v1.36.4

📅 Dec 10, 2025📦 envoyView on GitHub →

🐛 1 fixes🔧 1 symbols

Summary

This release primarily focuses on security updates, resolving a critical dependency CVE in c-ares that could cause Envoy to crash under specific DNS conditions.

🐛 Bug Fixes

Resolved dependency CVE-2025-0913 in c-ares, which could lead to an Envoy crash due to a use after free vulnerability related to malfunctioning or compromised DNS.

🔧 Affected Symbols

c-ares