Overview All releases

Version History

v1.16.0-pre.3 v1.16.0-pre.2 v1.16.0-pre.1 v1.16.0-pre.0 v1.15.5 v1.15.4 v1.15.3 v1.15.2 v1.15.1 v1.15.0 v1.15.0-rc.1 v1.15.0-rc.0 v1.15.0-pre.3 v1.15.0-pre.2 v1.15.0-pre.1 v1.15.0-pre.0 v1.14.11 v1.14.10 v1.14.9 v1.14.8 v1.14.7 v1.14.6 v1.14.5 v1.14.4 v1.14.3 v1.14.2 v1.14.1 v1.14.0 v1.14.0-snapshot.4 v1.14.0-snapshot.3

v1.14.0-snapshot.2

v1.14.0-snapshot.1

v1.14.0-snapshot.0

v1.14.0-rc.1 v1.14.0-rc.0 v1.13.16 v1.13.15 v1.13.14 v1.13.13 v1.13.12 v1.13.11 v1.13.10 v1.13.9 v1.13.8 v1.13.7 v1.13.6 v1.13.5 v1.13.4 v1.13.3 v1.13.2 v1.13.1 v1.13.0

v1.13.0-rc5

v1.13.0-rc4

v1.13.0-rc3

v1.13.0-rc2

v1.13.0-rc1

v1.13.0-rc0

v1.12.19 v1.12.18 v1.12.17 v1.12.16 v1.12.15 v1.12.14 v1.12.13 v1.12.12 v1.12.11 v1.12.10 v1.12.9 v1.12.8 v1.12.7 v1.12.6 v1.12.5 v1.12.4 v1.12.3 v1.12.2 v1.12.1 v1.12.0

v1.12.0-rc3

v1.12.0-rc2

v1.12.0-rc1

v1.12.0-rc0

v1.11.20 v1.11.19 v1.11.18 v1.11.17 v1.11.16 v1.11.15 v1.11.14 v1.11.13 v1.11.12 v1.11.11 v1.11.10 v1.11.9 v1.11.8 v1.11.7

v1.11.6

v1.11.5 v1.11.4 v1.11.3 v1.11.2 v1.11.1

v1.11.0

v1.11.0-rc3

v1.11.0-rc2

v1.11.0-rc1

v1.11.0-rc0

v1.10.20 v1.10.19 v1.10.18 v1.10.17 v1.10.16 v1.10.15 v1.10.14 v1.10.13 v1.10.12 v1.10.11 v1.10.10 v1.10.9 v1.10.8 v1.10.7

