RATATOSKRATATOSK
ログイン

リリース

CNCF graduated・incubatingプロジェクトのリリースノートのAI分析。

2026年6月解除 ×

wasmCloud

Orchestration & Management2026年6月30日

wasmCloud v2.5.0 はフィーチャーリリースです。wasmtime 46 への更新と wasip3 のデフォルト有効化、wasmcloud:keyvalue bucket WIT の破壊的変更、および quinn-proto の MEDIUM セキュリティ修正 (RUST-SEC-2026-0185) が主な変更点です。wasmcloud:keyvalue を利用しているコンポーネントは WIT の対応が必要です。

  • securityquinn-proto のセキュリティ修正 (RUST-SEC-2026-0185)

    MEDIUM 深刻度の rust-sec-2026-0185 (quinn-proto) を修正しています。QUIC 通信を利用する環境では v2.5.0 へ更新してください。

  • breakingwasmcloud:keyvalue bucket のWIT定義が破壊的変更

    wasmcloud:keyvalue の bucket 型がインターフェースごとのインライン定義から共有 types インターフェース経由の定義に移動しました。wasmcloud:keyvalue WIT を利用するコンポーネントやプロバイダは WIT の修正とリビルドが必要です。

  • breakingwasip3 がデフォルト有効化

    wasip3 が v2.5.0 からデフォルトで有効になりました。wasip3 対応外のワークロードで予期しない動作が発生する場合は、設定で明示的に無効化してください。

主な変更 (7)
  • 破壊的変更: wasmcloud:keyvalue の bucket 型を types インターフェースに移動。wasmcloud:keyvalue を使うコンポーネントとプロバイダは WIT 修正とリビルドが必要
  • wasmtime 46 に更新し、wasip3 がデフォルト有効化。wasip3 非対応ワークロードへの影響を確認すること
  • セキュリティ: quinn-proto の RUST-SEC-2026-0185 (MEDIUM) を修正
  • 非同期 wasmcloud:keyvalue および wasmcloud:blobstore WIT インターフェースを追加。wasi:keyvalue / wasmcloud:postgres / wasmcloud:messaging/consumer の多重化 (implements ..) もサポート
  • wash-runtime が P3 HTTP レスポンスのストリーミングと gRPC タイムアウト後のボディ解放に対応。エフェメラルタスクへの AbortOnDrop 適用でリーク防止
  • エンドツーエンドの operator 実装を追加し、runtime-operator Helm チャートのリントと堅牢化を実施。operator キャッシュが server-side apply を正しく使うよう修正
  • その他: wash new のパス末尾スラッシュ対応・Windows パス対応、WIT パッケージを名前空間付き OCI パスへ公開、s390x バイナリビルド追加など細かな改善
原文

Flux

CI/CD & App Delivery2026年6月30日

Flux v2.9.0 は機能拡張リリースです。CLI プラグインシステムやセキュリティ機能の充実など複数の新機能を導入する一方、image.toolkit.fluxcd.io/v1beta2 および notification.toolkit.fluxcd.io/v1beta2 の 2 つの API を廃止します。これらの API を使用しているマニフェストがある場合は、アップグレード前に v1 系への移行が必要です。

  • breakingimage.toolkit.fluxcd.io/v1beta2 の廃止

    image.toolkit.fluxcd.io/v1beta2 を使用しているマニフェストまたはカスタムリソースは v2.9.0 では動作しません。v1 系 API へ移行してください。

  • breakingnotification.toolkit.fluxcd.io/v1beta2 の廃止

    notification.toolkit.fluxcd.io/v1beta2 を使用しているマニフェストまたはカスタムリソースは v2.9.0 では動作しません。v1 系 API へ移行してください。

主な変更 (8)
  • 2つの長期非推奨 API (image.toolkit.fluxcd.io/v1beta2、notification.toolkit.fluxcd.io/v1beta2) を削除
  • Flux CLI プラグインシステムを導入 (Mirror、Schema プラグイン)
  • Kustomization で Server-Side Apply の差分制御ルール、Age 暗号を使った SOPS 復号化、Workload Identity による OpenBao/Vault 認証に対応
  • HelmRelease の post-render ストラテジ、Helm 値リテラルモード、Git コミット署名・検証 (SSH キー) に対応
  • GitRepository で AWS CodeCommit 認証 (Workload Identity)、OCIRepository で Sigstore カスタム信頼ルート対応
  • webhook Receivers を秘密なし OIDC 認証へ対応、ArtifactGenerator のパターンマッチ型ディレクトリ発見対応
  • コンポーネント更新: source-controller v1.9.1、kustomize-controller v1.9.1、notification-controller v1.9.1、helm-controller v1.6.1 ほか; CLI は Kubernetes 1.36、Go 1.26 対応
  • 各種 CLI コマンド・フラグ追加 (`flux create secret receiver`、`flux trigger receiver`、`--in-memory-build` など)、resume 終了コード・シンボリックリンク処理・メタデータラベル保持など複数の修正
原文

Kubescape

Security2026年6月30日

日本語 準備中Kubescape v4.0.10 is a feature and hardening release: it closes an SSRF gap in the scan-completion webhook, tightens config.json permissions and validation, and removes a dead CRD, alongside a large batch of bug fixes and new capabilities like `operator remediate` and encrypted report decryption. No CVE-tracked vulnerabilities are disclosed in this release.

  • securitySSRF hardening on scan-completion webhook

    The scan-completion webhook callback now hardens against SSRF. Applies to users of the webhook callback feature; upgrade if you rely on it to avoid outbound requests being abused via crafted callback URLs.

  • breakingconfig.json permissions restricted to owner-only

    config.json is now written with owner-only permissions instead of broader access. Applies unconditionally; review any tooling or automation that reads this file as a different user, since it may now fail to access it.

  • breakingRemoval of orphan SecurityException CRD

    The orphan SecurityException CRD, which was never installable, has been removed. Applies only if you had references to this CRD in manifests or docs; it has no functional impact since it never worked.

  • enhancementStricter validation on --format and VAP controls

    The --format flag now rejects invalid values before a scan starts, and VAP configurable controls now require params. Applies if you script scans with an unchecked --format value or run VAP controls without required params; these calls will now fail fast instead of proceeding silently.

主な変更 (8)
  • SSRF-hardened scan-completion webhook callback closes a request-forgery gap in outbound notifications.
  • config.json permissions tightened to owner-only, changing default file access for existing installs.
  • Orphan, uninstallable SecurityException CRD removed along with its test.
  • Validation tightened in two spots: --format now rejects invalid values pre-scan, and VAP configurable controls require params.
  • New `operator remediate` CLI subcommand (annotate and dry-run modes), CEL env builder/evaluator for the VAP engine, and encrypted report decryption with DEK wrapping.
  • New scan coverage score metric penalizing silent failed GVR pulls, plus per-control evaluation timeouts in the OPA processor (timed-out controls score 0 and discard partial results).
  • Several panic fixes (nil ScanData, image names without an organization, scan execution goroutine) plus HTTP timeouts on the scan listener server.
  • Plus roughly ten smaller fixes: resource deduplication, host-sensor infoMap merging, SARIF line resolution, output overwrite prevention, orphaned RoleBinding handling, and a Go 1.26 codebase update.
原文

OpenFGA

Security2026年6月29日

日本語 準備中v1.18.1 is a routine patch that fixes CIDR matching behavior and serialization determinism while extending an experimental flag to BatchCheck. No breaking changes or CVEs are reported, though the in_cidr fix does change matching behavior for IPv4-mapped IPv6 addresses.

  • breakingin_cidr now matches IPv4-mapped IPv6 addresses against IPv4 CIDRs

    Applies unconditionally: the in_cidr condition now normalizes IPv4-mapped IPv6 addresses (e.g. ::ffff:192.168.1.1) to their IPv4 form before matching, so they can now match IPv4 CIDRs like 192.168.1.0/24. Review any authorization models relying on in_cidr if you expect these addresses to be excluded from IPv4 ranges.

主な変更 (4)
  • in_cidr condition now normalizes IPv4-mapped IPv6 addresses (RFC 4291 §2.5.5.2) to their IPv4 equivalent, so ::ffff:192.168.1.1 matches 192.168.1.0/24
  • Adds diagnostic logging in weighted_graph_check, Expand, and ListUsers to flag models where a future v2 Check resolution might diverge from v1; no operator action required now
  • Experimental weighted_graph_check flag now extends to BatchCheck, evaluating each item with the weighted graph algorithm and falling back per-item to the standard algorithm on non-terminal errors
  • Authorization model serialization to serialized_protobuf now uses deterministic proto marshaling, fixing inconsistent stored bytes for models with map-keyed type definitions
原文

NATS

Networking & Messaging2026年6月29日

日本語 準備中NATS server v2.14.3 is a maintenance release dominated by JetStream, MQTT and clustering bug fixes, with two MQTT fixes closing pre-auth memory exhaustion and panic conditions and one breaking change: JSONP monitoring support has been removed.

