Announcing Istio 1.13.7

Istio 1.13.7 patch release.

Aug 1, 2022

This release contains a fix for CVE-2022-31045 and bug fixes to improve robustness. We recommend users install this release instead of Istio 1.13.6, which does not contain the above CVE fix. This release note describes what’s different between Istio 1.13.6 and Istio 1.13.7.

FYI, Go 1.18.4 has been released, which includes 9 security fixes. We recommend you to upgrade to this newer Go version if you are using Go locally.

BEFORE YOU UPGRADE

Things to know and prepare before upgrading.

DOWNLOAD

Download and install this release.

DOCS

Visit the documentation for this release.

SOURCE CHANGES

Inspect the full set of source code changes.

Changes

Fixed an issue causing outboundTrafficPolicy changes in Sidecar to not always take effect. (Issue #39794)
Removed archs from istio-ingress/egress helm value templates and conditionally populate nodeAffinity.

Security update

Fixed CVE-2022-31045.