Tags · envoyproxy/envoy

v1.33.0

repo: Release v1.33.0

**Summary of changes**:

* c-ares:
- [CVE-2024-25629](GHSA-mg26-v6qh-x48q) Out of bounds read in c-ares (DNS)
* HTTP:
- RFC1918 addresses are no longer considered to be internal addresses by default. This addresses a security issue for Envoys in multi-tenant mesh environments.
- Shadow requests are now streamed in parallel with the original request.
- Local replies now traverse the filter chain if 1xx headers have been sent to the client.
* Tracing:
- Removed support for (long deprecated) Opencensus tracing extension.
* Wasm:
- The route cache will *not* be cleared by default if a Wasm extension modifies the request headers and the ABI version of wasm extension is larger than 0.2.1.
- Remove previously deprecated xDS attributes from `get_property`, use `xds` attributes instead.
- Added Wasm VM reload support and support for plugins writtin in Go.
* Access log:
- New implementation of the JSON formatter is enabled by default.
* CSRF:
- Increase the statistics counter `missing_source_origin` only for requests with a missing source origin.
* DNS:
- Added nameserver rotation and query timeouts/retries to the c-ares resolver.
* Formatter:
- `NaN` and `Infinity` values of float will be serialized to `null` and `inf` respectively in the metadata (`DYNAMIC_METADATA`, `CLUSTER_METADATA`, etc.) formatters.
* OAuth2:
- `use_refresh_token` is now enabled by default.
- Implement the Signed Double-Submit Cookie pattern.
* QUIC:
- Enable UDP GRO in QUIC client connections by default.
* SDS:
- Relaxed the backing cluster validation for Secret Discovery Service (SDS).
* TLS:
- Added support for P-384 and P-521 curves for server certificates, improved upstream SNI and SAN validation support.

**Docker images**:
https://hub.docker.com/r/envoyproxy/envoy/tags?page=1&name=v1.33.0
**Docs**:
https://www.envoyproxy.io/docs/envoy/v1.33.0/
**Release notes**:
https://www.envoyproxy.io/docs/envoy/v1.33.0/version_history/v1.33/v1.33.0
**Full changelog**:
v1.32.0...v1.33.0

Jan 14, 2025
b0f43d6
zip
tar.gz
Notes
Downloads

v1.32.3

repo: Release v1.32.3

- [CVE-2024-53269](GHSA-mfqp-7mmj-rm53): Happy Eyeballs: Validate that additional_address are IP addresses instead of crashing when sorting.
- [CVE-2024-53270](GHSA-q9qv-8j52-77p3):  HTTP/1: sending overload crashes when the request is reset beforehand
- [CVE-2024-53271](GHSA-rmm5-h2wv-mg4f):  HTTP/1.1 multiple issues with envoy.reloadable_features.http1_balsa_delay_reset

**Docker images**:
    https://hub.docker.com/r/envoyproxy/envoy/tags?page=1&name=v1.32.3
**Docs**:
    https://www.envoyproxy.io/docs/envoy/v1.32.3/
**Release notes**:
    https://www.envoyproxy.io/docs/envoy/v1.32.3/version_history/v1.32/v1.32.3
**Full changelog**:
    v1.32.2...v1.32.3

Signed-off-by: Ryan Northey <ryan@synca.io>
Signed-off-by: Boteng Yao <boteng@google.com>

Dec 18, 2024
58bd599
zip
tar.gz
Notes
Downloads

v1.31.5

repo: Release v1.31.5

**Summary of changes**:

- [CVE-2024-53269](GHSA-mfqp-7mmj-rm53): Happy Eyeballs: Validate that additional_address are IP addresses instead of crashing when sorting.
- [CVE-2024-53270](GHSA-q9qv-8j52-77p3):  HTTP/1: sending overload crashes when the request is reset beforehand
- [CVE-2024-53271](GHSA-rmm5-h2wv-mg4f):  HTTP/1.1 multiple issues with envoy.reloadable_features.http1_balsa_delay_reset

**Docker images**:
    https://hub.docker.com/r/envoyproxy/envoy/tags?page=1&name=v1.31.5
**Docs**:
    https://www.envoyproxy.io/docs/envoy/v1.31.5/
**Release notes**:
    https://www.envoyproxy.io/docs/envoy/v1.31.5/version_history/v1.31/v1.31.5
**Full changelog**:
    v1.31.4...v1.31.5

Signed-off-by: Ryan Northey <ryan@synca.io>
Signed-off-by: Boteng Yao <boteng@google.com>

Dec 18, 2024
688c4bb
zip
tar.gz
Notes
Downloads

v1.30.9

repo: Release v1.30.9

- [CVE-2024-53269](GHSA-mfqp-7mmj-rm53): Happy Eyeballs: Validate that additional_address are IP addresses instead of crashing when sorting.
- [CVE-2024-53270](GHSA-q9qv-8j52-77p3):  HTTP/1: sending overload crashes when the request is reset beforehand

