Ververica Platform 2.8.2

Release Date: 2022-12-06

Changelog

Apache Flink®

Ververica Platform 2.8.2 supports Apache Flink® 1.15 and Apache Flink® 1.14 under SLA. Apache Flink® 1.13 images are no longer provided in this version but are still supported on a best-effort basis.

• For Stream Edition the following Apache Flink® Docker images are available. Please check Ververica Platform Docker Images for all available Apache Flink® images and additional tags.

  • 1.13.6-stream1-scala_2.11-java8
  • 1.13.6-stream1-scala_2.11-java11
  • 1.13.6-stream1-scala_2.12-java8
  • 1.13.6-stream1-scala_2.12-java11
  • 1.14.6-stream2-scala_2.11-java8
  • 1.14.6-stream2-scala_2.11-java11
  • 1.14.6-stream2-scala_2.12-java8
  • 1.14.6-stream2-scala_2.12-java11
  • 1.15.2-stream4-scala_2.12-java8
  • 1.15.2-stream4-scala_2.12-java11

• For Spring Edition the following / archives are available

  • flink-1.13.6-spring1-scala_2.11.tgz
  • flink-1.13.6-spring1-scala_2.12.tgz
  • flink-1.14.6-spring2-scala_2.11.tgz
  • flink-1.14.6-spring2-scala_2.12.tgz
  • flink-1.15.2-spring4-scala_2.12.tgz

Vulnerability Fixes (outside of Apache Flink®)

• Updated OpenSSL to resolve vulnerabilities CVE-2022-3786, CVE-2022-3602, CVE-2022-2068, CVE-2022-1292, CVE-2022-1473 and CVE-2022-3358
• Updated Tomcat to resolve vulnerability CVE-2022-42252
• Updated Apache Tomcat to resolve CVE-2022-42252
• Updated Apache Commons to resolve CVE-2022-42889
• Updated Jackson-databind to resolve CVE-2022-42003 and CVE-2022-42004
• Updated Sqlite-jdbc to resolve CVE-2021-20227
• Updated Opencsv to resolve vulnerability CVE-2022-42889
• Updated Netty to resolve vulnerability CVE-2022-24823
• Updated Libexpat to resolve CVE-2022-40674
• Updated Sqlite to resolve CVE-2022-35737

Improvements

• Skip the creation of Kubernetes Role, RoleBinding, and ServiceAccount when running a Deployment or Session Cluster if:

  • the High Availability mode VVP Kubernetes or Flink Kubernetes is enabled
  • both jobManagerPodTemplate.spec.serviceAccountName and taskManagerPodTemplate.spec.serviceAccountName are specified (see How to Use My Own Service Account in Ververica Platform for details)

Upgrade

We recommend upgrading via Helm using the following commands:

    helm repo add ververica https://charts.ververica.com
    helm repo update
    helm upgrade [RELEASE] ververica/ververica-platform --version 5.4.2 --values custom-values.yaml