https://docs.buoyant.io/release-notes/buoyant-enterprise-linkerd/Recent releases for Buoyant Enterprise for LinkerdFri, 05 Jun 2026 00:00:00 +0000https://docs.buoyant.io/release-notes/buoyant-enterprise-linkerd/enterprise-2.17.11/Fri, 05 Jun 2026 00:00:00 +0000https://docs.buoyant.io/release-notes/buoyant-enterprise-linkerd/enterprise-2.17.11/<p>The 2.17.11 stable point release updates some dependencies to address reported CVEs in underlying components.</p> <p>Previous release: <a href="https://docs.buoyant.io/release-notes/buoyant-enterprise-linkerd/enterprise-2.17.10/">enterprise-2.17.10</a>.</p> <h2> Supported Kubernetes versions </h2> <p>For this release, the minimum supported Kubernetes version remains 1.22, and the maximum supported Kubernetes version remains 1.32.</p> <h2> Who should upgrade? </h2> <p>This is a CVE hygiene release and does not fix any known exploitable vulnerabilities with Linkerd. Users may upgrade to this release at their convenience.</p> <h2> Upgrade guidance </h2> <p>This is a stable point release designed to introduce minimal change. Please see the instructions in <a href="https://docs.buoyant.io/buoyant-enterprise-linkerd/2.17/upgrade/">Upgrading BEL</a> for how to upgrade.</p> <p>To upgrade with <a href="https://docs.buoyant.io/buoyant-enterprise-linkerd/latest/features/operator/">BEL’s lifecycle automation operator</a>, you will need <a href="https://docs.buoyant.io/release-notes/buoyant-extension/">Buoyant Extension</a> version v0.39.2 or later.</p> <h2> Changelog </h2> <ul> <li>Update <code>golang</code> to remediate <ul> <li><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-42501" rel="noopener" target="_blank">CVE-2026-42501</a></li> <li><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-42499" rel="noopener" target="_blank">CVE-2026-42499</a></li> <li><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-39836" rel="noopener" target="_blank">CVE-2026-39836</a></li> <li><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-39826" rel="noopener" target="_blank">CVE-2026-39826</a></li> <li><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-39825" rel="noopener" target="_blank">CVE-2026-39825</a></li> <li><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-39823" rel="noopener" target="_blank">CVE-2026-39823</a></li> <li><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-39820" rel="noopener" target="_blank">CVE-2026-39820</a></li> <li><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-39819" rel="noopener" target="_blank">CVE-2026-39819</a></li> <li><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-39817" rel="noopener" target="_blank">CVE-2026-39817</a></li> <li><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-33814" rel="noopener" target="_blank">CVE-2026-33814</a></li> <li><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-33811" rel="noopener" target="_blank">CVE-2026-33811</a></li> </ul> </li> <li>Update <code>github.com/containerd/containerd</code> dependency to remediate <ul> <li><a href="https://github.com/advisories/GHSA-fqw6-gf59-qr4w" rel="noopener" target="_blank">GHSA-fqw6-gf59-qr4w</a></li> </ul> </li> </ul>https://docs.buoyant.io/release-notes/buoyant-enterprise-linkerd/enterprise-2.18.11/Fri, 05 Jun 2026 00:00:00 +0000https://docs.buoyant.io/release-notes/buoyant-enterprise-linkerd/enterprise-2.18.11/<p>The 2.18.11 stable point release updates some dependencies to address reported CVEs in underlying components.</p> <div class="alert alert--warning"> <div class="alert__icon"><svg class="icon icon--warning" width="24" height="24" viewBox="0 0 24 24" xmlns="http://www.w3.org/2000/svg"> <path d="M13 14H11V9H13M13 18H11V16H13M1 21H23L12 2L1 21Z" fill="#818181" /> </svg></div> <div class="alert__body"> FIPS users who are upgrading from 2.18 to 2.19 must follow a specific sequence to preserve zero-downtime upgrades. You must first upgrade to <a href="https://docs.buoyant.io/release-notes/buoyant-enterprise-linkerd/enterprise-2.18.7/">2.18.7</a> or later, and then to <a href="https://docs.buoyant.io/release-notes/buoyant-enterprise-linkerd/enterprise-2.19.4/">2.19.4</a> or later. </div> </div> <p>Previous release: <a href="https://docs.buoyant.io/release-notes/buoyant-enterprise-linkerd/enterprise-2.18.10/">enterprise-2.18.10</a>.</p> <h2> Supported Kubernetes versions </h2> <p>For this release, the minimum supported Kubernetes version remains 1.22, and the maximum supported Kubernetes version remains 1.32.