Release Notes
LONDON
Abstract
This document provides the DMaaP Message Router release notes for the London release.
Summary
Security Issues addressed
Release Data
DMaaP Message Router Project |
|
Docker images |
|
Release designation |
12.0.0 London |
Release date |
TBD |
New features
Known Limitations, Issues and Workarounds
System Limitations
Known Vulnerabilities
Workarounds
Security Notes
References
For more information on the ONAP London release, please see:
Quick Links: - DMAAP project page - Passing Badge information for DMAAP
Release Notes
Kohn
Abstract
This document provides the DMaaP Message Router release notes for the Kohn release.
Summary
Security Issues addressed
Release Data
DMaaP Message Router Project |
|
Docker images |
|
Release designation |
11.0.0 Kohn |
Release date |
2022-12-01 |
New features
Remove acl check on topics (DMAAP-1744)
Remove acl update for deny (DMAAP-1744)
Known Limitations, Issues and Workarounds
System Limitations
Known Vulnerabilities
Workarounds
Security Notes
Update kohn sec vul packages (DMAAP-1748)
References
For more information on the ONAP Kohn release, please see:
Quick Links: - DMAAP project page - Passing Badge information for DMAAP
Release Notes
Jakarta
Abstract
This document provides the DMaaP Message Router release notes for the Jakarta release.
Summary
Security Issues addressed
Release Data
DMaaP Message Router Project |
|
Docker images |
|
Release designation |
10.0.0 Jakarta |
Release date |
5/12/2022 |
New features
Remediate log4j bug (DMAAP-1691)
Add support for configuring jaas.sasl.config at runtime (DMAAP-1653)
Known Limitations, Issues and Workarounds
System Limitations
Known Vulnerabilities
Workarounds
Security Notes
Transitive dependency for log4j 1.2.17 Sources: org.codehaus.groovy : groovy-eclipse-compiler : 2.8.0-01 com.att.camel : att-camel-dme2-servlet : 2.16.2-oss org.apache.zookeeper : zookeeper : 3.7.0
References
For more information on the ONAP Jakarta release, please see:
Quick Links: - DMAAP project page - Passing Badge information for DMAAP
Release Notes
Istanbul Maintenance
Abstract
This document provides the DMaaP Message Router release notes for the Istanbul release.
Summary
Securities Issues addressed
Release Data
DMaaP Message Router Project |
|
Docker images |
|
Release designation |
9.0.1 Istanbul Maintenance |
Release date |
2022-02-17 |
New features
Remediate log4j bug (DMAAP-1691)
Known Limitations, Issues and Workarounds
System Limitations
Known Vulnerabilities
Workarounds
Security Notes
Transitive dependency for log4j 1.2.17 Sources: org.codehaus.groovy : groovy-eclipse-compiler : 2.8.0-01 com.att.camel : att-camel-dme2-servlet : 2.16.2-oss org.apache.zookeeper : zookeeper : 3.7.0
References
For more information on the ONAP Istanbul Maintenance release, please see:
Quick Links: - DMAAP project page - Passing Badge information for DMAAP
Release Notes
Istanbul
Abstract
This document provides the DMaaP Message Router release notes for the Istanbul release.
Summary
Securities Issues addressed
Release Data
DMaaP Message Router Project |
|
Docker images |
|
Release designation |
9.0.0 Istanbul |
Release date |
2021-10-14 |
New features
Consolidate msgrtr and message-service repos (DMAAP-1582)
Remove redundant data (DMAAP-1638)
Sonar fixes (DMAAP-1564)
Remove Python 2.7 (DMAAP-1489)
Sec vulnerabilities fix (DMAAP-1608)
Known Limitations, Issues and Workarounds
System Limitations
Known Vulnerabilities
Workarounds
Security Notes
References
For more information on the ONAP Istanbul release, please see:
Quick Links: - DMAAP project page - Passing Badge information for DMAAP
Honolulu
Abstract
This document provides the DMaaP Message Router release notes for the Honolulu release.
Summary
Securities Issues addressed
Release Data
DMaaP Message Router Project |
|
Docker images |
|
Release designation |
8.0.0 Honolulu |
Release date |
2021-04-01 |
New features
Fix Security Vulnerabilities (listed in “Known Vulnerabilities” below) - DMAAP-1515
Alter Project Lead information - DMAAP-1538
Update certs - DMAAP-1565
Update AAF Artifacts - DMAAP-1565
Known Limitations, Issues and Workarounds
System Limitations
Known Vulnerabilities
CVE-2018-11307
CVE-2018-12022
CVE-2018-12023
CVE-2019-17571
SONATYPE-2010-0053
CVE-2020-11994
SONATYPE-2015-0174
CVE-2020-5397
SONATYPE-2012-0050
Workarounds
Security Notes
References
For more information on the ONAP Honolulu release, please see:
Quick Links: - DMAAP project page - Passing Badge information for DMAAP
Guilin maintenance
Version: 7.0.1
Abstract
This document provides the release notes for the Guilin Maintenance release
Summary
This maintenance release is primarily to resolve bugs identified during Guilin release testing.
Release Data
DMaaP Message Router Project |
|
Docker images |
Same as Guilin Release |
Release designation |
Guilin Maintenance Release |
Release date |
2021/04/19 |
New features
None
Bug fixes
DMAAP-1547 Update certificats for DMaaP message router
Known Issues
Same as Guilin Release
Guilin
Abstract
This document provides the DMaaP Message Router release notes for the Guilin release.