  • securityMQTT memory exhaustion and panic fixes

    Applies to servers exposing MQTT. Fixed in v2.14.3: malformed partial CONNECT packets could exhaust pre-auth memory, and a PUBLISH remaining-length underflow could panic the server. Upgrade if you run MQTT, especially with untrusted or public clients.

  • breakingJSONP monitoring support removed

    Applies to deployments relying on JSONP callbacks against monitoring endpoints (e.g. /varz, /connz via callback= param). This is removed in v2.14.3; switch dashboards or scripts to plain JSON polling before upgrading.

  • breakingPermission checks tightened for leaf trace destination and NoAuthUser

    Applies to leaf node setups using Nats-Trace-Dest, and to accounts using NoAuthUser. Fixed in v2.14.3: leaf connections could bypass Nats-Trace-Dest publish permission checks, and NoAuthUser did not enforce connection restrictions. Review permission and NoAuthUser configs after upgrading, since previously permitted traffic may now be denied as intended.

主な変更 (7)
  • MQTT fixes for partial CONNECT pre-auth memory exhaustion and a PUBLISH remaining-length underflow panic, both fixed in v2.14.3
  • Permission enforcement tightened: leaf connections no longer bypass Nats-Trace-Dest checks, and NoAuthUser now honors connection restrictions
  • JSONP callback support removed from monitoring endpoints (breaking for any tooling still using it)
  • Large JetStream clustering/Raft reliability batch: meta node data race on shutdown, stream catchup no longer skipped past limits, phantom streams/consumers after meta recovery, Raft membership revert on truncate/snapshot, and related consistency fixes
  • MQTT hardening: rejects subscriptions to internal $MQTT.deliver.pubrel, enforces subscribe deny rules on retained/QoS replay paths, and fixes a WebSocket /mqtt upgrade panic when MQTT is disabled
  • Filestore and memory store corrections: compaction no longer corrupts compressed/encrypted blocks, NumPending overcount fixed for DeliverLastPerSubject, counter stream staging total no longer corrupts
  • Plus roughly two dozen smaller fixes: PROXY/TLS sniffing, gateway CONNECT race, service import tracing across routes, CONNZ/SUBSZ overflow guards, JWT/account claims refresh, and Go updated to 1.26.4
原文

NATS

Networking & Messaging2026年6月29日

日本語 準備中v2.12.12 is a bugfix and hardening release for nats-server, centered on numerous JetStream/Raft data-integrity and panic fixes plus removal of JSONP support from monitoring endpoints. No CVEs are disclosed, but several fixes close memory-exhaustion and panic paths reachable via malformed MQTT input that operators should treat as security-relevant.

  • securityMQTT partial-CONNECT and PUBLISH-underflow crash/DoS fixes

    If you run MQTT, upgrade to fix two memory-exhaustion/panic paths: partial CONNECT packets could exhaust pre-authentication memory, and PUBLISH remaining-length underflow could panic the server. Both are exploitable by unauthenticated clients sending malformed input.

  • securityInteger-overflow panics fixed in monitoring and JetStream usage tracking

    CONNZ/SUBSZ pagination previously could panic on integer overflow, and JetStream remote usage updates could panic on length integer overflow. Operators with large clusters or heavy monitoring polling should upgrade to remove these panic-inducing edge cases.

  • breakingJSONP support removed from monitoring endpoints

    JSONP callback support has been removed from monitoring endpoints in v2.12.12, unconditionally. Any tooling or dashboards that rely on JSONP callbacks against /varz, /connz, or similar endpoints will break and must switch to plain JSON requests.

主な変更 (8)
  • JSONP callback support removed from monitoring endpoints (breaking for any tooling still using it)
  • MQTT hardening: partial CONNECT no longer exhausts pre-auth memory, PUBLISH remaining-length underflow no longer panics the server, plus fixes for $MQTT.deliver.pubrel subscription abuse, deny-rule enforcement on retained/QoS replay, and a WebSocket /mqtt upgrade panic when MQTT is disabled
  • Large batch of JetStream/Raft data-integrity fixes: filestore compaction corruption, counter stream staging corruption, meta recovery phantom streams/consumers, raft checkpoint/ApplyCommit correctness, stream catchup desync, and membership revert on truncate/snapshot
  • Panic and integer-overflow fixes in CONNZ/SUBSZ pagination, JetStream remote usage updates, and a nil-pointer panic on startup when the resolver parent directory is missing
  • Multiple panic, fatal-error, and data-race fixes across authentication, routing, monitoring, and clustered request handling
  • Gateway/proxy fixes: race in gateway CONNECT handling, leak in trusted proxy tracking, PROXY protocol detection, TLS sniffing with allow_non_tls, and PROXY v1 address-family parsing
  • Service import replies now deliver across cluster routes, and message tracing works correctly with imports/exports; JWT inherited default permissions and external auth config now refresh correctly on account claim updates
  • Plus routine fixes: quieter per-connection logging, consistent writer options under s2_fast compression, and refactored stream/consumer assignment handling for migrations
原文
Open Policy Agent (OPA)v1.18.1原文2026年6月29日

Strimzi

Networking & Messaging2026年6月27日

日本語 準備中Strimzi 1.1.0 is a feature release adding Kafka 4.3.0 and 4.2.1 support while dropping Kafka 4.1.x, along with several capability additions. Operators should act on two breaking changes before upgrading: the entity-operator healthcheck port renames and the TLS truststore format switch in KafkaBridge and KafkaMirrorMaker2.

  • breakingEntity-operator healthcheck ports renamed

    The entity-operator healthcheck port `healthcheck` has been renamed to `healthcheck-to` (topic-operator) and `healthcheck-uo` (user-operator). Any custom PodMonitor, ServiceMonitor, NetworkPolicy, or similar resources that reference the old port name must be updated before or immediately after upgrading.

  • breakingKafka 4.1.x support removed

    Kafka 4.1.x is no longer supported in 1.1.0. Clusters running Kafka 4.1.x must be upgraded to 4.2.1 or 4.3.0 before moving to this Strimzi version.

  • breakingTLS truststore format changed to PEM for KafkaBridge and KafkaMirrorMaker2

    KafkaBridge and KafkaMirrorMaker2 now use PEM files instead of P12/JKS for TLS authentication and truststore. Review any tooling or external systems that expect P12/JKS formats from these components.

  • breakingCRD v1 only — older API versions unsupported

    CRD API versions v1beta2, v1beta1, and v1alpha1 are not supported since 1.0.0. If you have not already converted your resources to v1, do so before upgrading to 1.1.0.

主な変更 (8)
  • Adds support for Apache Kafka 4.3.0 and 4.2.1; Kafka 4.1.x is removed and no longer supported.
  • Entity-operator healthcheck port names renamed: `healthcheck` is now `healthcheck-to` for the topic-operator and `healthcheck-uo` for the user-operator; update any referencing resources.
  • KafkaBridge and KafkaMirrorMaker2 switch from P12/JKS to PEM for TLS authentication and truststores, with PEM files read directly from secrets via KubernetesSecretConfigProvider.
  • Failed KafkaConnectors can now be stopped; pausing a failed connector is rejected because Kafka Connect does not support that operation.
  • New cluster operator option `STRIMZI_PKCS12_KEYSTORE_GENERATION` disables PKCS12 store generation in CA and KafkaUser Secret resources; mTLS `validityDays` and `renewalDays` are now configurable per KafkaUser.
  • Gateway API `tlsroute` listener type, per-broker listener annotation/label templates, and dependency scope configuration for Maven artifacts in Kafka Connect Build are all now supported.
  • Adds `UseBackgroundPodDeletion` feature gate (alpha, disabled by default) to use background deletion propagation when deleting pods during rolling updates.
  • Strimzi Drain Cleaner updated to 1.6.0 and Strimzi Access Operator updated to 0.3.0, both included in the installation files.
原文

Volcano

Orchestration & Management2026年6月27日

日本語 準備中Volcano v1.14.3 is a routine patch release consisting entirely of backported scheduler bug fixes. No new features, deprecations, or security changes are included.

主な変更 (7)
  • Network-Topology-Aware scheduling soft mode corrected for jobs and subjobs
  • Scalar in-queue resource accounting now uses milli-units, fixing precision errors in resource calculations
  • HAMi vGPU scheduling failures in medium and large clusters resolved
  • Ascend vNPU health check switched to Allocatable resources instead of the previous method
  • Preemption now reprievess higher-priority pods first, restoring correct ordering
  • job.Status.Conditions unbounded growth prevented, reducing memory and etcd pressure on long-running jobs
  • Several smaller scheduler fixes: device annotation cleanup on pod release, minAvailable fallback to replicas when minPartitions is omitted, ImageStates restored in node snapshots, and maxFloat/maxInt display corrections
原文

Keycloak

Security2026年6月26日

日本語 準備中Keycloak 26.6.4 is a security release fixing eight CVEs, including two critical issues (privilege escalation and JWT authentication bypass) and four high-severity authorization bypasses. Operators should upgrade promptly; the release also bumps Quarkus to 3.33.2.1.

