This repository has been archived by the owner on Jun 20, 2024. It is now read-only.
Weave 2.6.3
Note 2.6.4 was created to relax the iptables blocking rule added in this release, because it turned out to be too strict.
Release 2.6.3
This release has a couple of security improvements, and some other fixes.
Note that we still recommend to remove CAP_NET_RAW access from untrusted containers.
- Block non-local traffic to the Weave control port [CVE-2020-8558] #3805
- Tell Linux not to accept router advisory messages [CVE-2020-11091] #3801
- Network Policy Controller: add a metric to show errors while operating #3804
- Network Policy Controller: don't treat named port as a fatal error #3790