</p> <h2> Who should upgrade? </h2> <p>This is a CVE hygiene release and does not fix any known exploitable vulnerabilities with Linkerd. Users may upgrade to this release at their convenience.</p> <h2> Upgrade guidance </h2> <p>This is a stable point release designed to introduce minimal change. Please see the instructions in <a href="https://docs.buoyant.io/buoyant-enterprise-linkerd/2.18/upgrade/">Upgrading BEL</a> for how to upgrade.</p> <p>To upgrade with <a href="https://docs.buoyant.io/buoyant-enterprise-linkerd/latest/features/operator/">BEL’s lifecycle automation operator</a>, you will need <a href="https://docs.buoyant.io/release-notes/buoyant-extension/">Buoyant Extension</a> version v0.39.2 or later.</p> <h2> Changelog </h2> <ul> <li>Update <code>golang</code> to remediate <ul> <li><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-42501" rel="noopener" target="_blank">CVE-2026-42501</a></li> <li><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-42499" rel="noopener" target="_blank">CVE-2026-42499</a></li> <li><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-39836" rel="noopener" target="_blank">CVE-2026-39836</a></li> <li><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-39826" rel="noopener" target="_blank">CVE-2026-39826</a></li> <li><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-39825" rel="noopener" target="_blank">CVE-2026-39825</a></li> <li><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-39823" rel="noopener" target="_blank">CVE-2026-39823</a></li> <li><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-39820" rel="noopener" target="_blank">CVE-2026-39820</a></li> <li><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-39819" rel="noopener" target="_blank">CVE-2026-39819</a></li> <li><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-39817" rel="noopener" target="_blank">CVE-2026-39817</a></li> <li><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-33814" rel="noopener" target="_blank">CVE-2026-33814</a></li> <li><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-33811" rel="noopener" target="_blank">CVE-2026-33811</a></li> </ul> </li> <li>Update <code>github.com/containerd/containerd</code> dependency to remediate <ul> <li><a href="https://github.com/advisories/GHSA-fqw6-gf59-qr4w" rel="noopener" target="_blank">GHSA-fqw6-gf59-qr4w</a></li> </ul> </li> </ul>https://docs.buoyant.io/release-notes/buoyant-enterprise-linkerd/enterprise-2.19.8/Fri, 05 Jun 2026 00:00:00 +0000https://docs.buoyant.io/release-notes/buoyant-enterprise-linkerd/enterprise-2.19.8/<p>The 2.19.8 stable point release updates some dependencies to address reported CVEs in underlying components.</p> <div class="alert alert--warning"> <div class="alert__icon"><svg class="icon icon--warning" width="24" height="24" viewBox="0 0 24 24" xmlns="http://www.w3.org/2000/svg"> <path d="M13 14H11V9H13M13 18H11V16H13M1 21H23L12 2L1 21Z" fill="#818181" /> </svg></div> <div class="alert__body"> FIPS users who are upgrading from 2.18 to 2.19 must follow a specific sequence to preserve zero-downtime upgrades. You must first upgrade to <a href="https://docs.buoyant.io/release-notes/buoyant-enterprise-linkerd/enterprise-2.18.7/">2.18.7</a> or later, and then to <a href="https://docs.buoyant.io/release-notes/buoyant-enterprise-linkerd/enterprise-2.19.4/">2.19.4</a> or later. </div> </div> <p>Previous release: <a href="https://docs.buoyant.io/release-notes/buoyant-enterprise-linkerd/enterprise-2.19.7/">enterprise-2.19.7</a>.</p> <h2> Supported Kubernetes versions </h2> <p>For this release, the minimum supported Kubernetes version remains 1.29, and the maximum supported Kubernetes version remains 1.35.</p> <h2> Who should upgrade? </h2> <p>This is a CVE hygiene release and does not fix any known exploitable vulnerabilities with Linkerd. Users may upgrade to this release at their convenience.</p> <h2> Upgrade guidance </h2> <p>This is a stable point release designed to introduce minimal change. Please see the instructions in <a href="https://docs.buoyant.io/buoyant-enterprise-linkerd/2.19/upgrade/">Upgrading BEL</a> for how to upgrade.</p> <p>To upgrade with <a href="https://docs.buoyant.io/buoyant-enterprise-linkerd/latest/features/operator/">BEL’s lifecycle automation operator</a>, you will need <a href="https://docs.buoyant.io/release-notes/buoyant-extension/">Buoyant Extension</a> version v0.39.2 or later.