Ververica Platform 2.11.1

Release Date: 2023-09-04

Changelog

Apache Flink®

Ververica Platform 2.11.1 supports Apache Flink® 1.17 and Apache Flink® 1.16 under SLA. Apache Flink® 1.15 images are no longer provided in this version but are still supported on a best-effort basis.

• For Stream Edition the following Apache Flink® Docker images are available. Please check Ververica Platform Docker Images for all available Apache Flink® images and additional tags.

  • 1.15.4-stream1-scala_2.12-java8
  • 1.15.4-stream1-scala_2.12-java11
  • 1.16.2-stream1-scala_2.12-java8
  • 1.16.2-stream1-scala_2.12-java11
  • 1.17.1-stream2-scala_2.12-java8
  • 1.17.1-stream2-scala_2.12-java11

• For Spring Edition the following archives are available:

  • flink-1.15.4-spring1-scala_2.12.tgz
  • flink-1.16.2-spring1-scala_2.12.tgz
  • flink-1.17.1-spring2-scala_2.12.tgz

Improvements

• Repeated execution of actions like starting/suspending/pausing/restarting a Deployment is now avoided if a user clicks multiple times on a button in the UI.
• Health check endpoints and timings used by K8s livenessProbe and readinessProbe can now be configured during Helm installation/upgrade.
• Security context can now be configured on a container level.
• Enhanced validation of disaster checkpointing configuration. Renamed Latest Checkpoint Fetch Interval to Disaster Checkpoints Delay in the Advanced tab for Deployments under the Configuration section. Added description explaining meaning of that field.
• Environment variable naming in Ververica Platform K8s containers now follows standard notation for Spring properties.
• Exposed PUT endpoint of the DeploymentDefaults resource in Swagger REST API.
• Upgraded Spring Boot up to v2.7.15.

Vulnerability Fixes (outside of Apache Flink®)

• Updated Reload4j to resolve vulnerability CWE-611.
• Updated Jakarta Expression Language Implementation to resolve vulnerability CVE-2021-28170.
• Updated Thymeleaf resolve critical vulnerability CVE-2023-38286.
• Updated Postgres to resolve vulnerability CVE-2022-41946.
• Updated SnakeYaml to resolve critical vulnerability CVE-2022-1471.
• Updated Jackson-Core to resolve vulnerability PRISMA-2023-0067.
• Updated Json-Smart to resolve vulnerability CVE-2023-1370.
• Updated Netty to resolve vulnerability CVE-2023-34462.
• Updated Jetty to resolve vulnerability CVE-2023-26048.
• Updated infrastructure vulnerabilities CVE-2023-31437, CVE-2023-31438 and CVE-2023-31439.

Changes to Community Edition

The free Community Edition license is for not-for-profit use and omits some enterprise features.

• The Autopilot feature and SSL security are now not available in the Community Edition, you need the Enterprise Edition for these features.
• Community Edition users can now disable collecting of analytics data.

VVP Kubernetes vs. Flink Kubernetes

• VVP Kubernetes is marked as deprecated (it won't be available from VVP 2.12) and it is recommended to use Flink Kubernetes. Please check Kubernetes High-Availability Service for more information

Upgrade

We recommend upgrading via Helm using the following commands:

    helm repo add ververica https://charts.ververica.com
    helm repo update
    helm upgrade [RELEASE] ververica/ververica-platform --version 5.7.1 --values custom-values.yaml