Update urgency: SECURITY: There are security fixes in the release.

• (CVE-2025-32023) Fix out-of-bounds write in HyperLogLog commands
• (CVE-2025-48367) Retry accepting other connections even if the accepted connection reports an error

Update urgency: SECURITY: There are security fixes in the release.

• (CVE-2025-32023) Fix out-of-bounds write in HyperLogLog commands
• (CVE-2025-48367) Retry accepting other connections even if the accepted connection reports an error

Update urgency: SECURITY: There are security fixes in the release.

• (CVE-2025-32023) Fix out-of-bounds write in HyperLogLog commands
• (CVE-2025-48367) Retry accepting other connections even if the accepted connection reports an error

Update urgency: SECURITY: There are security fixes in the release.

• (CVE-2025-32023) Fix out-of-bounds write in HyperLogLog commands
• (CVE-2025-48367) Retry accepting other connections even if the accepted connection reports an error

• #14065 VSIM: Add new WITHATTRIBS to return the JSON attribute associated with an element

• #14085 A short read may lead to an exit() on a replica
• #14092 db->expires is not defragmented

This is the first Release Candidate of Redis Open Source 8.2.

Release Candidates are feature-complete pre-releases. Pre-releases are not suitable for production use.

Redis 8.2 introduces major performance and memory footprint improvements, new commands, and command extensions.

8.2-RC1 is available as a Docker image and can be downloaded from Docker Hub. Additional distributions will be introduced in upcoming pre-releases.

• (CVE-2025-27151) redis-check-aof may lead to stack overflow and potential RCE

• #14130 Streams - new commands: XDELEX and XACKDEL; extension to XADD and XTRIM
• #14039 New command: CLUSTER SLOT-STATS - get per-slot usage metrics such as key count, CPU time, and network I/O
• #14122 VSIM - new IN operator for filtering expression
• #Q6329, #Q6394 - Query Engine - new SVS-VAMANA vector index type which supports vector compression (optimized for Intel machines)

• #14143 Gracefully handle short read errors for hashes with TTL during full sync

• #14103 Optimize BITCOUNT by introducing prefetching
• #14121 Optimize SCAN by performing expiration checks only on DBs with volatile keys
• #14140 Optimize expiry check in scanCallback
• #14131 Optimize LREM, LPOS, LINSERT, ZRANK, and more by caching string2ll results in quicklistCompare
• #14088 Optimize COPY, RENAME, and RESTORE when TTL is used
• #14074 Reduce the overhead associated with tracking malloc’s usable memory
• #13900 Optimize the client’s cron to avoid blocking the main thread
• #J1350 JSON - memory footprint improvement by inlining numbers (MOD-9511)

• #14067 INFO: used_memory_peak_time - time when used_memory_peak was hit
• #13990 INFO:
  • master_current_sync_attempts - number of times the replica attempted to sync to a master since last disconnection
  • master_total_sync_attempts - number of times the replica attempted to sync to a master
  • master_link_up_since_seconds - number of seconds since the link has been up
  • total_disconnect_time_sec - total cumulative time we've been disconnected as a replica

• Cassandra 5.0 support by @smatvienko-tb in https://github.com/thingsboard/thingsboard/pull/12926
• ValKey 8.0 (alternative to Redis > 7.2) by @smatvienko-tb in https://github.com/thingsboard/thingsboard/pull/12925
• Calculated fields performance improvements by @irynamatveieva in https://github.com/thingsboard/thingsboard/pull/13510
• Memory usage improvements by @ViacheslavKlimov in https://github.com/thingsboard/thingsboard/pull/13570

• Units conversion by @vvlladd28 in https://github.com/thingsboard/thingsboard/pull/13282
• Added unit convertion support in SCADA system by @ArtemDzhereleiko in https://github.com/thingsboard/thingsboard/pull/13529
• Improved knob control widgets by @vvlladd28 in https://github.com/thingsboard/thingsboard/pull/13500
• New UI Localization: Danish, Dutch, French, German, Greek, Italian, Norwegian, and Spanish by @OKhalkov;

