Releases: envoyproxy/envoy
v1.30.3
repo: Release v1.30.3
Summary of changes:
- Bumped the version of datadog to resolve a crashing bug in earlier versions of the library.
Docker images:
https://hub.docker.com/r/envoyproxy/envoy/tags?page=1&name=v1.30.3
Docs:
https://www.envoyproxy.io/docs/envoy/v1.30.3/
Release notes:
https://www.envoyproxy.io/docs/envoy/v1.30.3/version_history/v1.30/v1.30.3
Full changelog:
v1.30.2...v1.30.3
Signed-off-by: Ryan Northey [email protected]
v1.29.6
repo: Release v1.29.6
Summary of changes:
- Bumped the version of datadog to resolve a crashing bug in earlier versions of the library.
Docker images:
https://hub.docker.com/r/envoyproxy/envoy/tags?page=1&name=v1.29.6
Docs:
https://www.envoyproxy.io/docs/envoy/v1.29.6/
Release notes:
https://www.envoyproxy.io/docs/envoy/v1.29.6/version_history/v1.29/v1.29.6
Full changelog:
v1.29.5...v1.29.6
Signed-off-by: Alyssa Wilk [email protected]
Signed-off-by: Greg Greenway [email protected]
Signed-off-by: Ryan Northey [email protected]
v1.30.2
repo: Release v1.30.2
Summary of changes:
- CVE-2024-34362: Crash (use-after-free) in EnvoyQuicServerStream
- CVE-2024-34363: Crash due to uncaught nlohmann JSON exception
- CVE-2024-34364: Envoy OOM vector from HTTP async client with unbounded response buffer for mirror response, and other components
- CVE-2024-32974: Crash in EnvoyQuicServerStream::OnInitialHeadersComplete()
- CVE-2024-32975: Crash in QuicheDataReader::PeekVarInt62Length()
- CVE-2024-32976: Endless loop while decompressing Brotli data with extra input
- CVE-2024-23326: Envoy incorrectly accepts HTTP 200 response for entering upgrade mode
Docker images:
https://hub.docker.com/r/envoyproxy/envoy/tags?page=1&name=v1.30.2
Docs:
https://www.envoyproxy.io/docs/envoy/v1.30.2/
Release notes:
https://www.envoyproxy.io/docs/envoy/v1.30.2/version_history/v1.30/v1.30.2
Full changelog:
v1.30.1...v1.30.2
Signed-off-by: Boteng Yao [email protected]
Signed-off-by: Ryan Northey [email protected]
v1.29.5
repo: Release v1.29.5
Summary of changes:
- CVE-2024-34362: Crash (use-after-free) in EnvoyQuicServerStream
- CVE-2024-34363: Crash due to uncaught nlohmann JSON exception
- CVE-2024-34364: Envoy OOM vector from HTTP async client with unbounded response buffer for mirror response, and other components
- CVE-2024-32974: Crash in EnvoyQuicServerStream::OnInitialHeadersComplete()
- CVE-2024-32975: Crash in QuicheDataReader::PeekVarInt62Length()
- CVE-2024-32976: Endless loop while decompressing Brotli data with extra input
- CVE-2024-23326: Envoy incorrectly accepts HTTP 200 response for entering upgrade mode
Docker images:
https://hub.docker.com/r/envoyproxy/envoy/tags?page=1&name=v1.29.5
Docs:
https://www.envoyproxy.io/docs/envoy/v1.29.5/
Release notes:
https://www.envoyproxy.io/docs/envoy/v1.29.5/version_history/v1.29/v1.29.5
Full changelog:
v1.29.4...v1.29.5
Signed-off-by: Boteng Yao [email protected]
Signed-off-by: Ryan Northey [email protected]
v1.28.4
repo: Release v1.28.4
Summary of changes:
- CVE-2024-34362: Crash (use-after-free) in EnvoyQuicServerStream
- CVE-2024-34363: Crash due to uncaught nlohmann JSON exception
- CVE-2024-34364: Envoy OOM vector from HTTP async client with unbounded response buffer for mirror response, and other components