</p> <h2> Changelog </h2> <ul> <li>Update <code>golang</code> to remediate <ul> <li><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-42501" rel="noopener" target="_blank">CVE-2026-42501</a></li> <li><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-42499" rel="noopener" target="_blank">CVE-2026-42499</a></li> <li><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-39836" rel="noopener" target="_blank">CVE-2026-39836</a></li> <li><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-39826" rel="noopener" target="_blank">CVE-2026-39826</a></li> <li><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-39825" rel="noopener" target="_blank">CVE-2026-39825</a></li> <li><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-39823" rel="noopener" target="_blank">CVE-2026-39823</a></li> <li><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-39820" rel="noopener" target="_blank">CVE-2026-39820</a></li> <li><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-39819" rel="noopener" target="_blank">CVE-2026-39819</a></li> <li><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-39817" rel="noopener" target="_blank">CVE-2026-39817</a></li> <li><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-33814" rel="noopener" target="_blank">CVE-2026-33814</a></li> <li><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-33811" rel="noopener" target="_blank">CVE-2026-33811</a></li> </ul> </li> <li>Update <code>github.com/containerd/containerd</code> dependency to remediate <ul> <li><a href="https://github.com/advisories/GHSA-fqw6-gf59-qr4w" rel="noopener" target="_blank">GHSA-fqw6-gf59-qr4w</a></li> </ul> </li> <li>Update <code>rustls-webpki</code> dependency to remediate <ul> <li><a href="https://github.com/advisories/GHSA-82j2-j2ch-gfr8" rel="noopener" target="_blank">GHSA-82j2-j2ch-gfr8</a></li> </ul> </li> </ul>https://docs.buoyant.io/release-notes/buoyant-enterprise-linkerd/enterprise-2.17.10/Tue, 19 May 2026 00:00:00 +0000https://docs.buoyant.io/release-notes/buoyant-enterprise-linkerd/enterprise-2.17.10/<p>The 2.17.10 stable point release updates some dependencies to address reported CVEs in underlying components.</p> <p>Previous release: <a href="https://docs.buoyant.io/release-notes/buoyant-enterprise-linkerd/enterprise-2.17.9/">enterprise-2.17.9</a>.</p> <h2> Supported Kubernetes versions </h2> <p>For this release, the minimum supported Kubernetes version remains 1.22, and the maximum supported Kubernetes version remains 1.32.</p> <h2> Who should upgrade? </h2> <p>This is a CVE hygiene release and does not fix any known exploitable vulnerabilities with Linkerd. Users may upgrade to this release at their convenience.</p> <h2> Upgrade guidance </h2> <p>This is a stable point release designed to introduce minimal change. Please see the instructions in <a href="https://docs.buoyant.io/buoyant-enterprise-linkerd/2.17/upgrade/">Upgrading BEL</a> for how to upgrade.</p> <p>To upgrade with <a href="https://docs.buoyant.io/buoyant-enterprise-linkerd/latest/features/operator/">BEL’s lifecycle automation operator</a>, you will need <a href="https://docs.buoyant.io/release-notes/buoyant-extension/">Buoyant Extension</a> version v0.39.0 or later.</p> <h2> Changelog </h2> <ul> <li>Update <code>go.opentelemetry.io/otel</code> dependency to remediate <ul> <li><a href="https://github.com/advisories/GHSA-mh2q-q3fh-2475" rel="noopener" target="_blank">GHSA-mh2q-q3fh-2475</a></li> </ul> </li> <li>Update <code>golang</code> to remediate <ul> <li><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-27143" rel="noopener" target="_blank">CVE-2026-27143</a></li> <li><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-27144" rel="noopener" target="_blank">CVE-2026-27144</a></li> <li><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-32289" rel="noopener" target="_blank">CVE-2026-32289</a></li> <li><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-32288" rel="noopener" target="_blank">CVE-2026-32288</a></li> <li><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-32283" rel="noopener" target="_blank">CVE-2026-32283</a></li> <li><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-32282" rel="noopener" target="_blank">CVE-2026-32282</a></li> <li><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-32281" rel="noopener" target="_blank">CVE-2026-32281</a></li> <li><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-32280" rel="noopener" target="_blank">CVE-2026-32280</a></li> <li><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-27140" rel="noopener" target="_blank">CVE-2026-27140</a></li> </ul> </li> <li>Update <code>github.com/moby/spdystream</code> dependency to remediate <ul> <li><a href="https://github.com/advisories/GHSA-pc3f-x583-g7j2" rel="noopener" target="_blank">GHSA-pc3f-x583-g7j2</a></li> </ul> </li> <li>Update <code>musl-utils</code> dependency to remediate <ul> <li><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-6042" rel="noopener" target="_blank">CVE-2026-6042</a></li> <li><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-40200" rel="noopener" target="_blank">CVE-2026-40200</a></li> </ul> </li> <li>Update <code>libcap2</code> dependency to remediate <ul> <li><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-4878" rel="noopener" target="_blank">CVE-2026-4878</a></li> </ul> </li> <li>Update <code>helm.sh/helm/v3</code> dependency to remediate <ul> <li><a href="https://github.com/advisories/GHSA-hr2v-4r36-88hr" rel="noopener" target="_blank">GHSA-hr2v-4r36-88hr</a></li> </ul> </li> <li>Update <code>libssl3</code> dependency to remediate <ul> <li><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-2673" rel="noopener" target="_blank">CVE-2026-2673</a></li> <li><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-31790" rel="noopener" target="_blank">CVE-2026-31790</a></li> <li><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-31789" rel="noopener" target="_blank">CVE-2026-31789</a></li> <li><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-28390" rel="noopener" target="_blank">CVE-2026-28390</a></li> <li><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-28389" rel="noopener" target="_blank">CVE-2026-28389</a></li> <li><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-28388" rel="noopener" target="_blank">CVE-2026-28388</a></li> <li><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-28387" rel="noopener" target="_blank">CVE-2026-28387</a></li> </ul> </li> <li>Update <code>libc</code> dependency to remediate <ul> <li><a href="https://nvd.nist.gov/vuln/detail/CVE-2025-15281" rel="noopener" target="_blank">CVE-2025-15281</a></li> <li><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-0861" rel="noopener" target="_blank">CVE-2026-0861</a></li> <li><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-0915" rel="noopener" target="_blank">CVE-2026-0915</a></li> <li><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-4046" rel="noopener" target="_blank">CVE-2026-4046</a></li> <li><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-4437" rel="noopener" target="_blank">CVE-2026-4437</a></li> <li><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-4438" rel="noopener" target="_blank">CVE-2026-4438</a></li> </ul> </li> </ul>https://docs.buoyant.io/release-notes/buoyant-enterprise-linkerd/enterprise-2.18.10/Tue, 19 May 2026 00:00:00 +0000https://docs.buoyant.io/release-notes/buoyant-enterprise-linkerd/enterprise-2.18.10/<p>The 2.18.10 stable point release updates some dependencies to address reported CVEs in underlying components.</p> <div class="alert alert--warning"> <div class="alert__icon"><svg class="icon icon--warning" width="24" height="24" viewBox="0 0 24 24" xmlns="http://www.w3.org/2000/svg"> <path d="M13 14H11V9H13M13 18H11V16H13M1 21H23L12 2L1 21Z" fill="#818181" /> </svg></div> <div class="alert__body"> FIPS users who are upgrading from 2.18 to 2.19 must follow a specific sequence to preserve zero-downtime upgrades. You must first upgrade to <a href="https://docs.buoyant.io/release-notes/buoyant-enterprise-linkerd/enterprise-2.18.7/">2.18.7</a> or later, and then to <a href="https://docs.buoyant.io/release-notes/buoyant-enterprise-linkerd/enterprise-2.19.4/">2.19.4</a> or later. </div> </div> <p>Previous release: <a href="https://docs.buoyant.io/release-notes/buoyant-enterprise-linkerd/enterprise-2.18.9/">enterprise-2.18.9</a>.</p> <h2> Supported Kubernetes versions </h2> <p>For this release, the minimum supported Kubernetes version remains 1.22, and the maximum supported Kubernetes version remains 1.32.</p> <h2> Who should upgrade? </h2> <p>This is a CVE hygiene release and does not fix any known exploitable vulnerabilities with Linkerd. Users may upgrade to this release at their convenience.