## Improvements

### OpenJDK

We have moved from OracleJDK to AdoptOpenJDK. Oracle has changed its license on newer versions of the JDK. The OpenJDK project is delivering security updates in a version with a more open-source-friendly licensing policy.

### Increased Elasticsearch Memory Allocation

Elasticsearch is now allocated 1/3rd of available memory up to 32GB instead of 1/4th. Elasticsearch recommends using 1/2 of the available system memory, up to 32GB. We slightly reduced the allocated memory to allow room for other Chef Backend services.

## Component Updates

### Erlang 18.3

The Erlang language used to build Chef Backend has been updated from 18.2 to 18.3 to improve reliability.

### Etcd 2.3.8

Etcd has been updated from 2.3.7 to 2.3.8 to resolve bugs.

### Chef Infra Client 14.14.25

The embedded Chef Infra Client that configures Chef Backend has been updated from 14.11.21 to 14.14.25

## Security Fixes

### Elasticsearch 5.6.16

Elasticsearch has been updated from 5.4.1 to 5.6.16 to resolve a large number of bugs, improve performance, and resolve the following CVEs:

- CVE-2017-8442
- CVE-2019-7611

### Ruby 2.5.7

Ruby has been updated from 2.4.4 to 2.5.7 for performance improvements, bug fixes, and to resolve the following CVEs:

- CVE-2012-6708
- CVE-2015-9251
- CVE-2018-16395
- CVE-2018-16396
- CVE-2019-15845
- CVE-2019-16201
- CVE-2019-16254
- CVE-2019-16255
- CVE-2019-8320
- CVE-2019-8321
- CVE-2019-8322
- CVE-2019-8323
- CVE-2019-8324
- CVE-2019-8325

### PostgreSQL 9.5.19

PostgreSQL has been updated from 9.5.6 to 9.5.19 to resolve a large number of bugs and the following CVEs:

- CVE-2017-12172
- CVE-2017-15099
- CVE-2017-7484
- CVE-2017-7485
- CVE-2017-7486
- CVE-2017-7546
- CVE-2017-7547
- CVE-2017-7548
- CVE-2018-1053
- CVE-2018-1058
- CVE-2018-10915
- CVE-2018-10925
- CVE-2019-10130
- CVE-2019-10208

## Packaging

### New Platforms

- Added support for RHEL 8.

### Deprecations

- Removed support for Ubuntu 14.04.
- Removed support for SLES 11.