DSE 6.7.x is compatible with Apache Cassandra™ 3.11 and adds additional production-certified changes, if any. Components that are indicated with an asterisk (*) (if any) are known to be updated since the prior patch version.
17 May 2021
- Apache Solr™ 6.0.1.2.2839*
- Apache Spark™ 2.2.3.18*
- Apache TinkerPop™ 3.3.7-20190521-f71ce0d7
- Apache Tomcat® 8.5.65*
- DSE Java Driver 1.8.3-dse+20201217
- Netty 4.1.25.7.dse
- Spark JobServer 0.8.0.45.3*
- Fix an error in cqlsh encoding unicode in multi-line statements (DB-4855)
- Make cqlsh prefer newer TLS versions. (DB-4966)
- Fixes a problem with nulls in tuples in the byte-comparable translation (i.e. sstables in
btiformat) as well as the comparator (i.e. sstables inbigformat, see CASSANDRA-19538). (DB-4813)
- AOSS returns additional parameter in 'status' endpoint: "connection_hostname". The new parameter is a FQDN of the node hosting AOSS, it may be used for connections (instead of
connection_address) if needed. (DSP-21811)
- Fixed CVE-2020-1945 affecting Apache Ant (DSP-21716)
- Fixes SRCCLR-SID-22742: Insecure Input Validation Vulnerability in the Apache Commons Codec library (DSP-21747)
- Fixed an issue with DSE daemon unable to stop after the default timeout expired. The issue only happened in the systems that use package install and init.d, such as centos. (DSP-21804)
- Upgrade apache
commons-compressto address CVE-2019-12402 (DSP-21679) - Fixed CVE-2018-17197 affecting Apache Tika (DSP-21680)
- Addresses CVE-2018-11796, CVE-2018-11761, CVE-2019-10094, CVE-2019-10088 in the Apache Tika library. (DSP-21689)
- Update tomcat version 8.5.61 to 8.5.65 (DSP-21798)
- Fixed a bug where under heavy load solr query worker threads would use 100% CPU due to contention on thread local map (DSP-21746)
- A new jvm option is added:
dse.search.fc.warmup:AUTO,ALWAYS&NEVER. (DSP-21813)
- Fixed CVE-2014-0114, CVE-2014-0114 (DSP-21668)
5 March 2021
- Apache Solr™ 6.0.1.2.2812*
- Apache Spark™ 2.2.3.17*
- Apache TinkerPop™ 3.3.7-20190521-f71ce0d7
- Apache Tomcat® 8.5.61*
- DSE Java Driver 1.8.3-dse+20201217*
- Netty 4.1.25.7.dse
- Spark JobServer 0.8.0.45.2
- Fixes an issue where a login attempt with missing credentials logged a misleading warning message with stack trace instead of an error message about the missing username or password. (DB-4806)
- Works around a bug in JDK 1.8u282 (JDK-8260018) (DB-4884)
- Addressed a bug where a CommitLogReplayException is caused by a bad header but correct CRC after restart (DB-3996)
- Fixed a bug where some part of the commit log might not be replayed after injecting a foreign sstable to a node or, on 6.8, after zero-copy streaming of an sstable (DB-4629)
- Applied fix for CVE-2020-17516 (DB-4897)
- Fixed a bug when in rare cases a terminated repair session would leak on-heap memory (DB-4833)
- Dropped messages metrics calculation doesn't cause assertion errors when dropped messages contain remote batch mutation. (DB-3905)
- Print a timestamp when nodetool exits due to an error (DB-4826)
- SSTablePartitions tool will no longer fail with "histogram overflowed" when it is working for the server code (DB-2952)
- SStableloader now uses
native_transport_port_sslovernative_transport_portwhen passed a config file with the property set (DB-4632)
- The version of DSBulk bundled with DSE has been updated to
1.7.0. (DSP-21535)
- Data export from cqlsh is now less noisy in the logs (DSP-21494)
- Fixed intermittent ERROR: java.util.ConcurrentModificationException at org.apache.cassandra.transport.CBUtil.writeStringList (DSP-21336)
- Fixed a bug where the slow query log would fill with queries that do not meet the slow query threshold (DSP-21417)
