Scylla Open Source 4.0.2

The ScyllaDB team announces the release of Scylla Open Source 4.0.2, a bugfix release of the Scylla 4.0 stable branch. Scylla Open Source 4.0.2, like all past and future 4.x.y releases, is backward compatible and supports rolling upgrades.

Please note the security fix, first in the issue list below.

Related links:

Issues fixed in this release

  • Security: upgrade bundled gnutls library to version 3.6.14, to fix gnutls vulnerability CVE-2020-13777 #6627
  • Tooling: nodetool status returns wrong IPv6 addresses #5808
  • AWS: Update enhanced networking supported instance list #6540
  • Alternator: KeyConditions with “bytes” value doesn’t work #6495
  • Commit log: reader drops subscription, fix a regression introduced in 4.0 #6265
  • API: Scylla returns the wrong error code (0000 – server internal error) in response to trying to do authentication/authorization operations that involve a non-existing role. #6363
  • Stability: potential use after free in storage service #6465

22 Jun 2020