No fix available.
  • CVE-2024-10041 - No fix available.
  • CVE-2025-29481 - No fix available.
  • CVE-2021-31879 - No fix available.
  • PRISMA-2021-0153 - No fix available.
  • CVE-2025-45582 - No fix available.
  • CVE-2024-28180 - No fix available.
  • CVE-2024-52005 - No fix available.
  • CVE-2022-3219 - No fix available.
  • CVE-2025-0167 - No fix available.
  • CVE-2019-9192 - No fix available.
  • CVE-2017-11164 - No fix available.
  • CVE-2010-4756 - No fix available.
  • CVE-2019-1010023 - No fix available.
  • CVE-2025-6141 - No fix available.
  • CVE-2019-1010022 - No fix available.
  • CVE-2013-4392 - No fix available.
  • CVE-2024-41996 - No fix available.
  • CVE-2022-0563 - No fix available.
  • CVE-2011-4116 - No fix available.
  • CVE-2023-31437 - No fix available.
  • CVE-2025-1376 - No fix available.
  • CVE-2016-2781 - No fix available.
  • CVE-2025-27587 - No fix available.
  • CVE-2019-1010025 - No fix available.
  • CVE-2025-1352 - No fix available.
  • CVE-2024-56433 - No fix available.
  • CVE-2018-20796 - No fix available.
  • CVE-2019-1010024 - No fix available.
  • CVE-2025-5278 - No fix available.
  • CVE-2025-7709 - No fix available.
  • CVE-2019-20838 - No fix available.
  • CVE-2024-2236 - No fix available.
  • CVE-2011-3374 - No fix available.
  • CVE-2017-18018 - No fix available.
  • CVE-2023-31439 - No fix available.
  • CVE-2007-5686 - No fix available.
  • CVE-2005-2541 - No fix available.
  • CVE-2023-31438 - No fix available.
  • CVE-2021-45346 - No fix available.