v1.10.6

v1.10.5

v1.10.4

v1.10.3

v1.10.2

v1.10.1

v1.10.0

v1.10.0-rc2

v1.10.0-rc1

v1.10.0-rc0

v1.9.18 v1.9.17 v1.9.16 v1.9.15 v1.9.14 v1.9.13 v1.9.12

v1.9.11

v1.9.10

v1.9.9

v1.9.8

v1.9.7

v1.9.6

v1.9.5

v1.9.4

v1.9.3

v1.9.2

v1.9.1

v1.9.0

v1.9.0-rc3

v1.9.0-rc2

v1.9.0-rc1

v1.8.13

v1.8.12

v1.8.11

v1.8.10

v1.8.9

v1.8.8

v1.8.7

v1.8.6

v1.8.5

v1.8.4

v1.8.3

v1.8.2

v1.8.1

v1.8.0

v1.8.0-rc4

v1.8.0-rc3

v1.8.0-rc2

v1.8.0-rc1

v1.7.16

v1.7.15

v1.7.14

v1.7.13

v1.7.12

v1.7.11

v1.7.10

v1.7.9

v1.7.8

v1.7.7

v1.7.6

v1.7.5

v1.7.4

v1.7.3

v1.7.2

v1.7.1

v1.7.0

v1.7.0-rc4

v1.7.0-rc3

v1.7.0-rc2

v1.7.0-rc1

v1.6.12

v1.6.11

v1.6.10

v1.6.9

v1.6.8

v1.6.7

v1.6.6

v1.6.5

v1.6.4

v1.6.3

v1.6.2

v1.6.1

v1.6.0

v1.5.13

v1.5.12

v1.5.11

v1.5.10

v1.5.9

v1.5.8

v1.5.7

v1.5.6

v1.5.5

v1.5.4

v1.5.3

v1.5.1

v1.5.0

v1.4.10

v1.4.9

v1.4.8

v1.4.7

v1.4.6

v1.4.5

1.4.4

1.4.3

v1.4.2

1.4.1

v1.4.0

v1.3.8

v1.3.7

1.3.6

1.3.5

v1.3.4

v1.3.3

1.3.2

v1.3.1

1.3.0

v1.2.8

v1.2.7

v1.2.6

v1.2.5

v1.2.4

v1.2.3

1.2.2

v1.2.1

v1.2.0

v1.2.0-rc3

v1.2.0-rc1

v1.1.6

1.1.5

v1.1.4

1.1.3

v1.1.2

v1.1.1

v1.1.0

v1.1.0-rc4

v1.1.0-rc3

v1.1.0-rc2

v1.1.0-rc1

v1.0.7

1.0.6

v1.0.5

v1.0.4

v1.0.3

v1.0.2

v1.0.1

v1.0.0

v1.0.0-rc9

v1.0.0-rc8

v1.0.0-rc7

v1.0.0-rc6

v1.0.0-rc5

v1.0.0-rc4

v1.0.0-rc2

v1.0.0-rc14

v1.0.0-rc13

v1.0.0-rc11

v1.0.0-rc10

v1.0.0-rc1

v0.11

0.10.1

v0.10.0

v0.9.0

v0.9.0-rc1

v0.8.2

v0.8.1

v0.8.0

Cilium - v1.11.6

We are pleased to announce Cilium v1.11.6. This release includes a range of bugfixes and updates Envoy to v1.21.3 to address several moderate, high and critical severity CVEs. This release also includes several improvements to FQDN policy resource usage under high load conditions. See below for additional bugfixes included in this release.

Summary of Changes

Minor Changes:
* Add concurrency limiting for DNS message processing (Backport PR #19858, Upstream PR #19592, @nebril)
* Add config flag to add a prefix to AgentNotReadyNodeTaint value in order to enable the taint being ignored by cluster autoscaler. (Backport PR #20183, Upstream PR #19247, @thejosephstevens)
* Add counter to track all datapath timeouts due to FQDN IP updates (Backport PR #20111, Upstream PR #19809, @ungureanuvladvictor)
* Add type label to the identity metric (Backport PR #20111, Upstream PR #19999, @ungureanuvladvictor)
* Bugtool: Add additional Linux traffic-control (tc) data to cilium-bugtool output. (Backport PR #19966, Upstream PR #19856, @tommyp1ckles)
* Change default agent health check port to avoid conflicts (Backport PR #19858, Upstream PR #19830, @tklauser)
* Ensure priority scheduling of CNI agent. Repair a deprecated Kubernetes annotation. The annotation was used to schedule pods at high priority. This deprecation, which occurred in Kubernetes 1.16, results in unexpected behavior. (Backport PR #20111, Upstream PR #18667, @sdake)
* envoy: Bump cilium envoy to latest version v1.21.3 (Backport PR #20146, Upstream PR #20142, @sayboras)
* ui: v0.9.0 images and drop envoy proxy container (Backport PR #20111, Upstream PR #19565, @geakstr)

