Announcing Istio 1.1.14
Istio 1.1.14 patch release.
We’re pleased to announce the availability of Istio 1.1.14. Please see below for what’s changed.
BEFORE YOU UPGRADE
Things to know and prepare before upgrading.
DOWNLOAD
Download and install this release.
DOCS
Visit the documentation for this release.
SOURCE CHANGES
Inspect the full set of source code changes.
Security update
Following the previous fixes for the security vulnerabilities described in ISTIO-SECURITY-2019-003 and ISTIO-SECURITY-2019-004, we are now addressing the internal control plane communication surface. These security fixes were not available at the time of our previous security release, and we considered the control plane gRPC surface to be harder to exploit.
You can find the gRPC vulnerability fix description on their mailing list (c.f. HTTP/2 Security Vulnerabilities).
Bug fix
- Fix an Envoy bug that breaks
java.net.http.HttpClient
and other clients that attempt to upgrade fromHTTP/1.1
toHTTP/2
using theUpgrade: h2c
header (Issue 16391).