Skip to main content
logoTetrate Enterprise Gateway for EnvoyVersion: v1.6.x

v1.6.3

Updated Envoy Gateway to v1.6.3

Security Updates

  • Bump golang to v1.25.6.
  • Bump Envoy proxy version to v1.36.4. Includes security patches for CVE-2025-0913.
  • Bump Envoy rate limit version to 3fb70258.

Bug Fixes

  • Fixed an issue where unrecoverable discovery errors on checking optional CRDs caused the EG pod to reconcile incomplete resources.
  • Fixed an issue where ExtProc is discarded when failOpen is enabled for Wasm.
  • Fixed an issue where sensitive data was exposed in control plane config dump.
  • Fixed an issue where auto-detect upstream protocol breaks with multiple backends (HTTP + HTTPS).
  • Fixed a server run race condition that could cause goroutine leaks during config reloading.
  • Fixed default namespace for TLS secret object reference to owner namespace.
  • Fixed an issue where wrong cluster type was used with mixed FQDN backend and service backend refs.
  • Fixed an issue where routes with match-all rules were incorrectly merged with specific match rules.