  • securityTwo critical vulnerabilities: group-admin escalation and JWT auth bypass

    CVE-2026-9099 lets a group admin escalate to realm-admin, and CVE-2026-11800 allows authentication bypass via JWT algorithm confusion. Both are rated critical. Upgrade to 26.6.4 as soon as possible.

  • securityFour high-severity authorization and access-control bypasses

    CVE-2026-9705 (client takeover via registration access token), CVE-2026-9795 (privilege escalation via scope mapping), CVE-2026-9799 (UMA permission ticket bypass), and CVE-2026-9800 (policy enforcer authorization bypass via incorrect URI comparison) are all rated high. If you use UMA authorization, fine-grained scope mappings, or the Policy Enforcer, prioritize this upgrade.

  • securityTwo medium-severity issues: info disclosure and XSS

    CVE-2026-9083 (filesystem path probing) and CVE-2026-9086 (XSS via case-insensitive URI validation bypass) are rated medium and round out the fix set.

主な変更 (5)
  • Eight CVEs fixed in this release, two rated critical: CVE-2026-9099 (group-admin to realm-admin escalation) and CVE-2026-11800 (JWT algorithm confusion auth bypass)
  • Four high-severity fixes: client takeover via registration access token (CVE-2026-9705), scope-mapping privilege escalation (CVE-2026-9795), UMA permission ticket bypass (CVE-2026-9799), and Policy Enforcer authorization bypass via URI comparison (CVE-2026-9800)
  • Two medium-severity fixes: filesystem path probing information disclosure (CVE-2026-9083) and URI validation bypass XSS (CVE-2026-9086)
  • Quarkus dependency bumped to 3.33.2.1
  • Minor build and packaging fixes: Infinispan protoschema build on the 26.2 branch, CI fixes for JS and Admin Client test suites, keycloak-api-docs-dist packaging, plus a migration guide reference correction
原文
Operator Frameworkv1.42.3原文2026年6月26日

Open Policy Agent (OPA)

Security2026年6月25日

日本語 準備中v1.18.0 is a bugfix rollup with one operator-facing behavior change: the outbound User-Agent header is now hyphenated to conform to RFC 9110. The remaining changes are runtime improvements, formatter and coverage tool fixes, and a Go toolchain bump.

  • breakingUser-Agent header format changed (RFC 9110 conformance)

    The outbound User-Agent header OPA sends on HTTP requests changed from 'Open Policy Agent/<version> (<os>, <arch>)' to 'Open-Policy-Agent/<version> (<os>, <arch>)' (hyphen added between 'Open' and 'Policy'). Any server-side log filters, WAF rules, or access policies that exact-match the old string must be updated after upgrading to v1.18.0.

主な変更 (7)
  • User-Agent header now uses 'Open-Policy-Agent' (hyphenated) instead of 'Open Policy Agent'; exact-match log filters or WAF rules targeting the old string will break
  • Container-aware resource limits restored and extended: automatic GOMAXPROCS support is back, and automatic GOMEMLIMIT is newly supported
  • Multiple opa fmt correctness fixes: multiline single-entry iterables are preserved, and with-clauses dropped after comments are restored
  • opa test --coverage improvements: ranges now included in the report, inline rule head tracking, and conjunction expression coverage added
  • Fixed partial evaluation regression for future.keywords.not negation inside every blocks, and fixed variable namespacing in comprehensions nested inside every
  • Performance: reduced allocations in object.get, removed a shortcut in topdown dst.Compare(src), and skipped strconv.ParseInt in the format_int base-10 fast path
  • Go bumped from 1.26.3 to 1.26.4; various website and node dependencies also updated
原文

OpenCost

Observability2026年6月25日

日本語 準備中This is a routine patch release for OpenCost, dominated by bug fixes for GPU pricing, data races, and Azure Windows pricing, plus a new STACKIT provider integration. There are no breaking changes, deprecations, or CVE fixes in this release.

主な変更 (7)
  • Several data-race and stability fixes: cloudcost Status coverage read is now guarded and the ClusterMap ticker is stopped to prevent leaks, customcost Status() copies its coverage map, and GPUAllocation.Equal now compares pointer field values correctly
  • On-demand pricing is now OS-aware for Azure Windows nodes, correcting pricing calculations that previously used the wrong base rate
  • Custom provider GPU default pricing is fixed, and a nil filter guard was added to prevent a crash
  • Cloud pricing HTTP clients now have timeouts to prevent hangs
  • STACKIT added as a supported cloud provider
  • New queryProjectID field on BigQueryConfiguration, plus GKE Workload Identity Federation support for accessing Provider Pricing Data
  • Smaller items: step parameter exposed in the get_efficiency tool, Bingen 0.1.1 streaming writer support, UI build tooling switched from parcel to react-router/vite, Dockerfile.debug restored for Tilt, and reduced log verbosity for spot price auth failures
原文

cert-manager

Security2026年6月25日

日本語 準備中v1.19.6 is a security patch fixing a HIGH severity RBAC privilege escalation in the cert-manager-edit ClusterRole that let users create ACME Challenge and Order resources directly, plus a Go toolchain update closing three CVEs. The RBAC fix includes a documented breaking permission change.

  • securityRBAC privilege escalation via ACME Challenge/Order creation

    Applies to v1.19.6: the default cert-manager-edit aggregate ClusterRole previously let namespace users create ACME Challenge and Order resources directly, bypassing Issuer solver selectors. This is fixed by removing create for challenges.acme.cert-manager.io and create/patch/update for orders.acme.cert-manager.io from that role. Upgrade to v1.19.6 to close this HIGH severity RBAC gap (GHSA-8rvj-mm4h-c258).

  • securityGo toolchain updated to 1.25.11 for three CVEs

    Applies unconditionally in v1.19.6: Go is updated to 1.25.11, fixing CVE-2026-27145, CVE-2026-42504, and CVE-2026-42507. No action needed beyond upgrading.

  • breakingcert-manager-edit ClusterRole loses Challenge/Order create permissions

    If any tooling or workflow creates Challenge or Order resources directly, outside the normal Certificate to CertificateRequest to Order to Challenge flow, it will lose that access after upgrading and needs those permissions granted explicitly.

主な変更 (4)
  • HIGH severity RBAC fix (GHSA-8rvj-mm4h-c258): cert-manager-edit ClusterRole allowed users to create ACME Challenge/Order resources directly, bypassing Issuer solver selectors
  • Breaking: cert-manager-edit no longer grants create on challenges.acme.cert-manager.io or create/patch/update on orders.acme.cert-manager.io; direct Challenge/Order tooling needs explicit permissions now
  • Go updated to 1.25.11, fixing CVE-2026-27145, CVE-2026-42504, and CVE-2026-42507
  • Earlier Go bump to 1.25.10 plus other unspecified dependency updates
原文

cert-manager

Security2026年6月25日

日本語 準備中v1.20.3 is a security release primarily addressing a HIGH-severity RBAC over-permission (GHSA-8rvj-mm4h-c258) in the cert-manager-edit ClusterRole, and updating Go to v1.26.4 for three CVEs. Operators should audit any workflows that create Challenge or Order resources directly before upgrading, as those permissions are now removed.

  • securityRBAC over-permission in cert-manager-edit ClusterRole (GHSA-8rvj-mm4h-c258)

    GHSA-8rvj-mm4h-c258 (HIGH): the cert-manager-edit aggregate ClusterRole previously allowed namespace users to create Challenge and Order resources directly, bypassing Issuer solver selectors. Fixed in v1.20.3. Upgrade immediately if untrusted namespace users exist in your cluster.

  • securityGo runtime updated to v1.26.4 (3 CVEs)

    Go updated to v1.26.4, patching CVE-2026-27145, CVE-2026-42504, and CVE-2026-42507. No additional configuration is required; upgrading cert-manager picks up the fix.

  • breakingBreaking RBAC change: direct Challenge and Order creation removed from cert-manager-edit

    cert-manager-edit no longer grants create on challenges.acme.cert-manager.io, or create/patch/update on orders.acme.cert-manager.io. If any tooling or CI workflow creates Challenge or Order objects directly (outside the normal Certificate → CertificateRequest → Order → Challenge flow), those calls will fail after upgrading. Review and update any such automation before rolling out v1.20.3.

