Kafka 3.6.1 릴리즈

Kafka Release 3.6.1

Kafka Version 3.6.1 Release

Apache Kafka 3.6.1 버전이 릴리즈되었습니다.

어떠한 부분이 개선되고 변경되었는지 간단하게 안내해 드릴게요.

Improvement

• [KAFKA-15415] — In Java-client, backoff should be skipped for retried producer-batch to a new leader
• [KAFKA-15596] — Upgrade ZooKeeper to 3.8.3

Kafka-15596. CVE-2023–44981: Apache ZooKeeper: Authorization bypass in SASL Quorum Peer Authentication

ZooKeeper에서 발생할 수 있는 권한 우회를 통한 User-controlled key 취약점에 대한 것이에요.

아래 ZooKeeper 버전을 사용하는 사용자는 문제가 해결된 버전으로 업그레이드 하는것을 권장드려요

• 영향을 받는 버전
  - ZooKeeper 0 ~ 3.7.0
  - ZooKeeper 3.7.0 ~ 3.7.1
  - ZooKeeper 3.8.0 ~ 3.8.2
  - ZooKeeper 3.9.0 ~ 3.9.1
• 업데이트 권장 버전
  - ZooKeeper 3.7.2, 3.8.3, 3.9.1
• Reference
  CVE-2023–44981

Bug

• [KAFKA-13973] — block-cache-capacity metrics worth twice as much as normal
• [KAFKA-14767] — Gradle build fails with missing commitId after git gc
• [KAFKA-15481] — Concurrency bug in RemoteIndexCache leads to IOException
• [KAFKA-15491] — RackId doesn’t exist error while running WordCountDemo
• [KAFKA-15502] — Handle large keystores in SslEngineValidator
• [KAFKA-15552] — Duplicate Producer ID blocks during ZK migration
• [KAFKA-15571] — StateRestoreListener#onRestoreSuspended is never called because wrapper DelegatingStateRestoreListener doesn’t implement onRestoreSuspended
• [KAFKA-15602] — Breaking change in 3.4.0 ByteBufferSerializer
• [KAFKA-15605] — Topics marked for deletion in ZK are incorrectly migrated to KRaft
• [KAFKA-15607] — Possible NPE is thrown in MirrorCheckpointTask
• [KAFKA-15644] — Fix CVE-2023–4586 in netty:handler
• [KAFKA-15653] — NPE in ChunkedByteStream
• [KAFKA-15658] — Zookeeper.jar | CVE-2023–44981
• [KAFKA-15680] — Partition-Count is not getting updated Correctly in the Incremental Co-operative Rebalancing(ICR) Mode of Rebalancing
• [KAFKA-15693] — Disabling scheduled rebalance delay in Connect can lead to indefinitely unassigned connectors and tasks
• [KAFKA-15755] — LeaveGroupResponse v0-v2 should handle no members
• [KAFKA-15771] — ProduceRequest#partitionSizes() is not an atomic operation
• [KAFKA-15799] — ZK brokers incorrectly handle KRaft metadata snapshots
• [KAFKA-15800] — Malformed connect source offsets corrupt other partitions with DataException
• [KAFKA-15802] — Trying to access uncopied segments metadata on listOffsets
• [KAFKA-15825] — KRaft controller writes empty state to ZK after migration

더 자세한 정보는 아래 Release Notes를 참고하세요

downloads.apache.org/kafka/3.6.1/RELEASE_NOTES.html