Release Notes PMM 2.37.1 (#1089)

* Release Notes PMM 2.37.1

* Update 2.37.1.md

* Update 2.37.1.md

* Update 2.37.1.md

* Update mkdocs-base.yml

* version changes

* updated the config fike

* updated the config file

* Update mkdocs-base.yml

* Update 2.37.1.md

* Update 2.37.1.md

* Update docs/release-notes/2.37.1.md

Co-authored-by: Roman Novikov <[email protected]>

---------

Co-authored-by: Roman Novikov <[email protected]>

docs/release-notes/2.37.1.md

@@ -0,0 +1,34 @@
+# Percona Monitoring and Management 2.37.1
+
+| **Release date:** | Jun 5, 2023                                                                                  |
+| ----------------- | ----------------------------------------------------------------------------------------------- |
+| **Installation:** | [Installing Percona Monitoring and Management](https://www.percona.com/software/pmm/quickstart) |
+
+Percona Monitoring and Management (PMM) is an open source database monitoring, management, and observability solution for MySQL, PostgreSQL, and MongoDB.
+
+!!! caution alert alert-warning "Important"
+    We recommend using the latest version of PMM. This ensures that you have access to the latest PMM features and that your environment runs on the latest version of the underlying components, such as VictoriaMetrics, with all the bug fixes in place.
+
+## Release Highlights
+
+We have identified and fixed CVE-2023-34409 in PMM 2.37.1:
+
+[PMM-12182](https://jira.percona.com/browse/PMM-12182): PMM authentication bypass vulnerability
+
+**Workaround**
+
+If you are unable to update PMM you can resolve this issue as follows:
+
+1. Make changes to the NGINX configuration on the running PMM instance. To do so, create a Bash script with [the code from this script on GitHub](https://raw.githubusercontent.com/percona/pmm/main/scripts/authfix.sh). 
+
+2. Apply the code using this `docker` command on a server running the PMM Docker container (as root or using sudo):
+    ```sh
+    docker exec -it pmm-server bash -c 'curl -fsSL https://raw.githubusercontent.com/percona/pmm/main/scripts/authfix.sh  | /bin/bash '
+    ```
+3. If you are running PMM via a virtual appliance (OVF or AMI), use SSH to shell into the PMM server and run this command:
+    ```sh
+    curl -fsSL https://raw.githubusercontent.com/percona/pmm/main/scripts/authfix.sh  | /bin/bash
+    ```
+
+For more details see, [blogpost](https://docs.google.com/document/d/1DZ1VrM6bMR5EkM0YKiq317-h6wKQUHmYsCW1ja9AhPs/edit#).
+

docs/release-notes/index.md

@@ -1,4 +1,5 @@
 # Release Notes
+- [Percona Monitoring and Management 2.37.1](2.37.1.md)
 - [Percona Monitoring and Management 2.37.0](2.37.0.md)
 - [Percona Monitoring and Management 2.36.0](2.36.0.md)
 - [Percona Monitoring and Management 2.35.0](2.35.0.md)

mkdocs-base.yml

@@ -99,9 +99,9 @@ plugins:
       - "setting-up/client/docker.md"
   # https://github.com/orzih/mkdocs-with-pdf
   with-pdf:
-    output_path: '_pdf/PerconaMonitoringAndManagement-2.37.0.pdf'
+    output_path: '_pdf/PerconaMonitoringAndManagement-2.37.1.pdf'
     cover_title: 'Percona Monitoring and Management Documentation'
-    cover_subtitle: 2.37.0 (May 02, 2023)
+    cover_subtitle: 2.37.1 (Jun 02, 2023)
     author: "Percona Technical Documentation Team"
     cover_logo: docs/_images/Percona_Logo_Color.png
     custom_template_path: _resources/templates
@@ -316,6 +316,7 @@ nav:
   - faq.md
   - Release Notes:
       - release-notes/index.md
+      - "PMM 2.37.1": release-notes/2.37.1.md
       - "PMM 2.37.0": release-notes/2.37.0.md
       - "PMM 2.36.0": release-notes/2.36.0.md
       - "PMM 2.35.0": release-notes/2.35.0.md

variables.yml

@@ -1,9 +1,9 @@
 # PMM Version for HTML
 # See also mkdocs.yml plugins.with-pdf.cover_subtitle and output_path
 
-release: '2.37.0'
+release: '2.37.1'
 version: '2.37'
-release_date: 2023-05-02
+release_date: 2023-06-02
 
 # SVG icons. Use in markdown as {{icon.<name>}}
 # For the Percona image icon (encoded inline SVG), see https://css-tricks.com/using-svg/