Bugfixes:
* cli: Update regex for key value validation (Backport PR #19858, Upstream PR #19794, @sayboras)
* cli: Use custom named map instead of StringToStringVar (Backport PR #20111, Upstream PR #19968, @sayboras)
* clustermesh: Add ownerReferences for CiliumNodes (Backport PR #20111, Upstream PR #19959, @sayboras)
* cmd: Allow more complicated patterns in map string type. (Backport PR #20111, Upstream PR #19955, @sayboras)
* datapath: Fix implicit-int-conversion err in common.h (Backport PR #19966, Upstream PR #19832, @brb)
* Fix bug where established host connections would be interrupted on agent restart if the host firewall was enabled. (Backport PR #20111, Upstream PR #19998, @pchaigno)
* Fix memory leak in the DNS cache when a long-lived endpoint makes many unique DNS lookups over time (Backport PR #20111, Upstream PR #19925, @christarazi)
* Fix race condition leading to inconsistent CiliumNode that can cause the agent to fatal. (Backport PR #20111, Upstream PR #19923, @pchaigno)

CI Changes:
* jenkins: switch to ad-hoc GKE cluster creation/deletion (Backport PR #19966, Upstream PR #19918, @nbusseneau)
* test: Wait for pod termination in K8sServicesTest (Backport PR #19858, Upstream PR #19750, @brb)

Misc Changes:
* api: change "group not found" log to debug (Backport PR #19966, Upstream PR #19927, @tklauser)
* bugtool: Add structured node and health output (Backport PR #20111, Upstream PR #20011, @gandro)
* build(deps): bump actions/cache from 3.0.2 to 3.0.3 (#20023, @dependabot[bot])
* build(deps): bump actions/cache from 3.0.3 to 3.0.4 (#20102, @dependabot[bot])
* build(deps): bump actions/setup-go from 3.0.0 to 3.1.0 (#19803, @dependabot[bot])
* build(deps): bump actions/setup-go from 3.1.0 to 3.2.0 (#19974, @dependabot[bot])
* build(deps): bump actions/upload-artifact from 3.0.0 to 3.1.0 (#19902, @dependabot[bot])
* build(deps): bump github/codeql-action from 2.1.11 to 2.1.12 (#20059, @dependabot[bot])
* build(deps): bump github/codeql-action from 2.1.9 to 2.1.11 (#19854, @dependabot[bot])
* build(deps): bump golangci/golangci-lint-action from 3.1.0 to 3.2.0 (#19783, @dependabot[bot])
* build(deps): bump KyleMayes/install-llvm-action from 1.5.2 to 1.5.3 (#19868, @dependabot[bot])
* build(deps): bump library/alpine from 3.15.4 to 3.16.0 in /images/cache (#19944, @dependabot[bot])
* Do not disable peer service when hubble.listenAddress is empty (Backport PR #19966, Upstream PR #19886, @chancez)
* docs: Add docs-builder build as dependency to live preview (Backport PR #19966, Upstream PR #19885, @qmonnet)
* docs: add kube-apiserver to the special identity list (Backport PR #20111, Upstream PR #20047, @kaworu)
* docs: Document operator.unmanagedPodWatcher (Backport PR #19846, Upstream PR #19820, @joestringer)
* docs: Fix incorrect command in IPsec GSG (Backport PR #19858, Upstream PR #19767, @pchaigno)
* docs: Fix incorrect FQDN flag (Backport PR #19966, Upstream PR #19930, @pchaigno)
* docs: Fix max SPI value for IPsec key rotations (Backport PR #19966, Upstream PR #19893, @pchaigno)
* docs: Remove '\r' chars from grep result to parse Alpine image name (Backport PR #19966, Upstream PR #19888, @qmonnet)
* Document that clustermesh cluster-id range is 1-255 (Backport PR #19858, Upstream PR #19683, @stonith)
* Expose metrics for active FQDN connections per endpoint (Backport PR #20111, Upstream PR #19857, @christarazi)
* helm: don't generate the hubble-peer svc during preflight checks (Backport PR #19858, Upstream PR #19759, @kaworu)
* helm: use port 80/443 by default for the peer service (Backport PR #20111, Upstream PR #19933, @rolinh)
* Improve Cilium DNS Proxy-related error metrics (Backport PR #19858, Upstream PR #19702, @christarazi)
* ipcache: Error out from InjectLabels if Checker is nil (Backport PR #19966, Upstream PR #19887, @jrajahalme)
* k8s: Update libraries to v1.23.5 (#19245, @nathanjsweet)
* metrics: Fix NaN value for cilium metrics list CLI (Backport PR #20111, Upstream PR #19987, @sayboras)
* Optimize CIDR label functions (Backport PR #20111, Upstream PR #19843, @christarazi)
* pkg/fqdn: Replace remaining usages of regex compile with LRU (Backport PR #20111, Upstream PR #19875, @christarazi)
* Templatize helm template image references (Backport PR #20189, Upstream PR #20066, @joestringer)
* Use FQDN regex LRU everywhere (Backport PR #19858, Upstream PR #19632, @christarazi)
* v1.11: Update Go to 1.17.10 (#19776, @tklauser)
* v1.11: Update Go to 1.17.11 (#20063, @tklauser)

