Stay Informed

This week, read about:

Security Based Updates

Updates to the OpenLogic CentOS Repository
*) OpenLogic’s Enterprise Linux Team has recently published the following updates:

We recommend that you update your CentOS 6 systems to ensure proper timekeeping. As usual, please ensure that you test these updates before deploying to production. If you don't currently have CentOS repo access, please reach out to your Perforce/OpenLogic salesperson … you may already be entitled to access with your existing support contract!

OpenLogic AngularJS
Small miscellaneous update of angular-translate@2.19.3:

  • Removed bower-npm-resolver from dependencies
  • This resolves unwanted downloads of minimist and tough-cookie with many others

Non-Security Based Updates

Angular 18.1.2
COMPILER

  • (fix - 463945003d) | limit the number of chained instructions (#57069)

COMPILER-CLI:

  • (fix - e904f34020) | add warning for unused let declarations (#57033)

CORE

  • (fix - 9e52c1c840) | afterNextRenderhooks return that callback value. (#57031)
  • (fix - b9fb98c67c) | tree shake dev mode error message (#57035)

Apache Kafka 3.8.0
IMPROVEMENT:
KAFKA-16654 Refactor kafka.test.annotation.Type and ClusterTestExtensions
KAFKA-16660 reduce the check interval to speedup DelegationTokenRequestsTest
KAFKA-16668 Enable to set tags by `ClusterTest`
KAFKA-16676 Security docs missing RPCs from KIP-714 and KIP-1000
KAFKA-16677 Replace ClusterType#ALL and ClusterType#DEFAULT by Array
KAFKA-16685 RLMTask warning logs do not include parent exception trace
KAFKA-16763 Upgrade to scala 2.12.19 and scala 2.13.14
KAFKA-16787 Remove TRACE level logging from AsyncKafkaConsumer hot path
KAFKA-16797 A bit cleanup of FeatureControlManager
KAFKA-16844 ByteArrayConverter can't convert ByteBuffer
KAFKA-16911 Kafka Streams topology optimization docs incomplete
KAFKA-16935 Automatically wait for cluster startup in embedded Connect integration tests
KAFKA-17165 Revisit LeaderEpochFileCache#writeToFileForTruncation

BUG:
KAFKA-16659 KafkaConsumer#position() does not respect wakup when group protocol is CONSUMER
KAFKA-16692 InvalidRequestException: ADD_PARTITIONS_TO_TXN with version 4 which is not enabled when upgrading from kafka 3.5 to 3.6
KAFKA-16705 the flag "started" of RaftClusterInstance is false even though the cluster is started
KAFKA-16709 alter logDir within broker might cause log cleanup hanging
KAFKA-16739 Exclude protected variables from aggregated JavaDocs
KAFKA-16757 Fix broker re-registration issues around MV 3.7-IV2
KAFKA-16759 Invalid client telemetry transition on consumer close
KAFKA-16764 New consumer should throw InvalidTopicException on poll when invalid topic in metadata
KAFKA-16766 New consumer offsetsForTimes timeout exception has wrong message
KAFKA-16777 New consumer should throw NoOffsetForPartitionException on continuous poll zero if no reset strategy
KAFKA-16786 New consumer should not require the deprecated partition.assignment.strategy
KAFKA-16790 Calls to RemoteLogManager are made before it is configured
KAFKA-16794 Can't open videos in streams documentation
KAFKA-16807 DescribeLogDirsResponseData#results#topics have unexpected topics having empty partitions
KAFKA-16814 KRaft broker cannot startup when `partition.metadata` is missing
KAFKA-16824 Utils.getHost and Utils.getPort do not catch a lot of invalid host and ports
KAFKA-16833 Cluster missing topicIds from equals and hashCode, PartitionInfo missing equals and hashCode
KAFKA-16837 Kafka Connect fails on update connector for incorrect previous Config Provider tasks
KAFKA-16838 Kafka Connect loads old tasks from removed connectors
KAFKA-16858 Flatten SMT throws NPE
KAFKA-16861 Don't convert to group to classic if the size is larger than group max size
KAFKA-16886 KRaft partition reassignment failed after upgrade to 3.7.0
KAFKA-16888 Fix failed StorageToolTest.testFormatSucceedsIfAllDirectoriesAreAvailable and StorageToolTest.testFormatEmptyDirectory
KAFKA-16890 Failing to build aux state on broker failover
KAFKA-16903 Task should consider producer error previously occurred for different task
KAFKA-16933 New consumer leave group flow may not send leave request and clear epoch
KAFKA-16946 Utils.getHost/getPort cannot parse SASL_PLAINTEXT://host:port
KAFKA-16948 Reset tier lag metrics on becoming follower
KAFKA-16954 Move consumer leave operations on close to background thread
KAFKA-16969 KRaft unable to upgrade to v3.7.1 and later when multiple log dir is set
KAFKA-16977 remote log manager dynamic configs are not available after broker restart.
KAFKA-16988 InsufficientResourcesError in ConnectDistributedTest system test
KAFKA-17083 KRaft Upgrade Failures in SystemTests
KAFKA-17085 Streams Cooperative Rebalance Upgrade Test fails in System Tests
KAFKA-17098 Error Opening RocksDBStore
KAFKA-17111 ServiceConfigurationError in JsonSerializer/Deserializer during Plugin Discovery
KAFKA-17148 Kafka storage tool prints MetaPropertiesEnsemble
KAFKA-17150 Connect converter validation does not accept class aliases