**Docker images**:
    https://hub.docker.com/r/envoyproxy/envoy/tags?page=1&name=v1.30.9
**Docs**:
    https://www.envoyproxy.io/docs/envoy/v1.30.9/
**Release notes**:
    https://www.envoyproxy.io/docs/envoy/v1.30.9/version_history/v1.30/v1.30.9
**Full changelog**:
    v1.30.8...v1.30.9

Signed-off-by: Ryan Northey <ryan@synca.io>
Signed-off-by: Boteng Yao <boteng@google.com>

Dec 18, 2024
e409e0a
zip
tar.gz
Notes
Downloads

v1.29.12

repo: Release v1.29.12

**Summary of changes**:

- [CVE-2024-53270](GHSA-q9qv-8j52-77p3):  HTTP/1: sending overload crashes when the request is reset beforehand

**Docker images**:
    https://hub.docker.com/r/envoyproxy/envoy/tags?page=1&name=v1.29.12
**Docs**:
    https://www.envoyproxy.io/docs/envoy/v1.29.12/
**Release notes**:
    https://www.envoyproxy.io/docs/envoy/v1.29.12/version_history/v1.29/v1.29.12
**Full changelog**:
    v1.29.11...v1.29.12

Signed-off-by: Ryan Northey <ryan@synca.io>

Dec 18, 2024
5c3dc55
zip
tar.gz
Notes
Downloads

v1.32.2

repo: Release v1.32.2

**Summary of changes**:

- Minor bug fixes

**Docker images**:
    https://hub.docker.com/r/envoyproxy/envoy/tags?page=1&name=v1.32.2
**Docs**:
    https://www.envoyproxy.io/docs/envoy/v1.32.2/
**Release notes**:
    https://www.envoyproxy.io/docs/envoy/v1.32.2/version_history/v1.32/v1.32.2
**Full changelog**:
    v1.32.1...v1.32.2

Signed-off-by: Ryan Northey <ryan@synca.io>

Dec 8, 2024
a0504e8
zip
tar.gz
Notes
Downloads

v1.31.4

repo: Release v1.31.4

**Summary of changes**:

- Minor bug fixes

**Docker images**:
    https://hub.docker.com/r/envoyproxy/envoy/tags?page=1&name=v1.31.4
**Docs**:
    https://www.envoyproxy.io/docs/envoy/v1.31.4/
**Release notes**:
    https://www.envoyproxy.io/docs/envoy/v1.31.4/version_history/v1.31/v1.31.4
**Full changelog**:
    v1.31.3...v1.31.4

Signed-off-by: Ryan Northey <ryan@synca.io>

Dec 8, 2024
d045f42
zip
tar.gz
Notes
Downloads

v1.30.8

repo: Release v1.30.8

**Summary of changes**

- Minor bug fixes

**Docker images**:
    https://hub.docker.com/r/envoyproxy/envoy/tags?page=1&name=v1.30.8
**Docs**:
    https://www.envoyproxy.io/docs/envoy/v1.30.8/
**Release notes**:
    https://www.envoyproxy.io/docs/envoy/v1.30.8/version_history/v1.30/v1.30.8
**Full changelog**:
    v1.30.7...v1.30.8

Signed-off-by: Ryan Northey <ryan@synca.io>

Signed-off-by: publish-envoy[bot] <140627008+publish-envoy[bot]@users.noreply.github.com>

Dec 8, 2024
ea0914e
zip
tar.gz
Notes
Downloads

v1.29.11

repo: Release v1.29.11

**Docker images**:
    https://hub.docker.com/r/envoyproxy/envoy/tags?page=1&name=v1.29.11
**Docs**:
    https://www.envoyproxy.io/docs/envoy/v1.29.11/
**Release notes**:
    https://www.envoyproxy.io/docs/envoy/v1.29.11/version_history/v1.29/v1.29.11
**Full changelog**:
    v1.29.10...v1.29.11

Signed-off-by: Ryan Northey <ryan@synca.io>

Dec 8, 2024
ca27f77
zip
tar.gz
Notes
Downloads

v1.32.1

repo: Release v1.32.1

**Summary of changes**:

- CI and release container updates

**Docker images**:
    https://hub.docker.com/r/envoyproxy/envoy/tags?page=1&name=v1.32.1
**Docs**:
    https://www.envoyproxy.io/docs/envoy/v1.32.1/
**Release notes**:
    https://www.envoyproxy.io/docs/envoy/v1.32.1/version_history/v1.32/v1.32.1
**Full changelog**:
    v1.32.0...v1.32.1

Signed-off-by: Kateryna Nezdolii <kateryna.nezdolii@gmail.com>
Signed-off-by: Ryan Northey <ryan@synca.io>
Signed-off-by: publish-envoy[bot] <140627008+publish-envoy[bot]@users.noreply.github.com>

Oct 29, 2024
f7f0a80
zip
tar.gz
Notes
Downloads

PreviousNext

Provide feedback

Saved searches

Use saved searches to filter your results more quickly