Other Changes:
* install: Update image digests for v1.11.5 (#19840, @joestringer)
* v1.11: Pick up the latest cilium-cli for kind conformance test (#19889, @michi-covalent)
* v1.11: tests-l4lb: Use Helm chart from local branch (#20003, @jibi)
* workflow: l4lb: pass correct path for PR checkout (#20009, @jibi)

Docker Manifests

cilium

docker.io/cilium/cilium:v1.11.6@sha256:f7f93c26739b6641a3fa3d76b1e1605b15989f25d06625260099e01c8243f54c
quay.io/cilium/cilium:v1.11.6@sha256:f7f93c26739b6641a3fa3d76b1e1605b15989f25d06625260099e01c8243f54c
docker.io/cilium/cilium:stable@sha256:f7f93c26739b6641a3fa3d76b1e1605b15989f25d06625260099e01c8243f54c
quay.io/cilium/cilium:stable@sha256:f7f93c26739b6641a3fa3d76b1e1605b15989f25d06625260099e01c8243f54c

clustermesh-apiserver

docker.io/cilium/clustermesh-apiserver:v1.11.6@sha256:d368f1415087fea8fe3effa2f5dd36702b8f7daaa3201f61f5b8435890c5d81c
quay.io/cilium/clustermesh-apiserver:v1.11.6@sha256:d368f1415087fea8fe3effa2f5dd36702b8f7daaa3201f61f5b8435890c5d81c
docker.io/cilium/clustermesh-apiserver:stable@sha256:d368f1415087fea8fe3effa2f5dd36702b8f7daaa3201f61f5b8435890c5d81c
quay.io/cilium/clustermesh-apiserver:stable@sha256:d368f1415087fea8fe3effa2f5dd36702b8f7daaa3201f61f5b8435890c5d81c

docker-plugin

docker.io/cilium/docker-plugin:v1.11.6@sha256:fadaa0287037e65f0bcb893d0ecb4e761dc6784acfd7a9901b35114576be6f26
quay.io/cilium/docker-plugin:v1.11.6@sha256:fadaa0287037e65f0bcb893d0ecb4e761dc6784acfd7a9901b35114576be6f26
docker.io/cilium/docker-plugin:stable@sha256:fadaa0287037e65f0bcb893d0ecb4e761dc6784acfd7a9901b35114576be6f26
quay.io/cilium/docker-plugin:stable@sha256:fadaa0287037e65f0bcb893d0ecb4e761dc6784acfd7a9901b35114576be6f26

hubble-relay

docker.io/cilium/hubble-relay:v1.11.6@sha256:fd9034a2d04d5b973f1e8ed44f230ea195b89c37955ff32e34e5aa68f3ed675a
quay.io/cilium/hubble-relay:v1.11.6@sha256:fd9034a2d04d5b973f1e8ed44f230ea195b89c37955ff32e34e5aa68f3ed675a
docker.io/cilium/hubble-relay:stable@sha256:fd9034a2d04d5b973f1e8ed44f230ea195b89c37955ff32e34e5aa68f3ed675a
quay.io/cilium/hubble-relay:stable@sha256:fd9034a2d04d5b973f1e8ed44f230ea195b89c37955ff32e34e5aa68f3ed675a