TASK:
KAFKA-16665 Fail to get partition's position from within onPartitionsAssigned callback in new consumer
KAFKA-16675 Move rebalance callback test for positions to callbacks test file
KAFKA-16695 Improve expired poll interval logging by showing exceeded time
KAFKA-16696 Remove the in-memory implementation of RSM and RLMM
KAFKA-16771 First log directory printed twice when formatting storage
KAFKA-16815 Handle FencedInstanceId on heartbeat for new consumer
KAFKA-16825 CVE vulnerabilities in Jetty and netty
KAFKA-16826 Integrate Native Kafka Docker Image with github Actions
KAFKA-16827 Integrate Native Apache Kafka with System tests
KAFKA-16865 Admin.describeTopics behavior change after KIP-966
KAFKA-16881 InitialState type leaks into the Connect REST API OpenAPI spec
KAFKA-16932 Documentation changes for Native Docker image
KAFKA-17050 Revert group.version for 3.8 and 3.9

AppArmor 4.0.2
- Update version file
- Update library version. addition of saddr/... parsing extends the record struct which is an interface addition.

Docker compose v2.29.1
What's Changed
Improvements:

  • Enhance JSON progress events with more fields. by @cmrigney in #12000

 Fixes:

  • Fix sorting logic by adding secondary sorting for one-off containers by @idsulik in #11995

Gitlab v17.0.5
Security (7 changes):

  • [Refactor import_export_upload to be user-based](https://gitlab.com/gitlab-org/security/gitlab/-/commit/762b76f8c82061702e4854b978462f8f5f915a4d) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/4265))
  • [Fix for private txt artifacts being accessible through the artifacts/browse link](https://gitlab.com/gitlab-org/security/gitlab/-/commit/502b678220abbc1427d2c9320d6e26deb4084234) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/4292))
  • [Attribute BulkImport::Export to a particular user](https://gitlab.com/gitlab-org/security/gitlab/-/commit/bc6479e121222a51d8281b445626959732880f67) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/4286))
  • [Don't include project-level analytics settings in DOM](https://gitlab.com/gitlab-org/security/gitlab/-/commit/60d862aa715e1692942faaa8fa4ecf719e05407e) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/4131))
  • [Fix for private dotenv artifacts not accessible to downstream jobs](https://gitlab.com/gitlab-org/security/gitlab/-/commit/7be78d4cf575453967f23b09054551299841fd8a) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/4243))
  • [Do not allow script execution on dependency responses](https://gitlab.com/gitlab-org/security/gitlab/-/commit/1afc21105ee1285c40a701edf729bb2a247c1438) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/4255))
  • [Remove prohibited tags after import](https://gitlab.com/gitlab-org/security/gitlab/-/commit/a3b8343e3ef3fd0025db94a8b8d14006d821b831) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/4250))