主な変更 (4)
  • HIGH-severity RBAC fix (GHSA-8rvj-mm4h-c258): cert-manager-edit ClusterRole no longer allows direct creation of Challenge or Order resources, closing a path that let namespace users bypass Issuer solver selectors.
  • Breaking RBAC change: create removed for challenges.acme.cert-manager.io; create, patch, and update removed for orders.acme.cert-manager.io from the cert-manager-edit aggregate ClusterRole.
  • Go updated to v1.26.4, fixing three CVEs (CVE-2026-27145, CVE-2026-42504, CVE-2026-42507).
  • Bugfix: the issuer owner reference has been removed from Challenge resources, which was preventing Challenge garbage collection.
原文

Fluentd

Observability2026年6月25日

日本語 準備中Fluentd v1.19.3 is a security and hardening patch: it tightens validation in out_http (host checks) and output (tag path boundaries), enforces size limits on decompressed payloads in buffer and in_http, and restricts default access and visibility for in_monitor_agent and in_debug_agent. Bug fixes address storage, parsing, and connection reuse issues.

  • breakingout_http: strict host validation for dynamic endpoints

    Host validation for dynamic endpoints in out_http is now strictly enforced in v1.19.3. Configuration that supplies hostnames to out_http at runtime must now conform to stricter validation rules.

  • breakingbuffer, in_http: decompressed payload size limits

    Decompressed payload sizes are now limited in buffer and in_http as of v1.19.3. Requests or buffered data that decompress beyond the enforced limit will be rejected.

  • breakingin_monitor_agent: sensitive info visibility restricted by default

    in_monitor_agent changes default visibility of config, retry, and debug info in v1.19.3. Sensitive information previously exposed by default is now hidden unless explicitly enabled.

  • breakingoutput: strict tag path boundary validation

    Output tag path boundaries are now strictly validated in v1.19.3. Tag paths that do not conform to the enforced boundary rules will be rejected.

  • breakingin_debug_agent: local-only access by default

    in_debug_agent accepts connections only from the local machine by default in v1.19.3. Remote connections to the debug agent will be rejected unless the bind address is explicitly changed.

主な変更 (5)
  • out_http host validation and tag path boundaries tightened, decompressed payload size limits enforced
  • in_monitor_agent sensitive info hidden by default, in_debug_agent local-only by default
  • storage_local encoding error fixed, parser_csv handles empty lines, out_forward socket reuse fixed
  • buffer resumes correctly with square bracket paths
  • gem adds win32-registry dependency for Ruby 4.1
原文

Dragonfly

Storage & Data2026年6月25日

日本語 準備中Dragonfly v2.5.0 is a feature release adding Hugging Face/ModelScope model downloads, a P2P injector webhook, download blocklisting, and broad rate limiting, alongside a breaking removal of deprecated V1 preheat API endpoints and health check consolidation to /healthy. It also ships numerous bug fixes and Nydus subproject improvements.

  • breakingV1 preheat API endpoints removed

    Applies unconditionally starting v2.5.0: the deprecated V1 preheat API endpoints have been removed. Any automation or integration still calling V1 preheat routes must migrate to the current preheat API before upgrading.

  • breakingHealth checks consolidated to /healthy

    Applies unconditionally starting v2.5.0: health checks are consolidated onto a single /healthy endpoint. Update load balancer, Kubernetes probe, and monitoring configs that point at old or multiple health check paths.

  • enhancementEmergency download blocklist

    Available now via Manager console: operators can configure a blocklist to disable specific downloads as an emergency brake. Blocked gRPC calls return PermissionDenied and blocked HTTP proxy calls return FORBIDDEN, useful for incident response.

  • enhancementRate limiting across gRPC and client paths

    Available now across Manager/Scheduler gRPC servers and clients: rate limiting covers bandwidth, upload/download requests, and adaptive limiting. Review limits before rollout to avoid unexpected throttling of legitimate traffic.

主な変更 (8)
  • Breaking: deprecated V1 preheat API endpoints removed and health checks consolidated to a single /healthy endpoint.
  • New: Dragonfly Client can download model repositories directly from Hugging Face and ModelScope, accelerating Git LFS data via P2P and fetching metadata over Git protocol.
  • New: dragonfly-injector Mutating Admission Webhook auto-injects P2P capability into Pods via annotation policies, with Helm chart support.
  • New: configurable blocklist in Manager console lets operators disable specific downloads as an emergency measure (gRPC returns PermissionDenied, HTTP proxy returns FORBIDDEN).
  • New: rate limiting added across Manager/Scheduler gRPC servers and client-side bandwidth/request handling to protect source services.
  • New: dfctl CLI for managing local storage tasks (list, remove, preheat) against the Scheduler; dfdaemon can now infer upstream registry from containerd's ns query parameter.
  • Performance and reliability: improved parent peer selection before scheduling, buffered file export/download writes, tuned gRPC stream buffers for large transfers, and HTTP backend fixes (HTTP/1.1, HEAD retry logic, stripped auth headers on cross-origin redirects, fixed relative 307 redirect caching).
  • Plus several smaller fixes: Redis Lua script argument order for peer TTL, PostgreSQL SERIAL sequence handling after seeding, ExternalRedis TLS support, and Nydus subproject updates (prefetch-optimized blobs, DAX backend support, several builder/image-detection bug fixes).
原文

Dragonfly

Storage & Data2026年6月25日

日本語 準備中v2.4.4 is a routine maintenance release for Dragonfly, fixing three scheduler bugs around peer concurrency, memory leaks, and register delay, alongside a batch of dependency bumps. No security fixes or operator-facing breaking changes are included.

主な変更 (5)
  • Scheduler fix removes a stale AnnouncePeer stream reference that was causing a transport memory leak
  • Scheduler now correctly enforces peer concurrency limits during preheat jobs
  • Scheduler skips the exponential backoff delay for super seed peers on register
  • Dependency bumps: containerd 1.7.32 to 1.7.33, go-redis/v9 9.19.0 to 9.21.0, mongo-driver 1.17.0 to 1.17.7, golang.org/x/crypto to 0.53.0, retry-go upgraded to v5, plus minor bumps to actions/checkout and gomega
  • Internal helper functions MustParseRange, ParseOneRange, and ParseURLMetaRange were removed as part of a code refactor (no external API impact)
原文

Istio

Networking & Messaging2026年6月24日

日本語 準備中Istio 1.28.9 is a security release bundling 14 Envoy CVE fixes under ISTIO-SECURITY-2026-005, three of them rated high: an HTTP/3 QPACK denial-of-service, a Zstd decompressor memory exhaustion bug, and an HTTP/3 headers-only content-length validation gap. It also closes a padding oracle in the OAuth2 filter's cookie decryption and two use-after-free bugs in ext_authz and gRPC stats filters. Upgrade promptly, especially if you run HTTP/3, OAuth2 cookie auth, or mTLS with per-route ext_authz overrides.

  • securityHTTP/3 QPACK blocked-decoding DoS (GHSA-p7c7-7c47-pwch)

    Envoy's HTTP/3 stack could be driven into denial of service through QPACK blocked decoding. Upgrade to 1.28.9 to fix.

  • securityZstd decompressor memory exhaustion (CVE-2026-48044)

    The Zstd decompressor only checked the MaxInflateRatio limit after fully processing each input slice, allowing memory exhaustion. Fixed in 1.28.9.

  • securityHTTP/3 headers-only content-length validation (CVE-2026-48743)

    Headers-only HTTP/3 requests and responses did not validate content-length consistency, allowing stream desync. Fixed behind the envoy.reloadable_features.quic_validate_headers_only_content_length runtime guard; verify the guard is enabled after upgrading.

  • securityJSON parser nesting depth limited (CVE-2026-48042)

    JSON parser nesting depth is now capped at 1000 to prevent stack-exhaustion attacks via deeply nested payloads. The limit can be relaxed to 10K via envoy.reloadable_features.limit_json_parser_nesting_depth if you rely on deep nesting, but the default is the safer choice.

  • securityTLV length mismatch (CVE-2026-47692)

    Passthrough TLVs combined with added TLVs could exceed the maximum length, causing a mismatch between the reported header size and actual bytes written. Fixed in 1.28.9.

  • securityext_proc unexpected ProcessingResponse handling (CVE-2026-47207)

    The ext_proc server could send unexpected ProcessingResponses to Envoy, triggering incorrect behavior. Fixed in 1.28.9.

  • securityext_authz use-after-free on connection reset (CVE-2026-47205)

    When per-route service overrides are active and the downstream connection resets during an in-flight authorization check, the ext_authz filter could hit a use-after-free. Upgrade if you use per-route ext_authz overrides.

  • securityHTTP 303 internal redirect handling fixed (CVE-2026-47221)

    HTTP 303 internal redirects for body-less requests were mishandled, a bug now corrected in 1.28.9.

  • securityAsync token callback after filter teardown (CVE-2026-48090)

    An asynchronous token change callback could fire after the owning filter was already torn down, a use-after-free class bug fixed in this release.

  • securitySAN validation bypass via embedded NUL byte (CVE-2026-47778)

    Peer certificates with a NUL byte embedded in the Subject Alternative Name could bypass SAN validation, a spoofing risk relevant to mTLS deployments. Fixed in 1.28.9.

  • securitygRPC stats filter crash on direct response route (CVE-2026-47204)

    The gRPC stats filter could crash or hit a use-after-free when tracking stats on a direct response route. Fixed in 1.28.9.

