Notice of upcoming authentik Security releases 2025.12.5 and 2026.2.3
36 views
Skip to first unread message
authentik Security Announcements
May 6, 2026, 9:39:44 AM (12 days ago) May 6
to authentik Security Announcements
We'll be publishing four security Issues (CVE-2026-42849, CVE-2026-41569, CVE-2026-40165, CVE-2026-40166, CVE-2026-41577 and CVE-2026-40172) and accompanying fixes on 2026-05-12, 14:00 UTC with the Severity levels High and Critical.
We have recently seen a large increase in AI-assisted security reports from the community and have implemented some of our own new tooling as well in order to get ahead of and keep up with the rush of vulnerability findings surfacing across the industry.
These releases will also contain various other minor security improvements. Fixed versions 2025.12.5 and 2026.2.3 will be released alongside a partial workaround for previous versions.
For more info, see the authentik Security policy here: https://goauthentik.io/docs/security/policy.
We have recently seen a large increase in AI-assisted security reports from the community and have implemented some of our own new tooling as well in order to get ahead of and keep up with the rush of vulnerability findings surfacing across the industry.
These releases will also contain various other minor security improvements. Fixed versions 2025.12.5 and 2026.2.3 will be released alongside a partial workaround for previous versions.
For more info, see the authentik Security policy here: https://goauthentik.io/docs/security/policy.
Reply all
Reply to author
Forward
0 new messages