edge-29.9.2
This edge release updates the proxy's dependency on the webpki library to
patch security vulnerability RUSTSEC-2023-0052 (GHSA-8qv2-5vq6-g2g7), a
potential CPU usage denial-of-service attack when accepting a TLS handshake from
an untrusted peer with a maliciously-crafted certificate.
- Addressed security vulnerability RUSTSEC-2023-0052 in the proxy (#11361)
- Fixed
linkerd check --proxyincorrectly checking the proxy version of pods
in thecompletedstate (thanks @mikutas!) (#11295; fixes #11280) - Removed unnecessary
linkerd.io/helm-release-versionannotation from the
linkerd-control-planeHelm chart (thanks @mikutas!) (#11329; fixes
#10778)