  • securityDNS query name length validation (CVE-2026-48497)

    Missing sanity checks on DNS query name length could cause abnormal process termination. Now validated in 1.28.9.

  • securityTcpStatsdSink buffer overflow (CVE-2026-48706)

    TcpStatsdSink could suffer a buffer overflow when handling a large stats name. Fixed in 1.28.9.

  • securityOAuth2 filter padding oracle in cookie decryption (CVE-2026-47775)

    The OAuth2 filter's AES-256-CBC cookie decryption was vulnerable to a padding oracle attack. The filter now supports AES-256-GCM with a gcm. algorithm marker; migrate cookie encryption configuration to GCM where possible.

主な変更 (7)
  • 14 Envoy CVEs fixed under ISTIO-SECURITY-2026-005, three rated high: HTTP/3 QPACK blocked-decoding DoS (GHSA-p7c7-7c47-pwch), Zstd decompressor memory exhaustion (CVE-2026-48044), and HTTP/3 headers-only content-length validation (CVE-2026-48743)
  • JSON parser nesting depth capped at 1000 by default (CVE-2026-48042), configurable via envoy.reloadable_features.limit_json_parser_nesting_depth
  • OAuth2 filter padding oracle in AES-256-CBC cookie decryption fixed; AES-256-GCM cookie encryption now supported (CVE-2026-47775)
  • Two use-after-free issues fixed: ext_authz filter on connection reset with per-route overrides (CVE-2026-47205), gRPC stats filter on direct response routes (CVE-2026-47204)
  • SAN validation bypass via embedded NUL byte in peer certificates fixed (CVE-2026-47778), relevant to mTLS deployments
  • Several smaller Envoy fixes: TLV length mismatch, ext_proc response handling, HTTP 303 redirect handling, async token callback teardown, DNS query name length checks, TcpStatsdSink buffer overflow
  • General bug fixes bundled alongside the security patches to improve robustness
原文

Istio

Networking & Messaging2026年6月24日

日本語 準備中Istio 1.29.5 is a security release fixing 14 Envoy CVEs under ISTIO-SECURITY-2026-005, with several rated HIGH (DoS, crash, use-after-free). It also repairs a gateway revision-label traffic outage, an ambient ipset health-probe gap, a krt memory leak, and a multicluster controller panic.

  • security14 Envoy CVEs fixed (max severity HIGH) — ISTIO-SECURITY-2026-005

    All 14 Envoy CVEs under ISTIO-SECURITY-2026-005 are fixed in 1.29.5. The highest-severity issues include an HTTP/3 QPACK decoding DoS (GHSA-p7C7-7c47-pwch), a compressed-payload inflation bypass of MaxInflateRatio (CVE-2026-48044), a %REQUESTED_SERVER_NAME% formatter crash (CVE-2026-47220), a QUIC content-length validation issue guarded by envoy.reloadable_features.quic_validate_headers_only_content_length (CVE-2026-48743), and a PROXY protocol TLV length mismatch (CVE-2026-47692). Upgrade all 1.29.x deployments to 1.29.5.

  • securityOAuth2 filter padding oracle in AES-256-CBC cookie decryption (CVE-2026-47775)

    Operators using the OAuth2 filter with AES-256-CBC cookie encryption should upgrade immediately. The filter now supports AES-256-GCM with a gcm. algorithm marker; plan migration away from AES-256-CBC after upgrading.

  • securityext_authz use-after-free with per-route service overrides (CVE-2026-47205)

    Clusters using ext_authz with per-route service overrides are exposed to a use-after-free crash when a downstream connection resets during an in-flight authorization check (CVE-2026-47205). Upgrade to 1.29.5 to eliminate the crash window.

  • breakingJSON nesting depth limit reduced to 1000 (CVE-2026-48042)

    JSON parser nesting depth is now capped at 1000 by default (down from 10000). If any Envoy configuration relies on deeper nesting, the old limit can be restored temporarily by setting the runtime flag envoy.reloadable_features.limit_json_parser_nesting_depth to false, but plan to eliminate deep nesting.

主な変更 (7)
  • 14 Envoy CVEs addressed under ISTIO-SECURITY-2026-005 (max HIGH); notable issues: HTTP/3 QPACK DoS (GHSA-p7c7-7c47-pwch), compressed-payload inflation bypass (CVE-2026-48044), REQUESTED_SERVER_NAME formatter crash (CVE-2026-47220), PROXY protocol TLV length mismatch (CVE-2026-47692), and QUIC header validation (CVE-2026-48743)
  • OAuth2 filter padding oracle fixed (CVE-2026-47775); AES-256-GCM now supported as replacement for AES-256-CBC cookie encryption
  • JSON parser nesting depth defaulted to 1000 (was 10000); runtime flag envoy.reloadable_features.limit_json_parser_nesting_depth=false restores the old limit (CVE-2026-48042)
  • ext_authz use-after-free with per-route service overrides fixed (CVE-2026-47205); plus ext_proc unexpected response and gRPC stats UAF/crash fixes
  • Fixed a traffic outage when changing the istio.io/rev label on a Kubernetes Gateway or ListenerSet — the previously-owning control plane no longer pushes empty xDS config to running gateway pods
  • Fixed ambient-enrolled pods being left out of the host health-probe ipset after a node or kubelet restart, causing kubelet probes to be rejected by ztunnel
  • Fixed a krt memory leak from stale reverse-index entries when a pod is relabeled to a different waypoint, plus a multicluster secret controller panic on rapid kubeconfig secret updates and a sidecar config generation regression pre-1.29.2
原文

Istio

Networking & Messaging2026年6月24日

日本語 準備中Istio 1.30.2 is a security-plus-bugfix patch release, its main content is fixes for 14 Envoy CVEs (one high-severity HTTP/3 DoS via QPACK, others medium to high) under ISTIO-SECURITY-2026-005, alongside operator-relevant changes to pilot-agent metric merging and new AuthorizationPolicy trust-domain fields.

  • security14 Envoy CVEs fixed under ISTIO-SECURITY-2026-005, several high severity

    Applies to all 1.30.x deployments. Fixed a DoS in the HTTP/3 stack via QPACK blocked decoding, plus a JSON parser change limiting nesting depth to 1000 (previously the 10K fallback is reachable only if envoy.reloadable_features.limit_json_parser_nesting_depth is set to false) and a headers-only content-length validation fix gated by envoy.reloadable_features.quic_validate_headers_only_content_length. Upgrade to 1.30.2.

  • securityMultiple use-after-free and crash fixes across ext_authz, ext_proc, gRPC stats, and OAuth2 filters

    Applies when ext_authz per-route service overrides are active and a downstream connection resets mid-authorization-check (CVE-2026-47205), or when ext_proc/gRPC stats/OAuth2 filters are in use. Upgrade to close use-after-free and padding-oracle issues; the OAuth2 filter now also supports AES-256-GCM cookie encryption via a gcm. marker.

  • breakingpilot-agent metric merging now rejects protobuf content type

    Applies to deployments using pilot-agent metric merging (PILOT_AGENT_MERGE_ENVOY_STATS). Allowed content types are now restricted to text/plain and application/openmetrics-text; protobuf-based scraping of merged metrics will break. Check scrape configs before upgrading.

  • enhancementAuthorizationPolicy gains trust-domain matching

    Applies to AuthorizationPolicy authors who want mTLS trust-domain-based access control. New trustDomains and notTrustDomains fields on Source let policies match or exclude requests by the trust domain in the peer certificate.

主な変更 (8)
  • ISTIO-SECURITY-2026-005 bundles fixes for 14 Envoy CVEs (max severity high); most notable are the HTTP/3 QPACK blocked-decoding DoS (GHSA-p7c7-7c47-pwch), the Zstd decompressor memory exhaustion (CVE-2026-48044), the %REQUESTED_SERVER_NAME% formatter crash (CVE-2026-47220), and the JSON nesting depth limit of 1000 (CVE-2026-48042)
  • Use-after-free/crash fixes land in ext_authz (per-route overrides during connection reset), ext_proc, gRPC stats filter, and the async token callback path
  • OAuth2 filter closes a padding oracle in AES-256-CBC cookie decryption and adds AES-256-GCM support
  • pilot-agent metric merging now restricts allowed content types to text/plain and application/openmetrics-text, dropping protobuf support; a new PILOT_AGENT_MERGE_ENVOY_STATS env var controls the merge behavior
  • AuthorizationPolicy Source gains trustDomains and notTrustDomains fields for trust-domain-based request matching
  • Fixed a brief traffic outage on istio.io/rev label changes for Kubernetes Gateway/ListenerSet, and duplicate/excessive xDS pushes from WasmPlugin-to-TrafficExtension conversions
  • Ambient mode: fixed pods dropping out of the host health-probe ipset after node/kubelet restart, which had caused kubelet probes to be rejected by ztunnel
  • Plus several smaller fixes: warn-level logging for outdated Gateway API CRDs, sidecar config generation for pre-1.29.2, and a krt controller memory leak from stale reverse-index entries
原文

Vitess

Storage & Data2026年6月24日

日本語 準備中Vitess v24.0.2 is a patch release combining two security hardening fixes (gRPC auth timing, twopcz value escaping) with a broad set of bug fixes across backup/restore, VReplication, vtgate, VTOrc, and connection pooling. No breaking API or config changes are stated.

