istio
/
istio.io
mirror of https://github.com/istio/istio.io.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

zh-translation: news/releases/1.7.x/announcing-1.7.3/index.md (#9512)

This commit is contained in:
orangegzx 2021-04-15 20:17:49 +08:00 committed by GitHub
parent 6acf0d2c8b
commit e7f9cb366c
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 21 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

21
content/zh/news/releases/1.7.x/announcing-1.7.3/index.md Normal file
View File

@ -0,0 +1,21 @@
---
title: 发布 Istio 1.7.3 版本
linktitle: 1.7.3
subtitle: 安全发布
description: Istio 1.7.3 安全发布。
publishdate: 2020-09-29
release: 1.7.3
aliases:
- /zh/news/announcing-1.7.3
---
该版本修复了 [9 月 29 日帖子](/zh/news/security/istio-security-2020-010) 中,描述的安全漏洞。
{{< relnote >}}
## 安全更新{#security-update}
- __[CVE-2020-25017](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25017)__
在某些情况下当存在多个头HeaderEnvoy 只考虑第一个值。另外Envoy 不会替换所有已存在的非内联头。
- __CVSS Score__ 8.3 [AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:L](https://nvd.nist.gov/vuln-metrics/cvss/v3-calculator?vector=AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:L&version=3.1)