Ververica Platform 2.6.2¶
Release Date: 2022-01-19
This release adds support for the patch release 1.14.3 of Apache Flink®. Moreover, The Spring Edition and Stream Edition releases of Apache Flink® 1.12.7 and 1.13.5 were updated. These releases upgrade the version of Log4j to 2.17.1 in order to fix CVE-2021-44832 and CVE-2021-45105.
For Stream Edition the following Apache Flink® Docker images are available. Please check Ververica Platform Docker Images for all available Apache Flink® images and additional tags.
For Spring Edition the following / archives are available
- The following Log4j-related vulnerabilities have been fixed in the 1.12.7, 1.13.5 and 1.14.3 releases:
Vulnerability Fixes (outside of Apache Flink®)¶
- Log4j was upgraded to 2.17.1, fixing the related vulnerabilities:
- Logback was upgraded to 1.2.10, fixing CVE-2021-42550