Summary
Release Data
DMaaP Message Router Project |
|
Docker images |
|
Release designation |
7.0.0 guilin |
Release date |
2020-11-18 |
New features
Known Limitations, Issues and Workarounds
System Limitations
Known Vulnerabilities
CVE-2016-1000027
CVE-2018-11307
CVE-2019-13990
SONATYPE-2018-0624
CVE-2018-12022
SONATYPE-2019-0414
SONATYPE-2019-0808
CVE-2019-10241
CVE-2019-12406
CVE-2020-5408
CVE-2019-10246
CVE-2019-10247
CVE-2020-5397
SONATYPE-2012-0050
SONATYPE-2017-0507
SONATYPE-2019-0469
CVE-2018-12023
SONATYPE-2018-0624
CVE-2019-20444
CVE-2019-20445
CVE-2019-16869
SONATYPE-2020-0029
SONATYPE-2020-0103
CVE-2019-17571
CVE-2020-5398
CVE-2018-17196
Workarounds
Security Notes
References
For more information on the ONAP Guilin release, please see:
Quick Links: - DMAAP project page - Passing Badge information for DMAAP
Frankfurt
Abstract
This document provides the DMaaP Message Router release notes for the Frankfurt release.
Summary
Release Data
DMaaP Message Router Project |
|
Docker images |
|
Release designation |
6.0.0 frankfurt |
Release date |
2020-06-04 |
New features
Kafka and Zookeeper images are created using confluent community edition 5.3.0
Prometheus monitoring
Protected all the Kafka operations using AAF
Remove the AAF dependency by toggling a flag
Known Limitations, Issues and Workarounds
System Limitations
Known Vulnerabilities
CVE-2016-1000027
CVE-2018-11307
CVE-2019-13990
SONATYPE-2018-0624
CVE-2018-12022
SONATYPE-2019-0414
SONATYPE-2019-0808
CVE-2019-10241
CVE-2019-12406
CVE-2020-5408
CVE-2019-10246
CVE-2019-10247
CVE-2020-5397
SONATYPE-2012-0050
SONATYPE-2017-0507
SONATYPE-2019-0469
CVE-2018-12023
SONATYPE-2018-0624
CVE-2019-20444
CVE-2019-20445
CVE-2019-16869
SONATYPE-2020-0029
SONATYPE-2020-0103
CVE-2019-17571
CVE-2020-5398
CVE-2018-17196
Workarounds
Security Notes
References
For more information on the ONAP Frankfurt release, please see:
Quick Links: - DMAAP project page - Passing Badge information for DMAAP
ElAlto
Version: 1.1.16
- Release Date:
2019-10-10
New Features
Cert based authentication support in Message Router
Improved Kafka and Zookeeper cluster lookup
Pluggable Kafka server.properties,log4j.properties and Message Router logback.xml
Bug Fixes
Fixed for security vulnerabilities in Message Router
Fixed authorization issues in Message Router
- Known Issues
NA
Security Notes
DMAAP code has been formally scanned during build time using NexusIQ and all Critical vulnerabilities have been addressed, items that remain open have been assessed for risk and determined to be false positive. The DMAAP open Critical security vulnerabilities and their risk assessment have been documented as part of the Dublin.
Quick Links:
- Upgrade Notes
NA
Deprecation Notes
Dublin
Version: 1.1.14
- Release Date:
2019-06-06
New Features
Upgrade Kafka to v1.1.1
Support for Authenticated topics
Add Scaling support
Support for multi-site applications
Add MirrorMaker to allow for message replication across Kafka clusters
- Bug Fixes
NA
- Known Issues
NA
Security Notes
DMAAP code has been formally scanned during build time using NexusIQ and all Critical vulnerabilities have been addressed, items that remain open have been assessed for risk and determined to be false positive. The DMAAP open Critical security vulnerabilities and their risk assessment have been documented as part of the Dublin.
Quick Links:
- Upgrade Notes
NA
Deprecation Notes
Casablanca
Version: 1.1.8
- Release Date:
2018-11-30
New Features
DMaaP client changes to fix some known issues
Kafka upgrade to 0.11.0.1 and corresponding changes in the Message Router
New Kafka image was created instead of using the publicly available Kafka image
- Bug Fixes
NA
Known Issues
If the ZooKeeper is restarted, Message Router works as expected only after restarting the Message Router . Refer Jira for more details
Security Notes
DMAAP code has been formally scanned during build time using NexusIQ and all Critical vulnerabilities have been addressed, items that remain open have been assessed for risk and determined to be false positive. The DMAAP open Critical security vulnerabilities and their risk assessment have been documented as part of the Casablanca.
Quick Links:
- Upgrade Notes
NA
Deprecation Notes
Beijing
Version: 1.1.4
- Release Date:
2018-06-07
New Features
Topic creation with out AAF
DMaaP client changes to call the message Router with out authentication
Kafka upgrade from 0.8.11 to 1.1.0
Fixes for docker image packaging issues
- Bug Fixes
NA
- Known Issues
NA
Security Notes
DMAAP code has been formally scanned during build time using NexusIQ and all Critical vulnerabilities have been addressed, items that remain open have been assessed for risk and determined to be false positive. The DMAAP open Critical security vulnerabilities and their risk assessment have been documented as part of the project.
Quick Links: - DMAAP project page - Passing Badge information for DMAAP - Project Vulnerability Review Table for DMAAP
- Upgrade Notes
NA
Deprecation Notes
Amsterdam
Version: 1.0.1
- Release Date:
2017-11-16
New Features:
Pub/sub messaging metaphor to broaden data processing opportunities
A single solution for most event distribution needs to support a range of environments
Standardized topic names
Implements a RESTful HTTP API for provisioning
Implements a RESTful HTTP API for message transactions (i.e. pub, sub)
Implements a RESTful HTTP API for transaction metrics
Topic registry and discovery
- Bug Fixes
- Known Issues
DMAAP-164 The dependency from kafka for zookeeper created issues when the vm is restarted
Other