</p> <h2> Upgrade guidance </h2> <p>This is a stable point release designed to introduce minimal change. Please see the instructions in <a href="https://docs.buoyant.io/buoyant-enterprise-linkerd/2.18/upgrade/">Upgrading BEL</a> for how to upgrade.</p> <p>To upgrade with <a href="https://docs.buoyant.io/buoyant-enterprise-linkerd/latest/features/operator/">BEL’s lifecycle automation operator</a>, you will need <a href="https://docs.buoyant.io/release-notes/buoyant-extension/">Buoyant Extension</a> version v0.39.0 or later.</p> <h2> Changelog </h2> <ul> <li>Update <code>go.opentelemetry.io/otel</code> dependency to remediate <ul> <li><a href="https://github.com/advisories/GHSA-mh2q-q3fh-2475" rel="noopener" target="_blank">GHSA-mh2q-q3fh-2475</a></li> </ul> </li> <li>Update <code>golang</code> to remediate <ul> <li><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-27143" rel="noopener" target="_blank">CVE-2026-27143</a></li> <li><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-27144" rel="noopener" target="_blank">CVE-2026-27144</a></li> <li><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-32289" rel="noopener" target="_blank">CVE-2026-32289</a></li> <li><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-32288" rel="noopener" target="_blank">CVE-2026-32288</a></li> <li><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-32283" rel="noopener" target="_blank">CVE-2026-32283</a></li> <li><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-32282" rel="noopener" target="_blank">CVE-2026-32282</a></li> <li><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-32281" rel="noopener" target="_blank">CVE-2026-32281</a></li> <li><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-32280" rel="noopener" target="_blank">CVE-2026-32280</a></li> <li><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-27140" rel="noopener" target="_blank">CVE-2026-27140</a></li> </ul> </li> <li>Update <code>github.com/moby/spdystream</code> dependency to remediate <ul> <li><a href="https://github.com/advisories/GHSA-pc3f-x583-g7j2" rel="noopener" target="_blank">GHSA-pc3f-x583-g7j2</a></li> </ul> </li> <li>Update <code>musl-utils</code> dependency to remediate <ul> <li><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-6042" rel="noopener" target="_blank">CVE-2026-6042</a></li> <li><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-40200" rel="noopener" target="_blank">CVE-2026-40200</a></li> </ul> </li> <li>Update <code>libcap2</code> dependency to remediate <ul> <li><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-4878" rel="noopener" target="_blank">CVE-2026-4878</a></li> </ul> </li> <li>Update <code>helm.sh/helm/v3</code> dependency to remediate <ul> <li><a href="https://github.com/advisories/GHSA-hr2v-4r36-88hr" rel="noopener" target="_blank">GHSA-hr2v-4r36-88hr</a></li> </ul> </li> <li>Update <code>libssl3</code> dependency to remediate <ul> <li><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-2673" rel="noopener" target="_blank">CVE-2026-2673</a></li> <li><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-31790" rel="noopener" target="_blank">CVE-2026-31790</a></li> <li><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-31789" rel="noopener" target="_blank">CVE-2026-31789</a></li> <li><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-28390" rel="noopener" target="_blank">CVE-2026-28390</a></li> <li><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-28389" rel="noopener" target="_blank">CVE-2026-28389</a></li> <li><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-28388" rel="noopener" target="_blank">CVE-2026-28388</a></li> <li><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-28387" rel="noopener" target="_blank">CVE-2026-28387</a></li> </ul> </li> <li>Update <code>libc</code> dependency to remediate <ul> <li><a href="https://nvd.nist.gov/vuln/detail/CVE-2025-15281" rel="noopener" target="_blank">CVE-2025-15281</a></li> <li><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-0861" rel="noopener" target="_blank">CVE-2026-0861</a></li> <li><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-0915" rel="noopener" target="_blank">CVE-2026-0915</a></li> <li><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-4046" rel="noopener" target="_blank">CVE-2026-4046</a></li> <li><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-4437" rel="noopener" target="_blank">CVE-2026-4437</a></li> <li><a href="https://nvd.nist.gov/vuln/detail/CVE-2026-4438" rel="noopener" target="_blank">CVE-2026-4438</a></li> </ul> </li> </ul>