Announcing Istio 1.1.16
We're pleased to announce the availability of Istio 1.1.16. Please see below for what's changed.
This release contains fixes for the security vulnerability described in our October 8th, 2019 news post. Specifically:
ISTIO-SECURITY-2019-005: A DoS vulnerability has been discovered by the Envoy community.
- CVE-2019-15226: After investigation, the Istio team has found that this issue could be leveraged for a DoS attack in Istio if an attacker uses a high quantity of very small headers.
Nothing else is included in this release except for the above security fix.