Skip to content

Commit a44535b

Browse files
dhawtondhawton
authored
[master] fix security advisory 2025-002 (#16942)
* fix sec adv * lint Signed-off-by: Daniel Hawton <[email protected]> --------- Signed-off-by: Daniel Hawton <[email protected]>
1 parent f474adc commit a44535b

File tree

2 files changed

+11
-8
lines changed

2 files changed

+11
-8
lines changed

.spelling

Lines changed: 2 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -425,6 +425,8 @@ CVE-2025-30157
425425
CVE-2025-46821
426426
CVE-2025-54588
427427
CVE-2025-55162
428+
CVE-2025-62409
429+
CVE-2025-62504
428430
CVEs
429431
cves
430432
cvss

content/en/news/security/istio-security-2025-002/index.md

Lines changed: 9 additions & 8 deletions
Original file line numberDiff line numberDiff line change
@@ -1,12 +1,12 @@
11
---
2-
title: ISTIO-SECURITY-2025-001
2+
title: ISTIO-SECURITY-2025-002
33
subtitle: Security Bulletin
44
description: CVEs reported by Envoy.
55
cves: [CVE-2025-55162, CVE-2025-54588]
6-
cvss: "7.5"
7-
vector: "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"
8-
releases: ["1.27.0", "1.26.0 to 1.26.3", "1.25.0 to 1.25.4"]
9-
publishdate: 2025-09-03
6+
cvss: "6.6"
7+
vector: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"
8+
releases: ["1.27.0 to 1.27.1", "1.26.0 to 1.26.5"]
9+
publishdate: 2025-10-20
1010
keywords: [CVE]
1111
skip_seealso: true
1212
---
@@ -17,9 +17,10 @@ skip_seealso: true
1717

1818
### Envoy CVEs
1919

20-
- __[CVE-2025-55162](https://github.com/envoyproxy/envoy/security/advisories/GHSA-95j4-hw7f-v2rh)__: (CVSS score 6.3, Moderate): OAuth2 Filter Signout route will not clear cookies because of missing "secure;" flag
21-
- __[CVE-2025-54588](https://github.com/envoyproxy/envoy/security/advisories/GHSA-g9vw-6pvx-7gmw)__: (CVSS score 7.5, High): Use after free in DNS cache
20+
- __[CVE-2025-62504](https://nvd.nist.gov/vuln/detail/CVE-2025-62504)__: (CVSS score 6.5, Medium): Lua modified large enough response body will cause Envoy to crash.
21+
- __[CVE-2025-62409](https://nvd.nist.gov/vuln/detail/CVE-2025-62409)__: (CVSS score 6.6, Medium): Large requests and responses can cause TCP connection pool crash.
2222

2323
## Am I Impacted?
2424

25-
You are impacted if you are using Istio 1.27.0, 1.26.0 to 1.26.3, or 1.25.0 to 1.25.4, and you use cookies named with prefix `__Secure-` or `__Host-`, or you are using `EnvoyFilter` with `dynamic_forward_proxy`.
25+
You are impacted if you use Lua via `EnvoyFilter` that returns an oversized response body exceeding the `per_connection_buffer_limit_bytes` (default 1MB) or where you have large requests
26+
and responses where a connection can be closed but data from upstream is still being sent.

0 commit comments

Comments
 (0)