Docs Home
Viewing docs for
Self-ManagedNot available for BYOC

Ververica Platform 2.15.10

On this page

Release Date: 2026-07-02

Changelog

Ververica Platform 2.15.10 supports the following versions:

  • Apache Flink® 1.20
  • Apache Flink® 1.19
  • Apache Flink® 1.18

Ververica Platform 2.15.10 supports Apache Flink® 1.20, Apache Flink® 1.19, and Apache Flink® 1.18 under SLA.

For Stream Edition:

  • 1.18.1-stream10-scala_2.12-java8
  • 1.18.1-stream10-scala_2.12-java11
  • 1.18.1-stream10-scala_2.12-java17
  • 1.19.3-stream7-scala_2.12-java8
  • 1.19.3-stream7-scala_2.12-java11
  • 1.19.3-stream7-scala_2.12-java17
  • 1.20.5-stream1-scala_2.12-java8
  • 1.20.5-stream1-scala_2.12-java11
  • 1.20.5-stream1-scala_2.12-java17

For Spring Edition the following archives are available:

This is a security patch. Thus, the 2.15.10 version is not including any bug fixes or other improvements, other than security fixes.

In addition to the security patches, this release introduces VVP Flink 1.20.5, which is based on the latest patch release of Apache Flink® 1.20.x.

Improvements

Following up to the VVP 2.15.9 base image changes utilizing WizOS, this release restores the packaged utilities that existed before 2.15.9 by adding back the __cacert_entrypoint.sh script.

  • No new vulnerabilities were detected in the 1.20.4 Flink release, so there are no fixes to report in the latest 1.20.5.
  • Updated Spring Boot to 3.5.16 to address known vulnerabilities in the Spring framework.
  • Updated com.fasterxml.jackson.core:jackson-databind to 2.22.0 to address CVE-2026-54512, CVE-2026-54513, CVE-2026-54514, CVE-2026-54516, CVE-2026-54517, CVE-2026-54518
  • Updated com.microsoft.sqlserver:mssql-jdbc to 13.4.0 to address CVE-2025-59250
  • Updated com.microsoft.sqlserver:mssql-jdbc to 13.4.0.jre8 to address CVE-2025-59250
  • Updated io.netty:netty-codec-http to 4.1.135.Final to address CVE-2026-50020
  • Updated io.netty:netty-codec-http2 to 4.1.135.Final to address CVE-2026-47244, CVE-2026-48043, CVE-2026-50560
  • Updated io.netty:netty-handler to 4.1.135.Final to address CVE-2026-44249, CVE-2026-45416, CVE-2026-50010
  • Updated io.netty:netty-resolver-dns to 4.1.135.Final to address CVE-2026-45673, CVE-2026-45674, CVE-2026-47691
  • Updated io.netty:netty-transport-native-epoll, io.netty:netty-transport-native-kqueue to 4.1.135.Final to address CVE-2026-45536
  • Updated io.opentelemetry:opentelemetry-api to 1.62.0 to address CVE-2026-45292
  • Updated io.vertx:vertx-core to 4.5.27 to address CVE-2026-6860
  • Updated org.apache.commons:commons-configuration2 to 2.15.0 to address CVE-2026-45205
  • Updated org.springframework.kafka:spring-kafka to 3.3.16 to address CVE-2026-41726, CVE-2026-41731
  • Updated org.springframework.security:spring-security-web to 6.5.11 to address CVE-2026-47838

Upgrade

We recommend upgrading with Helm using the following commands:

BASH
1$ helm repo add ververica https://charts.ververica.com
2$ helm repo update
3$ helm upgrade [RELEASE] ververica/ververica-platform --version 5.11.10 --values custom-values.yaml
Was this helpful?
Owner: DevEx Team