On this page
1.25.5-patch0
Solo build of Istio version 1.25.5-patch0 patch release.
This release note describes the changes of Solo builds between Istio versions 1.25.5 and 1.25.5-patch0, a Solo-specific release.
Security Notice
This build includes fixes for the Envoy CVEs:
- CVE-2025-62504: (CVSS score 6.5, Medium): Lua modified large enough response body will cause Envoy to crash.
- CVE-2025-62409: (CVSS score 6.6, Medium): Large requests and responses can cause TCP connection pool crash.
General Changes
- Bumped base image of the distroless variant to pick up fixes for CVE-2025-8058.
Solo Flavor Changes
No changes in this section.
FIPS Flavor Changes
No changes in this section.