No changes since 1.22.0. Version incremented to match the libmongoc version.
Fix documentation build when using Sphinx 5.0 or newer
Update patch release of libmongocrypt to 1.5.2: Fix a potential data
corruption bug in RewrapManyDataKey when rotating encrypted data encryption
keys backed by GCP or Azure key services.
The following conditions will trigger this bug:
A GCP-backed or Azure-backed data encryption key being rewrapped requires
fetching an access token for decryption of the data encryption key.
The result of this bug is that the key material for all data encryption keys
being rewrapped is replaced by new randomly generated material, destroying
the original key material.
To mitigate potential data corruption, upgrade to this version or higher
before using RewrapManyDataKey to rotate Azure-backed or GCP-backed data
encryption keys. A backup of the key vault collection should always be taken
before key rotation.
- Update to Fedora 37 for RPM builds
- Dependency build of libmongocrypt re-uses the libbson of the depending
Thanks to everyone who contributed to this release.
- Ezra Chung
- Roberto C. Sánchez
- Kevin Albertson