- CVE-2024-32974: Crash in EnvoyQuicServerStream::OnInitialHeadersComplete()
- CVE-2024-32975: Crash in QuicheDataReader::PeekVarInt62Length()
- CVE-2024-32976: Endless loop while decompressing Brotli data with extra input
- CVE-2024-23326: Envoy incorrectly accepts HTTP 200 response for entering upgrade mode
Docker images:
https://hub.docker.com/r/envoyproxy/envoy/tags?page=1&name=v1.28.4
Docs:
https://www.envoyproxy.io/docs/envoy/v1.28.4/
Release notes:
https://www.envoyproxy.io/docs/envoy/v1.28.4/version_history/v1.28/v1.28.4
Full changelog:
v1.28.3...v1.28.4
Signed-off-by: Boteng Yao [email protected]
Signed-off-by: Ryan Northey [email protected]
v1.27.6
repo: Release v1.27.6
Summary of changes:
- CVE-2024-34362: Crash (use-after-free) in EnvoyQuicServerStream
- CVE-2024-34364: Envoy OOM vector from HTTP async client with unbounded response buffer for mirror response, and other components
- CVE-2024-32974: Crash in EnvoyQuicServerStream::OnInitialHeadersComplete()
- CVE-2024-32975: Crash in QuicheDataReader::PeekVarInt62Length()
- CVE-2024-32976: Endless loop while decompressing Brotli data with extra input
- CVE-2024-23326: Envoy incorrectly accepts HTTP 200 response for entering upgrade mode
Docker images:
https://hub.docker.com/r/envoyproxy/envoy/tags?page=1&name=v1.27.6
Docs:
https://www.envoyproxy.io/docs/envoy/v1.27.6/
Release notes:
https://www.envoyproxy.io/docs/envoy/v1.27.6/version_history/v1.27/v1.27.6
Full changelog:
v1.27.5...v1.27.6
Signed-off-by: Boteng Yao [email protected]
Signed-off-by: Ryan Northey [email protected]
v1.30.1
repo: Release v1.30.1
Summary of changes:
- Fix for potential TLS/SNI (
auto_sni) crash CVE-2024-32475.
Docker images:
https://hub.docker.com/r/envoyproxy/envoy/tags?page=1&name=v1.30.1
Docs:
https://www.envoyproxy.io/docs/envoy/v1.30.1/
Release notes:
https://www.envoyproxy.io/docs/envoy/v1.30.1/version_history/v1.30/v1.30.1
Full changelog:
v1.30.0...v1.30.1
v1.29.4
repo: Release v1.29.4
Summary of changes:
- Fix for potential TLS/SNI (
auto_sni) crash CVE-2024-32475. - Fix for
config_dumpin admin UI.
Docker images:
https://hub.docker.com/r/envoyproxy/envoy/tags?page=1&name=v1.29.4
Docs:
https://www.envoyproxy.io/docs/envoy/v1.29.4/
Release notes:
https://www.envoyproxy.io/docs/envoy/v1.29.4/version_history/v1.29/v1.29.4
Full changelog:
v1.29.3...v1.29.4
Signed-off-by: Ryan Northey [email protected]
v1.28.3
repo: Release v1.28.3
Summary of changes:
- Fix for potential TLS/SNI (
auto_sni) crash CVE-2024-32475.
Docker images:
https://hub.docker.com/r/envoyproxy/envoy/tags?page=1&name=v1.28.3
Docs:
https://www.envoyproxy.io/docs/envoy/v1.28.3/
Release notes:
https://www.envoyproxy.io/docs/envoy/v1.28.3/version_history/v1.28/v1.28.3
Full changelog:
v1.28.2...v1.28.3
Signed-off-by: Ryan Northey [email protected]
v1.27.5
repo: Release v1.27.5
Summary of changes:
- Fix for potential TLS/SNI (
auto_sni) crash CVE-2024-32475.
Docker images:
https://hub.docker.com/r/envoyproxy/envoy/tags?page=1&name=v1.27.5
Docs:
https://www.envoyproxy.io/docs/envoy/v1.27.5/
Release notes:
https://www.envoyproxy.io/docs/envoy/v1.27.5/version_history/v1.27/v1.27.5
Full changelog:
v1.27.4...v1.27.5
Signed-off-by: Ryan Northey [email protected]