  • securityTwo security hardening fixes: gRPC auth timing, twopcz reflected values

    Fixes for a timing side-channel in the static gRPC auth plugin's password comparison and a reflected-value escaping gap in the twopcz handler. Both apply unconditionally; upgrade to v24.0.2 if you run gRPC static auth or expose the twopcz endpoint.

主な変更 (7)
  • servenv: static gRPC auth plugin now uses constant-time password comparison, closing a timing side-channel.
  • tabletserver: twopcz handler now escapes reflected form values, closing a reflected-injection gap.
  • smartconnpool: multiple fixes covering MaxLifetime jitter, refresh worker persistence after reopen, idle reopen stalls, close deadlocks, Setting preservation, and rejecting SetCapacity on a closed pool.
  • VTOrc: fixed a deadlock between PrimaryIsReadOnly recovery and PrimarySemiSyncBlocked, plus a gauge reset for resolved errant GTIDs.
  • VReplication/vtgate: fixed a vstream StopOnReshard hang on reshard convergence, stale healthcheck updates from replaced tablets, and DECIMAL JSON leading-zero handling in binlog decoding.
  • vtgate: Filter streaming path now uses ToBoolean() for correct results, and prepared statements in OLAP/streaming mode get specialized plans.
  • Plus about six smaller fixes: mysqlctl remote shutdown timeout propagation, backup lastErr clearing, keyspaceState leak in discovery, etcd2topo lock-cleanup RPC bounding, and vttablet Stream schema clobbering.
原文

Vitess

Storage & Data2026年6月24日

日本語 準備中v23.0.5 is a bug-fix rollup with two medium-severity security hardening fixes. Changes span connection pooling, query planning, VReplication, VTOrc, topology, and backup/restore, with no API, config, or default changes.

  • securityTiming-safe password comparison in static gRPC auth plugin

    The static gRPC auth plugin now uses constant-time comparison for passwords, closing a potential timing-based credential leak. Applies to all deployments using static gRPC authentication.

  • securityReflected-input escaping in twopcz handler

    The twopcz debug handler now escapes reflected form values, preventing reflected input injection. Applies to any deployment where the twopcz handler endpoint is reachable.

主な変更 (7)
  • Two medium-severity security fixes: constant-time password comparison in the static gRPC auth plugin and reflected-input escaping in the twopcz handler.
  • smartconnpool fixes several connection lifecycle bugs: expired waiters receiving returned connections, MaxLifetime jitter, refresh worker loss after reopen, idle reopen stalls, close deadlocks, and rejection of SetCapacity on a closed pool.
  • VTOrc resolves a data race in forgetAliases cache initialization, a deadlock between PrimaryIsReadOnly recovery and PrimarySemiSyncBlocked, and incorrect persistence of the CurrentErrantGTIDCount gauge after errant GTIDs are resolved.
  • VReplication binlog handling now correctly preserves leading zeroes and trims leading zeroes for DECIMAL JSON values (e.g. 0.1) that a prior fix missed.
  • VTGate planner corrects merged DML IN/NOT IN subquery substitution via ListArg placeholder; the Filter streaming path now uses ToBoolean() correctly and builds specialized plans for prepared statements in OLAP/streaming mode.
  • vstream StopOnReshard hang on reshard convergence is fixed; stale healthcheck updates from a replaced tablet's canceled connection check are dropped.
  • Additional fixes: mysqlctl remote shutdown timeout propagation, keyspaceState leak in Discovery, etcd2topo unbounded lock-acquisition cleanup RPCs, and vttablet Stream schema clobbering for non-keyspace fields.
原文

Envoy

Networking & Messaging2026年6月23日

日本語 準備中Envoy v1.38.3 is a security-only release patching 15 CVEs plus one upstream wasmtime CVE. Two issues are rated critical: a TLS SAN NUL-byte auth bypass (CVE-2026-47778) and HTTP/3-to-HTTP/1 request smuggling (CVE-2026-48743); the remaining 13 are rated high, covering crashes, a zip-bomb DoS, a PKCE padding oracle, a 65 KB upstream data spillover, and a heap buffer overflow.

  • securityCRITICAL: TLS SAN NUL-byte auth bypass (CVE-2026-47778)

    CVE-2026-47778 (GHSA-f8x4-rw5x-f3r7): a NUL byte embedded in a TLS SAN causes truncation during comparison, allowing an attacker to bypass certificate-based authentication. Upgrade to v1.38.3 unconditionally.

  • securityCRITICAL: HTTP/3 to HTTP/1 request smuggling (CVE-2026-48743)

    CVE-2026-48743 (GHSA-8phg-2h2q-jgxf): a headers-only HTTP/3 request carrying a nonzero Content-Length can be smuggled into a downstream HTTP/1 backend. Any deployment proxying HTTP/3 to HTTP/1 is affected. Upgrade to v1.38.3.

  • securityHIGH: PROXY Protocol v2 upstream data spillover (CVE-2026-47692)

    CVE-2026-47692 (GHSA-wh36-hm39-mm3r): the PROXY Protocol v2 header generator leaks "skipped" TLVs, spilling up to 65 KB of attacker-controlled data into the upstream application stream. Upgrade to v1.38.3.

  • breakingIntel DLB connection balancer extension removed

    The contrib extension envoy.network.connection_balance.dlb (Intel DLB connection balancer) has been disabled at the Bazel build layer in v1.38.3 due to a broken source archive. Any deployment that relied on this extension must migrate to an alternative connection balancer.

  • breakingTLS certificate Brotli compression now disabled by default

    The runtime guard envoy.reloadable_features.tls_certificate_compression_brotli is now disabled by default. When off, QUIC uses zlib-only certificate compression and TCP TLS performs no certificate compression. If you depended on Brotli compression for TLS certificates, re-enable this flag explicitly after upgrading.

主な変更 (8)
  • CRITICAL: TLS SAN NUL-byte truncation enables certificate auth bypass (CVE-2026-47778, max severity across all 15 CVEs)
  • CRITICAL: HTTP/3 to HTTP/1 request smuggling via headers-only request with nonzero Content-Length (CVE-2026-48743)
  • HIGH: PROXY Protocol v2 leaks up to 65 KB of attacker-controlled data into upstream stream (CVE-2026-47692); OAuth2 PKCE padding oracle (CVE-2026-47775) and UAF/crash on async token completion after stream teardown (CVE-2026-48090)
  • HIGH: Crashes fixed in authz per-route (CVE-2026-47205), router internal redirects (CVE-2026-47221), REQUESTED_SERVER_NAME (CVE-2026-47220), grpc_stats filter on Connect-to-direct_response (CVE-2026-47204), and ext_proc single-gRPC-message response (CVE-2026-47207)
  • HIGH: zstd RLE zip bomb DoS (CVE-2026-48044), JSON deeply-nested destructor stack overflow (CVE-2026-48042), DNS UDP filter abnormal termination (CVE-2026-48497), TcpStatsdSink heap buffer overflow (CVE-2026-48706), HTTP/3 QPACK blocked-decoding DoS (GHSA-p7c7-7c47-pwch)
  • wasmtime dependency bumped to resolve CVE-2026-47261 (medium severity)
  • Intel DLB contrib extension (envoy.network.connection_balance.dlb) disabled in all builds due to broken source archive
  • Runtime guard envoy.reloadable_features.tls_certificate_compression_brotli flipped to disabled by default; TCP TLS will no longer compress certificates and QUIC reverts to zlib-only
原文

Envoy

Networking & Messaging2026年6月23日

日本語 準備中Envoy v1.37.5 is a security-only release fixing 15 Envoy CVEs/GHSAs and one upstream dependency CVE, with severities reaching critical. Three critical issues stand out: HTTP/3-to-HTTP/1 request smuggling, TLS SAN auth bypass via embedded NUL bytes, and a PROXY Protocol v2 spillover that puts attacker-controlled data into upstream streams. All v1.37.x deployments should upgrade without delay.

  • securityCritical: HTTP/3 to HTTP/1 request smuggling (CVE-2026-48743)

    CVE-2026-48743 (GHSA-8phg-2h2q-jgxf): HTTP/3 requests with headers-only and a nonzero Content-Length can smuggle requests into HTTP/1 upstream connections. Applies to any deployment terminating HTTP/3 and proxying to HTTP/1 backends. Upgrade immediately.

  • securityCritical: TLS SAN NUL-byte auth bypass (CVE-2026-47778)

    CVE-2026-47778 (GHSA-f8x4-rw5x-f3r7): A TLS SAN containing an embedded NUL byte is truncated at that byte during comparison, allowing a certificate to match patterns it should not. Any deployment making auth decisions based on TLS SAN validation is affected. Upgrade immediately.

