2.18.1 release notes
December 18, 2025
NGINX Instance Manager 2.18.1 release notes
NGINX Instance Manager 2.18.1 supports upgrades from these previous versions:
- 2.15.0 - 2.18.0
If your NGINX Instance Manager version is older, you may need to upgrade to an intermediate version before upgrading to the target version.
ImportantFor the protection of our customers, NGINX doesn’t disclose security issues until an investigation has occurred and a fix is available.
This release includes the following security updates:
-
Note on CVEs in this patch release
This release does not include new fixes for security vulnerabilities (CVEs) present in this version. To receive security updates, please upgrade to the latest NGINX Instance Manager version. CVEs present in the latest version would be fixed in the upcoming 2.21.1 patch release.
This release has the following changes in default behavior:
-
Support for Entrust-CA deprecated
Entrust CA, used in NGINX Instance Manager licensing flows, will no longer be a trusted certificate authority for browsers. Previous versions of NGINX Instance Manager ship with an embedded licensing bundle that only accepts Entrust-signed certificates for the F5 licensing servers.
The current Entrust certificates used by older NGINX Instance Manager licensing flows will be replaced on February 15, 2026.
To avoid reliance on a single certificate authority, NGINX Instance Manager will trust multiple well-known CAs through an updated certificate bundle. NGINX Instance Manager 2.21 includes this updated bundle so JWT-based licensing and connectivity to the licensing endpoint service continue to work.
To prevent service interruptions and provide an extended window for customers to upgrade to version 2.21.0, we are also issuing minor patch releases for versions 2.18.1, 2.19.3, and 2.20.1.
For more information please see the related KB Article.
You can find information about known issues in the Known Issues topic.