Skip to content

[IMPORTANT] Security patches 25q4#42370

Merged
phlax merged 3 commits intoenvoyproxy:mainfrom
phlax:sec-25q4
Dec 3, 2025
Merged

[IMPORTANT] Security patches 25q4#42370
phlax merged 3 commits intoenvoyproxy:mainfrom
phlax:sec-25q4

Conversation

@phlax
Copy link
Copy Markdown
Member

@phlax phlax commented Dec 3, 2025
edited
Loading

  • Security fixes:
    • CVE-2025-64527: Envoy crashes when JWT authentication is configured with the remote JWKS fetching
    • CVE-2025-66220: TLS certificate matcher for match_typed_subject_alt_names may incorrectly treat certificates containing an embedded null byte
    • CVE-2025-64763: Potential request smuggling from early data after the CONNECT up|grade

yanavlasov and others added 3 commits December 3, 2025 16:30
@yanavlasov @phlax
tls: fix SAN validation for OTHERNAME types with embedded nulls
323f58b 
Certificates with an OTHERNAME SAN using type `V_ASN1_UNIVERSALSTRING`
or `V_ASN1_BMPSTRING` with an embedded null would have the name
truncated at the first null, resulting in an incorrect check.

Signed-off-by: Greg Greenway <ggreenway@apple.com>
Signed-off-by: Yan Avlasov <yavlasov@google.com>
@botengyao @phlax
fix jwt_auth crash with two or more auth header
837dc4f 
Signed-off-by: Boteng Yao <boteng@google.com>
@yanavlasov @phlax
Add option to reject early CONNECT data
e8d7812 
Signed-off-by: Yan Avlasov <yavlasov@google.com>
@repokitteh-read-only
Copy link
Copy Markdown

repokitteh-read-only Bot commented Dec 3, 2025

CC @envoyproxy/runtime-guard-changes: FYI only for changes made to (source/common/runtime/runtime_features.cc).

🐱

Caused by: #42370 was opened by phlax.

see: more, trace.

@phlax phlax changed the title [IMPORTANT] Security release 25q4 [IMPORTANT] Security patches 25q4 Dec 3, 2025
@phlax phlax enabled auto-merge (rebase) December 3, 2025 17:28
@botengyao
Copy link
Copy Markdown
Member

botengyao commented Dec 3, 2025

/retest

2 similar comments
@phlax
Copy link
Copy Markdown
Member Author

phlax commented Dec 3, 2025

/retest

@phlax
Copy link
Copy Markdown
Member Author

phlax commented Dec 3, 2025

/retest

@agrawroh
Copy link
Copy Markdown
Member

agrawroh commented Dec 3, 2025

/retest

@phlax
Copy link
Copy Markdown
Member Author

phlax commented Dec 3, 2025

we have a couple of issues with ci - pushing this past those

@phlax phlax disabled auto-merge December 3, 2025 22:32
@phlax phlax merged commit 0f485ec into envoyproxy:main Dec 3, 2025
23 of 25 checks passed
@ravenblackx ravenblackx mentioned this pull request Dec 12, 2025
Merged
yanavlasov pushed a commit that referenced this pull request Dec 12, 2025
@ravenblackx
Disable excessively flaky test (#42599)
ef484bc 
With a TODO to fix. We can't roll back the PR
that introduced the flakiness (#42370) because it was a security patch.
Relevant flakiness described in
#39856 (comment)
Risk Level: test-only
Testing: it is
Docs Changes: n/a
Release Notes: n/a
Platform Specific Features: n/a

Signed-off-by: Raven Black <ravenblack@dropbox.com>
MayorFaj pushed a commit to MayorFaj/envoy that referenced this pull request Dec 15, 2025
@ravenblackx @MayorFaj
Disable excessively flaky test (envoyproxy#42599)
844dcc0 
With a TODO to fix. We can't roll back the PR
that introduced the flakiness (envoyproxy#42370) because it was a security patch.
Relevant flakiness described in
envoyproxy#39856 (comment)
Risk Level: test-only
Testing: it is
Docs Changes: n/a
Release Notes: n/a
Platform Specific Features: n/a

Signed-off-by: Raven Black <ravenblack@dropbox.com>
Signed-off-by: MayorFaj <mayorfaj@gmail.com>
grnmeira pushed a commit to grnmeira/envoy that referenced this pull request Mar 20, 2026
@ravenblackx @grnmeira
Disable excessively flaky test (envoyproxy#42599)
4cae33d 
With a TODO to fix. We can't roll back the PR
that introduced the flakiness (envoyproxy#42370) because it was a security patch.
Relevant flakiness described in
envoyproxy#39856 (comment)
Risk Level: test-only
Testing: it is
Docs Changes: n/a
Release Notes: n/a
Platform Specific Features: n/a

Signed-off-by: Raven Black <ravenblack@dropbox.com>
Signed-off-by: Gustavo <grnmeira@gmail.com>
phlax pushed a commit to phlax/envoy that referenced this pull request Apr 15, 2026
@ravenblackx @phlax
Disable excessively flaky test (envoyproxy#42599)
cc7d20d 
With a TODO to fix. We can't roll back the PR
that introduced the flakiness (envoyproxy#42370) because it was a security patch.
Relevant flakiness described in
envoyproxy#39856 (comment)
Risk Level: test-only
Testing: it is
Docs Changes: n/a
Release Notes: n/a
Platform Specific Features: n/a

Signed-off-by: Raven Black <ravenblack@dropbox.com>
phlax pushed a commit to phlax/envoy that referenced this pull request Apr 15, 2026
@ravenblackx @phlax
Disable excessively flaky test (envoyproxy#42599)
7d7881d 
With a TODO to fix. We can't roll back the PR
that introduced the flakiness (envoyproxy#42370) because it was a security patch.
Relevant flakiness described in
envoyproxy#39856 (comment)
Risk Level: test-only
Testing: it is
Docs Changes: n/a
Release Notes: n/a
Platform Specific Features: n/a

Signed-off-by: Raven Black <ravenblack@dropbox.com>
This was referenced Apr 15, 2026
Merged
Merged
phlax pushed a commit that referenced this pull request Apr 15, 2026
@ravenblackx @phlax
Disable excessively flaky test (#42599)
4255581 
With a TODO to fix. We can't roll back the PR
that introduced the flakiness (#42370) because it was a security patch.
Relevant flakiness described in
#39856 (comment)
Risk Level: test-only
Testing: it is
Docs Changes: n/a
Release Notes: n/a
Platform Specific Features: n/a

Signed-off-by: Raven Black <ravenblack@dropbox.com>
phlax pushed a commit that referenced this pull request Apr 15, 2026
@ravenblackx @phlax
Disable excessively flaky test (#42599)
918d23b 
With a TODO to fix. We can't roll back the PR
that introduced the flakiness (#42370) because it was a security patch.
Relevant flakiness described in
#39856 (comment)
Risk Level: test-only
Testing: it is
Docs Changes: n/a
Release Notes: n/a
Platform Specific Features: n/a

Signed-off-by: Raven Black <ravenblack@dropbox.com>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@agrawroh agrawroh agrawroh approved these changes

@botengyao botengyao botengyao approved these changes

@tyxia tyxia Awaiting requested review from tyxia tyxia is a code owner

@yanavlasov yanavlasov Awaiting requested review from yanavlasov yanavlasov is a code owner

Assignees

@botengyao botengyao

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@phlax @botengyao @agrawroh @yanavlasov