operator-alibabacloud

docker.io/cilium/operator-alibabacloud:v1.11.6@sha256:73037b2a6186dcede3c04abebf23c057a45f14b8b6680945d4cca4d25042c800
quay.io/cilium/operator-alibabacloud:v1.11.6@sha256:73037b2a6186dcede3c04abebf23c057a45f14b8b6680945d4cca4d25042c800
docker.io/cilium/operator-alibabacloud:stable@sha256:73037b2a6186dcede3c04abebf23c057a45f14b8b6680945d4cca4d25042c800
quay.io/cilium/operator-alibabacloud:stable@sha256:73037b2a6186dcede3c04abebf23c057a45f14b8b6680945d4cca4d25042c800

operator-aws

docker.io/cilium/operator-aws:v1.11.6@sha256:da351877cbeada32a371ccb6551eb0a6fd5994eabf6b2cc6244b60c12104072d
quay.io/cilium/operator-aws:v1.11.6@sha256:da351877cbeada32a371ccb6551eb0a6fd5994eabf6b2cc6244b60c12104072d
docker.io/cilium/operator-aws:stable@sha256:da351877cbeada32a371ccb6551eb0a6fd5994eabf6b2cc6244b60c12104072d
quay.io/cilium/operator-aws:stable@sha256:da351877cbeada32a371ccb6551eb0a6fd5994eabf6b2cc6244b60c12104072d

operator-azure

docker.io/cilium/operator-azure:v1.11.6@sha256:ea4713b8f6b8f6a067bdcab1e13793491d3542abccf7690fb6234bb667d2dfdb
quay.io/cilium/operator-azure:v1.11.6@sha256:ea4713b8f6b8f6a067bdcab1e13793491d3542abccf7690fb6234bb667d2dfdb
docker.io/cilium/operator-azure:stable@sha256:ea4713b8f6b8f6a067bdcab1e13793491d3542abccf7690fb6234bb667d2dfdb
quay.io/cilium/operator-azure:stable@sha256:ea4713b8f6b8f6a067bdcab1e13793491d3542abccf7690fb6234bb667d2dfdb

operator-generic

docker.io/cilium/operator-generic:v1.11.6@sha256:9f6063c7bcaede801a39315ec7c166309f6a6783e98665f6693939cf1701bc17
quay.io/cilium/operator-generic:v1.11.6@sha256:9f6063c7bcaede801a39315ec7c166309f6a6783e98665f6693939cf1701bc17
docker.io/cilium/operator-generic:stable@sha256:9f6063c7bcaede801a39315ec7c166309f6a6783e98665f6693939cf1701bc17
quay.io/cilium/operator-generic:stable@sha256:9f6063c7bcaede801a39315ec7c166309f6a6783e98665f6693939cf1701bc17

operator

docker.io/cilium/operator:v1.11.6@sha256:ad69e92162182be1544e7c8997776ba7b6de53930872f2bb9f0bc2347d88aecf
quay.io/cilium/operator:v1.11.6@sha256:ad69e92162182be1544e7c8997776ba7b6de53930872f2bb9f0bc2347d88aecf
docker.io/cilium/operator:stable@sha256:ad69e92162182be1544e7c8997776ba7b6de53930872f2bb9f0bc2347d88aecf
quay.io/cilium/operator:stable@sha256:ad69e92162182be1544e7c8997776ba7b6de53930872f2bb9f0bc2347d88aecf

Details

date

June 15, 2022, 9:38 p.m.

name

1.11.6

type

Patch

official page

https://github.com/cilium/cilium/releases/tag/v1.11.6

👇

🔍View and search all Cilium releases.
🛠️Create and share lists to track your tools.
🚨Setup notifications for major, security, feature or patch updates.
🚀Much more coming soon!

Continue with GitHub

Continue with Google

Username

Password

Password (again)

leave this field blank to prove your humanity