This maintenance release is dedicated to critical security remediations and essential dependency updates, ensuring the continued security and integrity of the Apache Geode platform.
Highlights
- Security Vulnerability Remediation: Resolved Allocation of Resources Without Limits or Throttling (GEODE-10567 #7991)
- Vulnerability Remediation: Addressed CVE-2025-68161 to protect against a man-in-the-middle attack (GEODE-10544 #7978)
- Security Remediation: Addressed CVE-2025-48924 in Apache Commons Lang3 (GEODE-10546 #7976)
- Dependency Update: Upgraded commons-io from 2.15.1 to 2.18.0 (GEODE-10549 #7979)
- Dependency Update: Upgraded slf4j-api from 1.7.32 to 1.7.36 (GEODE-10548 #7977)
See full release notes at https://cwiki.apache.org/confluence/display/GEODE/Release+Notes#ReleaseNotes-1.15.3