Minor Release with Upgrade to Go 1.25.5 to mitigate CVE-2025-61729 and CVE-2025-61727?

**Environment info:**

* KrakenD version: 2.12.0
* System info: docker

Hey there,

I was wondering if you plan to release a new minor version including an upgrade of Go to version 1.25.5 to mitigate the following CVEs:

- https://nvd.nist.gov/vuln/detail/CVE-2025-61729 (CVSS3: 7.5)
- https://nvd.nist.gov/vuln/detail/CVE-2025-61727 (CVSS3: 6.5)

My team uses krakend EE and there has been a 2.12.2 release including this Go upgrade: https://www.krakend.io/blog/krakend-ee-2.12.2-release-notes/

We still maintain a krakend CE Image as backup, so an update would be nice.

Kind regards

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Minor Release with Upgrade to Go 1.25.5 to mitigate CVE-2025-61729 and CVE-2025-61727? #1053

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Minor Release with Upgrade to Go 1.25.5 to mitigate CVE-2025-61729 and CVE-2025-61727? #1053

Description

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions