Envoy is an open source distributed proxy server. Envoy has a trust management issue vulnerability that stems from a type confusion error in the default_validator.cc implementation used to implement the default certificate validation routines when handling subjectAltNames. no details of the vulnerability are available.