1709.15

Intended for use with November 2018 Patch Tuesday Updates from Microsoft

This release has a number of security hardening measures:

• Disabled use of TLS 1.0 by SSL/TLS server and client.
• Disabled RC4.
• Disabled triple-DES cipher to mitigate against Sweet32: Birthday attacks on 64-bit block ciphers in TLS.
• [New IaaS Support] With this release, we now support AWS GovCloud!

1803.3

Features

• Intended for use with October 2018 Microsoft Security Updates
• Disable RDP by default to improve security of the 1803 stemcells. You can still enable RDP by using Windows Utilities

Bug Fix

• Intermittent "Access denied" errors during compilation phase of PAS-W deployments. We have added a fix to potentially resolve them.
• Provisioning Ephemeral Disk for Azure in the scenarios of partitioning your root disk would break. Specifically when the use_root_disk flag was used in the cloud config.

1709.14

Features

• Intended for use with October 2018 Microsoft Security Updates.
• Disable RDP by default to improve security of the 1709 stemcells. You can still enable RDP by using Windows Utilities.

Bug Fix

• Intermittent "Access denied" errors during compilation phase of PAS-W deployments. We have added a fix to potentially resolve them.
• Provisioning Ephemeral Disk for Azure in the scenarios of partitioning your root disk would break. Specifically when the use_root_disk flag was used in the cloud config.

1200.25

Features

• Intended for use with October 2018 Microsoft Security Updates.
• To ensure a consistent runtime on our users, we now manage the version of Powershell for 2012R2. We upgraded the Powershell version to v5.1 in this release

Bug Fix

• Intermittent "Access denied" errors during compilation phase of PAS-W deployments. We have added a fix to potentially resolve them.

1803.2

Features

• Ephemeral Disk Support rolls out with this stemcell. This will help you to configure your ephemeral disk that would be used with your applications. This also allows you to reduce your root disk to a minimum of 40 GB. More information here
• Intended to use with September 2018 Microsoft Security Updates.

Bug Fix

• In our previous stemcell, we made an optional argument os_version mandatory during the Invoke-Sysprep step. We have now fixed that, and detect the OS inherently.

1709.13

Features

• Ephemeral Disk Support rolls out with this stemcell. This will help you to configure your ephemeral disk that would be used with your applications. This also allows you to reduce your root disk to a minimum of 40 GB. More information here
• Intended to use with September 2018 Microsoft Security Updates.

Bug Fix

• In our previous stemcell, we made an optional argument os_version mandatory during the Invoke-Sysprep step. We have now fixed that, and detect the OS inherently.

1200.24

Features

• Intended to use with September 2018 Microsoft Security Updates.

Bug Fix

• In our previous stemcell, we made an optional argument os_version mandatory during the Invoke-Sysprep step. We have now fixed that, and detect the OS inherently.

1803.1

Features

• This is the first 1803 stemcell that we are publishing!
• Intended to use with August 2018 Microsoft Security Updates.
• Includes an important Microsoft Security Update that provides protections against a new speculative execution side-channel vulnerability known as L1 Terminal Fault (L1TF). More details here
• Compatible with the latest stable OpenSSH version - OpenSSH_for_Windows_v7.7.2.0p1

1200.23

Features

• Intended to use with August 2018 Microsoft Security Updates.
• Includes an important Microsoft Security Update that provides protections against a new speculative execution side-channel vulnerability known as L1 Terminal Fault (L1TF). More details here
• Compatible with the latest stable OpenSSH version - OpenSSH_for_Windows_v7.7.2.0p1

Security Updates

• Disabled use TLS 1.0 by SSL/TLS Server, Client
• Disabled RC4, DCOM
• Disabled triple-DES cipher to mitigate against Sweet32: Birthday attacks on 64-bit block ciphers in TLS.

1709.12

Features

• Intended to use with August 2018 Microsoft Security Updates.
• Includes an important Microsoft Security Update that provides protections against a new speculative execution side-channel vulnerability known as L1 Terminal Fault (L1TF). More details here
• Compatible with the latest stable OpenSSH version - OpenSSH_for_Windows_v7.7.2.0p1-Beta