Aerospike Connect for Event Stream Processing (ESP) - Outbound Release Notes

  • 2.4.5
    Release Date: November 7, 2024
    • The *.deb and *.rpm files support multiple architectures (ARM64 & AMD64).
    • The connector is Java JVM based. Install the correct JVM for the desired architecture.
    • This connector requires Java 11 or later.

    Security

    • [CONNECTOR-1160] - Fixed security vulnerability - Authentication Bypass in krb5-libs.

    Download
  • 2.4.4
    Release Date: October 24, 2024
    • The *.deb and *.rpm files support multiple architectures (ARM64 & AMD64).
    • The connector is Java JVM based. Install the correct JVM for the desired architecture.
    • This connector requires Java 11 or later.

    Security

    • [CONNECTOR-1149] - Fixed Deserialization of Untrusted Data in org.apache.avro:avro:1.11.3.
    • [CONNECTOR-1149] - Fixed Denial of Service (DoS) in com.fasterxml.jackson.core:jackson-core.
    • [CONNECTOR-1149] - Fixed Race Condition in io.undertow:undertow-core.
    • [CONNECTOR-1149] - Fixed Uncontrolled Resource Consumption in commons-io:commons-io.

    Download
  • 2.4.3
    Release Date: September 19, 2024
    • The *.deb and *.rpm files support multiple architectures (ARM64 & AMD64).
    • The connector is Java JVM based. Install the correct JVM for the desired architecture.
    • This connector requires Java 11 or later.

    New Features

    • [CONNECTOR-1127] - Netty buffer customization changes in connectors and Kafka Outbound Await Metrics for better monitoring.
    • [CONNECTOR-1137] - Logging improvement - Outbound Await Metrics for all applicable connectors.

    Security

    • [CONNECTOR-1135] - Fix Arbitrary Code Injection affecting platform-python-setuptools & python3-setuptools-wheel.
    • Upgraded Pulsar version.

    Download
  • 2.4.2
    Release Date: July 25, 2024
    • The *.deb and *.rpm files support multiple architectures (ARM64 & AMD64).
    • The connector is Java JVM based. Install the correct JVM for the desired architecture.
    • This connector requires Java 11 or later.

    Security

    • [CONNECTOR-1105] - Fix Race Condition.
    • [CONNECTOR-1108] - Fix Uncontrolled Resource Consumption ('Resource Exhaustion').

    Download
  • 2.4.1
    Release Date: June 7, 2024
    • The *.deb and *.rpm files support multiple architectures (ARM64 & AMD64).
    • The connector is Java JVM based. Install the correct JVM for the desired architecture.
    • This connector requires Java 11 or later.

    Security

    • [CONNECTOR-972] - Fix Improper Input Validation.
    • [CONNECTOR-973] - Fix Infinite loop.
    • [CONNECTOR-974] - Fix Uncontrolled Resource Consumption.
    • [CONNECTOR-1007] - Fix Out-of-bounds write vulnerabilities.
    • [CONNECTOR-1008] - Fix Out-of-bounds write vulnerabilities.
    • [CONNECTOR-1009] - Fix Out-of-bounds write vulnerabilities.
    • [CONNECTOR-1010] - Fix Out-of-bounds write vulnerabilities.
    • [CONNECTOR-1011] - Fix Out-of-bounds write vulnerabilities.

    Download
  • 2.4.0
    Release Date: March 25, 2024
    • The *.deb and *.rpm files support multiple architectures (ARM64 & AMD64).
    • The connector is Java JVM based. Install the correct JVM for the desired architecture.
    • This connector requires Java 11 or later.

    New Features

    • [CONNECTOR-922] - Make batching of ack configurable as a toggle.

    Security

    • [CONNECTOR-928] - Fix Allocation of Resources Without Limits or Throttling. CVE-2024-26308
    • [CONNECTOR-929] - Fix Infinite loop. CVE-2024-25710

    Download
  • 2.3.0
    Release Date: November 7, 2023
    • The *.deb and *.rpm files support multiple architectures (ARM64 & AMD64).
    • The connector is Java JVM based. Install the correct JVM for the desired architecture.
    • This connector requires Java 11 or later.

