v1.35.8
📦 envoyView on GitHub →
🐛 1 fixes🔧 1 symbols
Summary
This patch release primarily addresses a security vulnerability in the c-ares dependency related to a use-after-free bug that could cause Envoy to crash under specific DNS conditions.
🐛 Bug Fixes
- Resolved a dependency CVE (c-ares/CVE-2025-0913) related to a use-after-free vulnerability in Envoy that could lead to a crash due to malfunctioning or compromised DNS.
🔧 Affected Symbols
c-ares