Skip to content

Commit

Permalink
repo: Release v1.32.3
Browse files Browse the repository at this point in the history
- [CVE-2024-53269](GHSA-mfqp-7mmj-rm53): Happy Eyeballs: Validate that additional_address are IP addresses instead of crashing when sorting.
- [CVE-2024-53270](GHSA-q9qv-8j52-77p3):  HTTP/1: sending overload crashes when the request is reset beforehand
- [CVE-2024-53271](GHSA-rmm5-h2wv-mg4f):  HTTP/1.1 multiple issues with envoy.reloadable_features.http1_balsa_delay_reset

**Docker images**:
    https://hub.docker.com/r/envoyproxy/envoy/tags?page=1&name=v1.32.3
**Docs**:
    https://www.envoyproxy.io/docs/envoy/v1.32.3/
**Release notes**:
    https://www.envoyproxy.io/docs/envoy/v1.32.3/version_history/v1.32/v1.32.3
**Full changelog**:
    v1.32.2...v1.32.3

Signed-off-by: Ryan Northey <ryan@synca.io>
Signed-off-by: Boteng Yao <boteng@google.com>
  • Loading branch information
phlax committed Dec 18, 2024
1 parent 707921d commit 58bd599
Show file tree
Hide file tree
Showing 10 changed files with 34 additions and 20 deletions.
2 changes: 1 addition & 1 deletion VERSION.txt
Original file line number Diff line number Diff line change
@@ -1 +1 @@
1.32.3-dev
1.32.3
6 changes: 6 additions & 0 deletions changelogs/1.29.12.yaml
Original file line number Diff line number Diff line change
@@ -0,0 +1,6 @@
date: December 18, 2024

bug_fixes:
- area: http/1
change: |
Fixes sending overload crashes when HTTP/1 request is reset.
9 changes: 9 additions & 0 deletions changelogs/1.30.9.yaml
Original file line number Diff line number Diff line change
@@ -0,0 +1,9 @@
date: December 18, 2024

bug_fixes:
- area: http/1
change: |
Fixes sending overload crashes when HTTP/1 request is reset.
- area: happy_eyeballs
change: |
Validate that ``additional_address`` are IP addresses instead of crashing when sorting.
13 changes: 13 additions & 0 deletions changelogs/1.31.5.yaml
Original file line number Diff line number Diff line change
@@ -0,0 +1,13 @@
date: December 18, 2024

bug_fixes:
- area: http/1
change: |
Fixes sending overload crashes when HTTP/1 request is reset.
- area: happy_eyeballs
change: |
Validate that ``additional_address`` are IP addresses instead of crashing when sorting.
- area: balsa
change: |
Fix incorrect handling of non-101 1xx responses. This fix can be temporarily reverted by setting runtime guard
``envoy.reloadable_features.wait_for_first_byte_before_balsa_msg_done`` to false.
16 changes: 1 addition & 15 deletions changelogs/current.yaml
Original file line number Diff line number Diff line change
@@ -1,13 +1,6 @@
date: Pending

behavior_changes:
# *Changes that are expected to cause an incompatibility if applicable; deployment changes are likely required*

minor_behavior_changes:
# *Changes that may cause incompatibilities for some users, but should not for most*
date: December 18, 2024

bug_fixes:
# *Changes expected to improve the state of the world and are unlikely to have negative effects*
- area: http/1
change: |
Fixes sending overload crashes when HTTP/1 request is reset.
Expand All @@ -18,10 +11,3 @@ bug_fixes:
change: |
Fix incorrect handling of non-101 1xx responses. This fix can be temporarily reverted by setting runtime guard
``envoy.reloadable_features.wait_for_first_byte_before_balsa_msg_done`` to false.
removed_config_or_runtime:
# *Normally occurs at the end of the* :ref:`deprecation period <deprecated>`

new_features:

deprecated:
Binary file modified docs/inventories/v1.29/objects.inv
Binary file not shown.
Binary file modified docs/inventories/v1.30/objects.inv
Binary file not shown.
Binary file modified docs/inventories/v1.31/objects.inv
Binary file not shown.
Binary file modified docs/inventories/v1.32/objects.inv
Binary file not shown.
8 changes: 4 additions & 4 deletions docs/versions.yaml
Original file line number Diff line number Diff line change
Expand Up @@ -22,7 +22,7 @@
"1.26": 1.26.8
"1.27": 1.27.7
"1.28": 1.28.7
"1.29": 1.29.11
"1.30": 1.30.8
"1.31": 1.31.4
"1.32": 1.32.1
"1.29": 1.29.12
"1.30": 1.30.9
"1.31": 1.31.5
"1.32": 1.32.2

0 comments on commit 58bd599

Please sign in to comment.