buoyant.io

Buoyant Enterprise for Linkerd

enterprise-2.18.7

December 15, 2025

The 2.18.7 stable point release fixes an issue with TLS algorithm negotiation that may affect connection establishment with other FIPS-validated proxy versions, and includes additional dependency upgrades.

Previous release: enterprise-2.18.5.

Supported Kubernetes versions

For this release, the minimum supported Kubernetes version remains 1.22, and the maximum supported Kubernetes version remains 1.32.

Who should upgrade?

This is an important FIPS update and users who run the FIPS-validated version of Linkerd should upgrade to this release as soon as possible. Users without FIPS-validated Linkerd can upgrade or skip this release at their convenience.

Upgrade guidance

This is a stable point release designed to introduce minimal change. Please see the instructions in Upgrading BEL for how to upgrade.

To upgrade with BEL’s lifecycle automation operator, you will need Buoyant Extension version v0.38.0 or later.

Changelog

  • Fix an issue with TLS algorithm negotiation that may affect connection establishment with other FIPS-validated proxy versions
  • Update golang to remediate CVE-2025-61727 and CVE-2025-61729