Grafana
Grafana v11.1.3
Bug fixes:

  • RBAC**: Allow plugins to use scoped actions [#90946], [@gamab]

Grafana v11.1.1
Bug fixes:

  • Alerting:** Skip fetching alerts for unsaved dashboards [#90074], [@gillesdemey]
  • Alerting:** Skip loading alert rules for dashboards when disabled [#89905], [@gillesdemey]
  • Alerting:** Support `utf8_strict_mode: false` in Mimir [#90148], [@gillesdemey]
  • Scenes:** Fixes issue with panel repeat height calculation [#90232], [@kaydelaney]
  • Table Panel:** Fix Image hover without datalinks [#89922], [@codeincarnate]
  • Tempo:** Fix grpc streaming support over pdc-agent [#90055], [@taylor-s-dean]
  • RBAC**: Allow plugins to use scoped actions [#90946], [@gamab]

Grafana v10.4.6
Features and Enhancements:

  • Alerting:** Update grafana/alerting to ce0d024b67ea714b06d0f5309025466f50e381ef [#90389], [@yuri-tceretian]
  • Prometheus:** Reintroduce Azure audience override feature flag [#90557], [@aangelisc]

Bug Fixes:

  • Alerting:** Fix panic in provisioning filter contacts by unknown name [#90440], [@JacobsonMT]
  • Alerting:** Skip loading alert rules for dashboards when disabled [v10.4.x] [#90331], [@gillesdemey]
  • Echo:** Suppress errors from frontend-metrics API call failing [#89498], [@joshhunt]

Jenkins 2.469
1. Modernize the build time trend page with a time since column, a link to the console, and allow the table to be resized. Remove the agent column from the Pipeline build trend page. (pull 9465))
2. Exit the process immediately upon a boot failure when using ExitLifecycle. Allow custom lifecycles to react similarly. (pull 9483))
3. Display the source URL in logs when installing a plugin. (pull 9449))
4. Change icon size in table when resizing the table. (issue 73453))
5. Fix the hudson.slaves.SlaveComputer.allowUnsupportedRemotingVersions escape hatch, which was previously not working with inbound agents. (issue 73467))
6. /queue/item/nnnnn/ URLs (issue 66105))
7. Add a user experimental flag to run Jenkins without the YUI JavaScript library. Plugin authors should enable this flag and fix any issues that result from the removal of the YUI library. (pull 9489))
8. Form validation now works for SecretTextArea fields. (SecretTextArea documentation, pull 9450, issue 73404))

RabbitMQ v3.13.6
Core Broker Bug Fixes:

  • Quorum queue validation on startup was too strict and prevented upgrades from certain older versions from succeeding. This validation has been reduced from an error to a warning. GitHub issue: #11789, #11794

Redis 7.4.0
CHANGES TO NEW 7.4 FEATURES (COMPARED TO 7.4 RC2):

  • #13391 , #13438 Hash - expiration of individual fields: RDB file format changes
  • #13372 Hash - expiration of individual fields: rename and fix counting of expired_subkeys metric
  • #13372 Hash - expiration of individual fields: rename INFO keyspace field to subexpiry

CONFIGURATION PARAMETERS:

  • #13400 Add hide-user-data-from-log - allows hiding user data from the log file

BUG FIXES:

  • #13407 Trigger Lua GC after SCRIPT LOAD
  • #13380 Fix possible crash due to OOM panic on invalid command
  • #13383 FUNCTION FLUSH - improve Lua GC behavior and fix thread race in ASYNC mode
  • #13408 HEXPIRE -like commands should emit HDEL keyspace notification if expire time is in the past

View all OpenUpdate editions >