- Fix for
DESCRIBE TYPESin CQLSH (DSP-21667) - Add support for multiple authentication sources (LDAP + DSE Internal) (DSP-14233)
- Add asynchronous update to KMIP key cache to fix blocking of commit log (DSP-20582)
- Fix a bug in
cassandra.repair.mutation_repair_rows_per_batchsetting that caused sending all repair mutations at once (DSP-21429) - Addressed several Jackson databind vulnerabilities by upgrading
jackson-databindto version2.9.10.8in DSE 5.1.21, 6.0.15 and 6.7.13 and version 2.10.5.1 in DSP 6.8.10. (DSP-21503) (DSP-21503)
- When optimized group retrieval was used in
memberof_searchmode (ldap_options.all_parent_groups_search_typeparameter indse.yaml), DSE confused attributes specified byldap_options.user_memberof_attributeandldap_options.all_parent_groups_memberof_attributemaking the optimized search work only in case both attributes were set to the same value. (DSP-21537)
- Update Tomcat version 8.0.53 to 8.5.61 (DSP-21394)
- Update Jetty to 9.4.34.v20201102 and update SparkVersion (DSP-21506)
- SCC by default enables direct join optimization only when size_estimates for both tables are available. (DSP-21628)
- Fix: Spark Master fails to start if keystore (used by web UI) contains more than one certificate (DSP-21703)
- A system property
dse.solr.fuzzy.max.expansionwas added. The property allows to workaround a Solr limitation (DSP-21605) - Search queries will no longer fail when querying clustering columns of certain types on which the order is reversed (DSP-21363)
- Fixed a bug where
FilterCachewarmup triggered by node health change can blockGossipStage-1thread for several seconds (DSP-21674)
- Fixed direct join optimization for spark sql. (DSP-21498)
- DSE Spark supports connections to Astra clusters (DSP-21510)
29 October 2020
- Apache Solr™ 6.0.1.2.2791
- Apache Spark™ 2.2.3.15
- Apache TinkerPop™ 3.3.7-20190521-f71ce0d7
- Apache Tomcat® 8.0.53
- DSE Java Driver 1.7.1
- Netty 4.1.25.7.dse
- Spark JobServer 0.8.0.45.2
- Fix extreme local pauses on all nodes in the cluster on a node restart (DB-4657)
- Fixes problem in the scheduling of materialized view updates. (DB-4782)
1 October 2020
- Apache Solr™ 6.0.1.2.2791
- Apache Spark™ 2.2.3.15
- Apache TinkerPop™ 3.3.7-20190521-f71ce0d7
- Apache Tomcat® 8.0.53
- DSE Java Driver 1.7.1
- Netty 4.1.25.7.dse
- Spark JobServer 0.8.0.45.2
- Fix LDAP user permissions problem following LDAP server restart. (DSP-21284)
- Fix LDAP user permissions problem following LDAP server restart. (DSP-21284)
- New system property to cap the maximum amount of memory used by bloom filters:
-Dcassandra.max_bf_memory_mb(DSP-21371) - (6.7 only) jackson-databind upgraded to 2.9.10.4 (DSP-21257)
- Fix node restart issue after dropping a
PointTypecolumn. (DSP-21326) - Fix New system property to cap the maximum amount of memory used by bloom filters:
-Dcassandra.max_bf_memory_mb. By default, this is unlimited. (DSP-21344)
- Fix Spark Application contacting Nodes in Non Local DC (DSP-19961)
- Snapshot
schema.cqlfiles will now containIF NOT EXISTSclause forCREATE TYPEstatements (DB-4685)
- Fix a problem where races in notifying compaction strategies of added and removed sstables can cause compaction to try to use non-existing sstables and repeatedly fail to make progress. (DB-4711)
- Improves performance of estimation of partition counts for subranges. (DB-3679)
DataStax Enterprise (DSE) 6.7.11 includes all changes from previous DSE versions. See TinkerPop upgrade documentation for all changes.
Release notes for previous DSE patch releases can be found here: https://docs.datastax.com/en/dse/6.7/dse-admin/datastax_enterprise/releaseNotes/RNdse.html#RNdse