    New Features

    • [CONNECTOR-823] - Add option to disable ESP health check.

    Improvements

    • [CONNECTOR-805] - Return all destination Aerospike server error codes to XDR source cluster.

    Security

    Download
  • 2.2.1
    Release Date: August 9, 2023
    • The *.deb and *.rpm files support multiple architectures (ARM64 & AMD64).
    • The connector is Java JVM based. Install the correct JVM for the desired architecture.
    • This connector requires Java 11 or later.

    Security

    • [CONNECTOR-775] - Address CVE-2023-36480 - upgrade to aerospike-java-client version 7.0.0.

    Download
  • 2.2.0
    Release Date: July 21, 2023
    • The *.deb and *.rpm files support multiple architectures (ARM64 & AMD64).
    • The connector is Java JVM based. Install the correct JVM for the desired architecture.
    • This connector requires Java 11 or later.

    New Features

    • [CONNECTOR-373] - Batching support.
    • [CONNECTOR-431] - Batching support for inbuilt formats.
    • [CONNECTOR-584] - JSON logging format.
    • [CONNECTOR-705] - Bin include/exclude option in bin transformer.

    Improvements

    • [CONNECTOR-716] - Upgrade internal dependencies.

    Download
  • 2.1.1
    Release Date: May 17, 2023
    • The *.deb and *.rpm files support multiple architectures (ARM64 & AMD64).
    • The connector is Java JVM based. Install the correct JVM for the desired architecture.
    • This connector requires Java 11 or later.

    Improvements

    • [CONNECTOR-562] - Multi-arch container image supporting linux/arm64 and linux/amd64 platforms.
    • [CONNECTOR-679] - Upgrade vulnerable dependencies.

    Bug Fixes

    • [CONNECTOR-624] - Correct ESP healthcheck URL for http connectors.

    Download
  • 2.1.0
    Release Date: January 12, 2023

    Bug Fixes

    • [CONNECTOR-564] - Fix CVE-2022-3509 in ESP Outbound Connector.
    • [CONNECTOR-574] - Fix CVE-2022-3510 in ESP Outbound Connector.
    • [CONNECTOR-575] - Fix CVE-2022-41881 in ESP Outbound Connector.

    Download
  • 2.0.0
    Release Date: April 4, 2022

    New Features

    • [CONNECTOR-340] - Provide an option for in-order delivery of different versions of the same record.

    Improvements

    • [CONNECTOR-341] - Performance and stability improvements.
    • [CONNECTOR-342] - Vulnerability scanning and dependency upgrades.
    • [CONNECTOR-343] - Single installer for HTTP and XDR 5.0 wire protocol connector.

    Download
  • 1.1.0
    Release Date: February 4, 2022

    New Features

    • [CONNECTOR-319] - Add support to plugin custom code through the Custom transformer API.

    Improvements

    • [CONNECTOR-320] - Support Java 17 runtime.
    • [CONNECTOR-322] - Add ESP destination config http-success-status-codes to specify HTTP status codes to indicate successful response.
    • [CONNECTOR-323] - Add a routing config to skip dispatching of records to the destination.

    Bug Fixes

    • [CONNECTOR-324] - Fix a memory leak on HTTP/2 remote stream cancel with HTTP/2 protocol.
    • [CONNECTOR-325] - ESP doesn't validate TLS config on start up.

    Download
  • 1.0.0
    Release Date: October 15, 2021
    • Initial General Availability release for Aerospike Server Enterprise Edition version 5.0 and above.
    • Legacy support for versions of the Aerospike Server Enterprise Edition version 4.9 and below.
      • If using a version prior to server 4.9, you must use the HTTP connector.
      • WARNING: A serious flaw has been discovered for HTTP/2 in the library used by change notification in Aerospike Enterprise Editions prior to 5.0. http-version MUST be set to v1 to prevent XDR and CN from being blocked.

    Download