Skip to content

Release 1.81.1

Latest
Latest

Choose a tag to compare

View all tags
@easwars easwars released this 14 May 17:30
· 1 commit to v1.81.x since this release
v1.81.1
caf0772
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

Security

  • xds/rbac: Fix a potential authorization bypass caused by incorrectly falling through URI/DNS SANs to Subject Distinguished Name (DN) when matching the authenticated principal name. With this fix, only the first non-empty identity source will be used, as per gRFC A41. (#9111)

Bug Fixes

  • otel: Segregate client and server RPC information used for metrics and traces, to avoid one overwriting the other. (#9081)

Contributors

al4an444
Assets 2
Loading