  • securityCritical: PROXY Protocol v2 TLV spillover into upstream stream (CVE-2026-47692)

    CVE-2026-47692 (GHSA-wh36-hm39-mm3r): The PROXY Protocol v2 header generator emits TLVs that were supposed to be skipped, spilling up to 65 KB of attacker-controlled data into the upstream application stream. Affects deployments that generate PROXY Protocol v2 headers toward upstreams. Upgrade immediately.

  • securityHigh: Two OAuth2 filter vulnerabilities (padding oracle + UAF)

    CVE-2026-47775 and CVE-2026-48090 (GHSA-396h-jpq4-vc7p, GHSA-3cj2-c63f-q26f): The OAuth2 filter has a PKCE code-verifier padding oracle and a use-after-free risk when an async token fetch completes after stream teardown. Both affect deployments using envoy.filters.http.oauth2.

  • securityHigh: HTTP/3 QPACK blocked-decoding DoS (GHSA-p7c7-7c47-pwch)

    HTTP/3 QPACK blocked decoding (GHSA-p7c7-7c47-pwch) can be exploited to cause a DoS against the HTTP/3 stack. Affects any deployment serving HTTP/3.

  • securityHigh: grpc_stats filter segfault on Connect protocol (CVE-2026-47204)

    CVE-2026-47204 (GHSA-3jxh-8p6x-7pf6): The grpc_stats filter segfaults on Connect-protocol requests routed to direct_response routes. Affects deployments using envoy.filters.http.grpc_stats.

  • breakingIntel DLB connection balancer contrib extension disabled at build time

    The envoy.network.connection_balance.dlb contrib extension (Intel DLB connection balancer) has been disabled at the Bazel build layer across all platforms due to a source archive breakage. Deployments relying on this extension must pursue a local workaround or alternative balancing strategy until the source issue is resolved.

主な変更 (5)
  • Three critical CVEs fixed: HTTP/3-to-HTTP/1 request smuggling (CVE-2026-48743), TLS SAN NUL-byte auth bypass (CVE-2026-47778), and PROXY Protocol v2 65 KB upstream stream spillover (CVE-2026-47692).
  • Nine additional high-severity CVEs fixed, covering OAuth2 padding oracle and UAF (CVE-2026-47775, CVE-2026-48090), HTTP/3 QPACK DoS (GHSA-p7c7-7c47-pwch), grpc_stats segfault (CVE-2026-47204), DNS UDP filter abnormal termination (CVE-2026-48497), TcpStatsdSink heap buffer overflow (CVE-2026-48706), deep JSON nesting stack overflow (CVE-2026-48042), router internal redirects crash (CVE-2026-47221), REQUESTED_SERVER_NAME crash (CVE-2026-47220), ext_proc gRPC response crash (CVE-2026-47207), and authz per-route crash (CVE-2026-47205).
  • zstd decompression RLE zip-bomb DoS (CVE-2026-48044, high) fixed; affects deployments using the zstd filter.
  • wasmtime dependency bumped to resolve CVE-2026-47261.
  • envoy.network.connection_balance.dlb (Intel DLB) contrib extension disabled at the Bazel build layer for all platforms due to source archive breakage; local workarounds are referenced in the release notes.
原文

Envoy

Networking & Messaging2026年6月23日

日本語 準備中Envoy v1.36.9 is a security-only release patching 15 CVEs (2 rated critical, the rest high or medium) across TLS SAN handling, HTTP/3, PROXY protocol, JSON parsing, OAuth2, ext_proc, grpc_stats, zstd, DNS, and statsd. Operators should upgrade immediately, as two of the vulnerabilities -- TLS SAN auth bypass and HTTP/3 request smuggling -- are unconditional or broadly exploitable.

  • securityCRITICAL: TLS SAN NUL-byte auth bypass (CVE-2026-47778 / GHSA-f8x4-rw5x-f3r7)

    A TLS SAN containing an embedded NUL byte causes the SAN to be truncated, bypassing certificate-based authentication checks. All deployments are affected. Upgrade to v1.36.9 immediately.

  • securityCRITICAL: HTTP/3-to-HTTP/1 request smuggling (CVE-2026-48743 / GHSA-8phg-2h2q-jgxf)

    A headers-only HTTP/3 request with a nonzero Content-Length can be smuggled into HTTP/1 backends, enabling request smuggling attacks. Affects any deployment proxying HTTP/3 to HTTP/1 backends.

  • securityHIGH: PROXY Protocol v2 upstream data spillover (CVE-2026-47692 / GHSA-wh36-hm39-mm3r)

    PROXY Protocol v2 header generation leaks up to 65 KB of attacker-controlled data into the upstream application stream via improperly emitted TLVs. Affects deployments using the PROXY Protocol v2 header generator.

  • securityHIGH: Stack overflow on deeply nested JSON (CVE-2026-48042 / GHSA-f24p-rxw2-g6pv)

    Deeply nested JSON input triggers a stack overflow in the object destructor, crashing the proxy. All deployments are affected.

  • securityHIGH: wasmtime dependency CVE (CVE-2026-47261)

    The wasmtime dependency was bumped to resolve CVE-2026-47261. All deployments using Wasm extensions are affected.

  • breakingDLB connection balancer extension disabled (capability removed)

    The contrib Intel DLB connection balancer extension (envoy.network.connection_balance.dlb) is now disabled at the Bazel layer for all platforms due to a source archive breakage. Builds that previously enabled this extension will lose it silently.

主な変更 (8)
  • CRITICAL (2 CVEs): TLS SAN NUL-byte truncation enables auth bypass (CVE-2026-47778), and HTTP/3-to-HTTP/1 request smuggling via nonzero Content-Length on headers-only requests (CVE-2026-48743).
  • HIGH: PROXY Protocol v2 header generator emits skipped TLVs, allowing up to 65 KB of attacker-controlled data to spill into the upstream stream (CVE-2026-47692).
  • HIGH: Stack overflow in destructor on deeply nested JSON input affects all deployments (CVE-2026-48042).
  • HIGH: Multiple filter-specific crashes and security issues fixed -- ext_proc single-gRPC-message response (CVE-2026-47207), grpc_stats segfault on Connect-protocol requests to direct_response routes (CVE-2026-47204), authz per-route crash (CVE-2026-47205), router internal redirects crash (CVE-2026-47221).
  • HIGH: OAuth2 filter fixes two issues -- PKCE code verifier padding oracle (CVE-2026-47775) and use-after-free risk from late async token completion after stream teardown (CVE-2026-48090).
  • HIGH: zstd RLE zip-bomb decompression amplification (CVE-2026-48044), DNS UDP filter abnormal termination (CVE-2026-48497), HTTP/3 QPACK blocked-decoding DoS (GHSA-p7c7-7c47-pwch), and TcpStatsdSink heap buffer overflow (CVE-2026-48706).
  • wasmtime dependency bumped to resolve CVE-2026-47261 (HIGH, unconditional).
  • The contrib envoy.network.connection_balance.dlb (Intel DLB) extension is disabled for all builds due to a source archive breakage.
原文

Envoy

Networking & Messaging2026年6月23日

日本語 準備中Envoy v1.35.13 is a major security release fixing 13 CVEs, two of them critical: a PROXY protocol v2 TLV spillover leaking up to 65KB into the upstream stream, and a TLS SAN NUL-truncation bug that can bypass certificate-based auth. It also disables the contrib Intel DLB connection balancer extension due to a build breakage.

  • securityPROXY Protocol v2 TLV spillover (CVE-2026-47692)

    Applies to all v1.35.13 deployments running PROXY protocol v2 header generation upstream. CVE-2026-47692 lets an attacker's "skipped" TLVs leak up to 65KB into the upstream application stream. Upgrade immediately if you use this feature.

  • securityTLS SAN NUL truncation enables auth bypass (CVE-2026-47778)

    Applies to deployments validating client certificates by SAN. CVE-2026-47778 lets an embedded NUL byte in a TLS SAN truncate the parsed name, allowing certificates to match unintended hostnames and bypass authentication. Upgrade immediately.

  • security11 more high-severity CVEs across core filters and HTTP/3

    Eleven additional high-severity CVEs are fixed across ext_proc, router internal redirects, OAuth2 (two separate issues: padding oracle and a use-after-free from late async token completion), zstd decompression, grpc_stats, JSON parsing, the DNS filter, HTTP/3 (content-length validation and a separate QPACK-based DoS), and TcpStatsdSync. Each is a crash, DoS, or memory-safety bug tied to a specific filter or codec; upgrade to pick up all fixes, or check which filters you run to prioritize.

  • securityWasmtime dependency bump fixes CVE-2026-47261

    A separate wasmtime CVE (CVE-2026-47261) is fixed by bumping the com_github_wasmtime dependency. Applies to deployments using the Wasm filter.

