v3.3.6

Breaking Changes

📅 Apr 18, 2025📦 traefikView on GitHub →

⚠ 1 breaking🐛 1 fixes

Summary

This release focuses on patching critical security vulnerabilities (CVEs) and implements important request path sanitization behavior, requiring users to review the migration guide. Documentation updates for Kubernetes Gateway API and tracing were also included.

⚠️ Breaking Changes

Incoming request paths are now sanitized (e.g., collapsing duplicate slashes, resolving /../, /./) before matching router rules and sending to backends. This change was introduced since v3.3.6. If your routing relied on uncleaned paths, you must update your configurations or routing logic.

Migration Steps

Review the request path sanitization change introduced since v3.3.6 and consult the migration guide for necessary configuration adjustments: https://doc.traefik.io/traefik/v3.3/migration/v3/#request-path-sanitization

🐛 Bug Fixes

Fixed security vulnerabilities related to CVE-2025-32431, CVE-2025-22868, and CVE-2025-22871.