Ververica Platform 2.12.4

Release Date: 2025-02-19

Changelog

Apache Flink®

Ververica Platform 2.12.4 supports the following versions:

• Apache Flink® 1.18.1
• Apache Flink® 1.17.2

Ververica Platform 2.12.4 supports Apache Flink® 1.18 and Apache Flink® 1.17 under SLA. Apache Flink® 1.16 images are no longer provided in this version but are still supported on a best-effort basis.

For Stream Edition the following Apache Flink® Docker images are available. Please check Ververica Platform Docker Images for all available Apache Flink® images and additional tags.

• 1.16.3-stream1-scala_2.12-java8
• 1.16.3-stream1-scala_2.12-java11
• 1.17.2-stream1-scala_2.12-java8
• 1.17.2-stream1-scala_2.12-java11
• 1.18.1-stream2-scala_2.12-java8
• 1.18.1-stream2-scala_2.12-java11
• 1.18.1-stream2-scala_2.12-java17

For Spring Edition the following archives are available:

• 1.16.3-spring1-scala_2.12.tgz
• 1.17.2-spring1-scala_2.12.tgz
• 1.18.1-spring1-scala_2.12.tgz

See Flink 1.18.1 release.

Improvements

Improved Metrics Link for Historical Jobs in Ververica Platform to Include Run Period

When users clicked on “Actions” for past and current jobs in the Ververica Platform, they were directed to the latest metrics in Grafana or OpenSearch, without considering the specific run period of the job. In this release, we've improved the functionality so that the "from" and "to" time parameters are correctly included in the metrics link for both apps, ensuring that users see the metrics for the exact period when the job was executed.

This update enhances the user experience by removing the need for manual adjustment of the time range in the dashboards. Users can now directly access the relevant metrics for historical jobs and streamlining the process.

Vulnerability Fixes (outside of Apache Flink®)

• Upgraded okio to 3.10.2, which resolves CVE-2023-3635
• Upgraded avro to 1.11.4 to address CVE-2024-47561, CVE-2024-39410
• Upgraded netty to 4.1.118.Final to address CVE-2025-24970, CVE-2024-47535
• Upgraded BouncyCastleJDK18 to 1.78.1 to resolve CVE-2023-33201
• Dropped BouncyCastleJDK15 which resolves CVE-2024-30172, CVE-2024-30171, CVE-2024-29857, CVE-2023-33202, CVE-2023-33201
• Upgraded azure-identity to 1.12.2 to resolve CVE-2024-35255, CVE-2023-52428
• Upgraded kotlin to 2.1.0 to address CVE-2020-29582
• Upgraded dnsjava to 3.6.2 to address CVE-2023-50387, CVE-2024-25638, CVE-2023-50868
• Upgraded tomcat to 10.1.34 to address CVE-2024-52316, CVE-2024-50379, CVE-2024-56337, CVE-2024-34750, CVE-2024-38286
• Upgraded postgresql to 42.7.3 to resolve CVE-2024-1597
• Upgraded opensaml to 4.3.1 to resolve CVE-2023-44483
• Upgraded okhttp3 to 4.12.0 to resolve CVE-2023-3635, CVE-2022-24329, CVE-2020-29582
• Upgraded curl to 7.81.0-1ubuntu1.20 to resolve CVE-2024-6197
• Upgraded libexpat to libexpat1 2.4.7-1ubuntu0.5 to resolve CVE-2024-45490, CVE-2024-45491, CVE-2024-4549

Upgrade

As always, we recommend upgrading via Helm using the following commands:

$ helm repo add ververica https://charts.ververica.com
$ helm repo update
$ helm upgrade [RELEASE] ververica/ververica-platform --version 5.8.4 --values custom-values.yaml