  • breakingIntel DLB connection balancer extension disabled

    The contrib extension envoy.network.connection_balance.dlb (Intel DLB connection balancer) is disabled at the Bazel build layer for all builds and platforms due to a source archive breakage. Anyone building Envoy with this extension enabled needs an alternate connection balancer.

主な変更 (7)
  • 13 CVEs fixed in this release, two rated critical: PROXY protocol v2 TLV spillover (CVE-2026-47692, up to 65KB leaked into the upstream stream) and TLS SAN NUL truncation enabling auth bypass (CVE-2026-47778).
  • High-severity fixes across core request handling: ext_proc single-message response handling (CVE-2026-47207), router internal redirect crash (CVE-2026-47221), grpc_stats segfault on Connect protocol to direct_response routes (CVE-2026-47204), and a stack overflow destroying deeply nested JSON (CVE-2026-48042).
  • Two separate OAuth2 filter fixes: a code verifier padding oracle (CVE-2026-47775) and a use-after-free from late async token completion after stream teardown (CVE-2026-48090).
  • HTTP/3 hardened against two issues: unvalidated content-length on headers-only requests/responses (CVE-2026-48743) and a QPACK blocked-decoding DoS.
  • Additional high-severity fixes: zstd RLE decompression zip bomb (CVE-2026-48044), DNS filter crash on long query names (CVE-2026-48497), and TcpStatsdSync buffer overflow on large stats names (CVE-2026-48706).
  • Upstream wasmtime dependency bumped to resolve CVE-2026-47261 in the Wasm filter.
  • The contrib envoy.network.connection_balance.dlb extension (Intel DLB) is disabled at the Bazel layer for all builds due to a source archive breakage.
原文

Buildpacks

CI/CD & App Delivery2026年6月23日

日本語 準備中pack v0.40.7 is a routine patch: a registry-message text fix, an internal dependency cleanup, and an updated builder suggestion. No breaking or security changes for operators.

主な変更 (3)
  • Fixed the yank registry issue body text: added `yank = true` and a code fence for clarity
  • Removed the direct dependency on github.com/docker/docker
  • CLI now suggests `heroku/builder:26` instead of `heroku/builder:24` as the recommended builder
原文

OpenTelemetry

Observability2026年6月23日

日本語 準備中v0.155.0 is a breaking-change release for operators: seven stabilized feature gates are removed, memory_limiter metrics get a new prefix, and two config/service APIs are deprecated in favor of snapshot-based replacements. The rest is tooling work on mdatagen and the newly relocated schemagen CLI.

  • breakingSeven stabilized feature gates removed

    Applies to any collector build referencing confighttp.framedSnappy, configoptional.AddEnabledField, confmap.newExpandedValueSanitizer, exporter.PersistRequestContext, otelcol.printInitialConfig, telemetry.UseLocalHostAsDefaultMetricsAddress, or pdata.enableRefCounting via --feature-gates flags or config. These gates are gone in v0.155.0; startup will fail if they're still referenced. Drop them from your CLI args and config before upgrading.

  • breakingmemory_limiter metrics renamed with processor prefix

    Applies to anyone scraping or alerting on otelcol_processor_* metrics from the memory_limiter processor. They're renamed to otelcol_processor_memory_limiter_* to disambiguate from other processors. Update dashboards, alert rules, and metric queries to the new names.

  • breakingmdatagen reaggregation_enabled setting removed

    Applies to custom components using mdatagen metadata.yaml with reaggregation_enabled. The setting is removed; per-metric reaggregation config is now always generated. Old files with the field are still accepted but the value is ignored, so check generated output matches expectations.

  • breakingConfig watcher APIs deprecated for snapshot-based equivalents

    Applies to extension or core code using service.Settings.CollectorConf or extensioncapabilities.ConfigWatcher. Both are deprecated in favor of service.Settings.ConfigSnapshot and extensioncapabilities.ConfigSnapshotWatcher. No forced migration yet, but plan to move to the snapshot-based APIs.

主な変更 (8)
  • Seven stabilized feature gates removed outright: confighttp.framedSnappy, configoptional.AddEnabledField, confmap.newExpandedValueSanitizer, exporter.PersistRequestContext, otelcol.printInitialConfig, telemetry.UseLocalHostAsDefaultMetricsAddress, pdata.enableRefCounting. Any explicit reference to these will now fail.
  • memory_limiter processor metrics renamed to otelcol_processor_memory_limiter_* prefix, breaking existing dashboards and alerts built on the old names.
  • mdatagen's reaggregation_enabled metadata setting is removed; reaggregation config is now generated per-metric unconditionally (old files are tolerated but the field is ignored).
  • service.Settings.CollectorConf and extensioncapabilities.ConfigWatcher are deprecated in favor of ConfigSnapshot and ConfigSnapshotWatcher.
  • schemagen CLI moved from opentelemetry-collector-contrib into this repo as cmd/schemagen, and now supports an overlayFile for merging hand-curated schema fragments, a -p flag for custom Go package patterns, a -m component|package override, and fixed mode detection for external packages.
  • mdatagen gains versioned metrics support (for migrating metric names/types/attributes to new semantic conventions) and fixes: no more stale files after removing the last feature gate, correct acronym capitalization in generated identifiers.
  • pdata JSONUnmarshaler adds a DisallowUnknownFields option (off by default) to strictly reject unknown OTLP JSON fields, trading forward compatibility for stricter validation when enabled.
  • Middleware config (pkg/config/configmiddleware) migrated to a schema-based definition.
原文

Crossplane

Orchestration & Management2026年6月22日

日本語 準備中Crossplane v2.3.3 patches a TOCTOU security flaw in OCI package signature verification (GHSA-mf7q-r4rv-jv94) and fixes a namespace injection bug in `crossplane render`. Routine CVE bumps for Go deps included.

  • securityUpgrade immediately to fix OCI signature TOCTOU (GHSA-mf7q-r4rv-jv94)

    The TOCTOU flaw means a compromised or malicious OCI registry could serve unsigned package content after passing signature verification. Any Crossplane deployment that installs packages from OCI registries is exposed. Upgrade to v2.3.3 — this fix lives in crossplane-runtime and is bundled in this release. Review the crossplane-runtime v2.3.3 advisory for full technical details and assess whether any packages installed on affected versions should be reinstalled.

  • securitygolang.org/x/net and x/sys CVE patches — rebuild or upgrade

    The apis module now pulls updated golang.org/x/net and golang.org/x/sys. If you build Crossplane from source or vendor these deps in your own providers/functions, update your dependency pins to pick up the same CVE fixes. Pre-built images in v2.3.3 already include the patched versions.

  • breakingcrossplane render namespace behavior changed for namespaced XRs

    If you use `crossplane render` in CI pipelines or local testing with namespaced XRs, the injected resource refs no longer carry a namespace. This matches real reconciler behavior and fixes breakage with strict-schema functions (e.g., KCL-generated bindings). Re-run your render tests after upgrading to confirm output changes don't mask real issues in your composition logic.

主な変更 (4)
  • TOCTOU fix in OCI package signature verification via crossplane-runtime v2.3.3 (GHSA-mf7q-r4rv-jv94): a malicious registry could swap unsigned content after signature check passed
  • Fixed `crossplane render` incorrectly setting namespace on resource refs for namespaced XRs, which broke strict-schema functions like generated KCL bindings
  • Go toolchain bumped to 1.25.11
  • golang.org/x/net and golang.org/x/sys updated in the apis module to pick up CVE fixes
原文

Crossplane

Orchestration & Management2026年6月22日

日本語 準備中Crossplane v2.2.3 patches a TOCTOU vulnerability in package signature verification (GHSA-wfqx-gjrf-g28r) and bumps Go toolchain and dependencies for security fixes.

  • securityPatch the TOCTOU signature verification flaw now if you use tag-based installs

    If your team installs Crossplane packages by tag (not digest) from registries you don't fully control, this TOCTOU flaw (GHSA-wfqx-gjrf-g28r) let a malicious registry pass signature verification with one image and then serve a different, unsigned image at install time. Upgrade to v2.2.3 immediately. As a defense-in-depth measure, consider switching package installs to digest references — that would have avoided this issue entirely regardless of the Crossplane version.

  • securityGo 1.25.11 and golang.org/x/net v0.55.0 pick up upstream CVE fixes

    The Go toolchain bump and net package update carry security fixes from upstream. There is no separate action beyond upgrading to v2.2.3, but if you scan container images for CVEs, expect findings against older Crossplane images to include these — use v2.2.3 as your baseline for compliance scans.

主な変更 (4)
  • Fixed TOCTOU flaw (GHSA-wfqx-gjrf-g28r): tag references are now resolved to a digest once, used for both verification and pull
  • Go toolchain bumped to 1.25.11 for upstream security fixes
  • golang.org/x/net updated to v0.55.0
  • crossplane-runtime updated to v2.2.3
原文
古い →
月別に見る