1.15.10 (February 13, 2023)
SECURITY:
- mesh: Update Envoy versions to 1.28.1, 1.27.3, and 1.26.7 to address CVE-2024-23324, CVE-2024-23325, CVE-2024-23322, CVE-2024-23323, CVE-2024-23327, and CVE-2023-44487 [GH-20590]
IMPROVEMENTS:
- ProxyCfg: avoid setting a watch on
Internal.ServiceDumpwhen mesh gateway is not used. [GH-20168] - ProxyCfg: only return the nodes list when querying the
Internal.ServiceDumpwatch from proxycfg [GH-20168] - Upgrade to use Go 1.21.7. [GH-20545]
- mesh: update supported envoy version 1.28.0 in addition to 1.27.2, 1.26.6 to support LTS release [GH-20323]
BUG FIXES:
- audit-logs: (Enterprise Only) Fixes non ASCII characters in audit logs because of gzip. [GH-20345]
- connect: Fix issue where re-persisting existing proxy-defaults using
httpprotocol fails with a protocol-mismatch error. [GH-20481] - connect: Remove code coupling where the xDS capacity controller could negatively affect raft autopilot performance. [GH-20511]