Re: Security vulnerabilities in kafka:2.13-2.6.0/2.7.0 docker image

Hi Ashish, I suggested that you upgrade to V2.8. I checked 2 of the CVEs, and are fixed (or not used, like libfetch) in V2.8. If you still found the CVEs existed in V2.8, please raise it. Thank you. Luke On Wed, Sep 1, 2021 at 4:07 AM Ashish Patil wrote: > Hi Team > > I wanted to use the

Security vulnerabilities in kafka:2.13-2.6.0/2.7.0 docker image

Hi Team I wanted to use the 2.6.0 docker image for Kafka but It has lots of security vulnerabilities. Please find the below list of security vulnerabilities ** CVE-2021-36159 CVE-2020-25649 CVE-2021-22926 CVE-2021-22922 CVE-2021-22924

Re: [VOTE] 3.0.0 RC1

Small correction to my previous email. The actual link for public preview of the 3.0.0 blog post draft is: https://blogs.apache.org/preview/kafka/?previewEntry=what-s-new-in-apache6 (see also the email thread with title: [DISCUSS] Please review the 3.0.0 blog post) Best, Konstantine On Tue,

[VOTE] 3.0.0 RC1

Hello Kafka users, developers and client-developers, This is the second release candidate for Apache Kafka 3.0.0. It corresponds to a major release that includes many new features, including: * The deprecation of support for Java 8 and Scala 2.12. * Kafka Raft support for snapshots of the