• Make Kafka consumer properties configurable for overridden topic names by @AndriiLandiak in https://github.com/thingsboard/thingsboard/pull/13148
• Notification on resources shortage by @AndriiLandiak in https://github.com/thingsboard/thingsboard/pull/12616
• Emit ALARM_DELETE event only after the delete operation completes by @dskarzh in https://github.com/thingsboard/thingsboard/pull/13262
• Automatic relations creation between Rule Chains when adding "Rule Chain" node by @ViacheslavKlimov in https://github.com/thingsboard/thingsboard/pull/13322
• Used TbMsgProto instead of ByteString by @YevhenBondarenko in https://github.com/thingsboard/thingsboard/pull/12257
• Separate rate limits (READ and WRITE) for Cassandra by @ShvaykaD in https://github.com/thingsboard/thingsboard/pull/13428
• Update cached device activity status only after a successful database save by @dskarzh in https://github.com/thingsboard/thingsboard/pull/13541
• Added MQTT version selection for rule nodes by @deaflynx in https://github.com/thingsboard/thingsboard/pull/13324
• Added ability to use message timestamp for CF results by @irynamatveieva in https://github.com/thingsboard/thingsboard/pull/13272
• Added missing fields for RPC message in cluster mode by @ShvaykaD in https://github.com/thingsboard/thingsboard/pull/13641

• Implement radar widget common axes mode by @ArtemDzhereleiko in https://github.com/thingsboard/thingsboard/pull/13457
• Improved safety of customTranslation placeholder parsing by @maxunbearable in https://github.com/thingsboard/thingsboard/pull/13231
• Hide zero tooltip for time series charts by @ArtemDzhereleiko in https://github.com/thingsboard/thingsboard/pull/13442
• Make last day selection default in Range (Time window History) by @ChantsovaEkaterina in https://github.com/thingsboard/thingsboard/pull/13552
• Change mime type for csv export file by @vvlladd28 in https://github.com/thingsboard/thingsboard/pull/13575
• Added Trendz settings by @yuliaklochai in https://github.com/thingsboard/thingsboard/pull/13301
• Added LwM2M observe strategies by @nickAS21 in https://github.com/thingsboard/thingsboard/pull/13279
• Added ability to created/view relations to rule chains by @vvlladd28 in https://github.com/thingsboard/thingsboard/pull/13501
• Added "Confirm OTA Update" title to the OTA update confirmation dialog by @vvlladd28 in https://github.com/thingsboard/thingsboard/pull/13533
• Added missing validation for notification length message by @vvlladd28 in https://github.com/thingsboard/thingsboard/pull/13516

• Added calculated fields support for Edge by @jekka001 in https://github.com/thingsboard/thingsboard/pull/13494

• Fixed alarm creation when having both attributes and telemetry in the alarm rule by @dashevchenko in https://github.com/thingsboard/thingsboard/pull/13064
• Fixed resource restoring in Version Control by @dashevchenko in https://github.com/thingsboard/thingsboard/pull/12905
• Fixed manually added telemetry not triggerring alarm by @dashevchenko in https://github.com/thingsboard/thingsboard/pull/13072
• Fixed tenant id resolving in OAuth2 mapper by @AndriiLandiak in https://github.com/thingsboard/thingsboard/pull/13480
• Fixed JSON argument handling in Calculated fields by @irynamatveieva in https://github.com/thingsboard/thingsboard/pull/13509
• Fixed updating CF state when old telemetry sent by @irynamatveieva in https://github.com/thingsboard/thingsboard/pull/13565
• Fixed showing outdated system resource info on tenant level by @ViacheslavKlimov in https://github.com/thingsboard/thingsboard/pull/13627

• Fixed device profile -> lwm2m transport observe strategy selector by @deaflynx in https://github.com/thingsboard/thingsboard/pull/13287
• Fixed validation of advanced button style for widget header action setting by @ArtemDzhereleiko in https://github.com/thingsboard/thingsboard/pull/13426
• Fixed issue with saving checksum in OTA package configuration when using external URL by @vvlladd28 in https://github.com/thingsboard/thingsboard/pull/13474
• Fixed SCADA connectors arrow color by @ArtemDzhereleiko in https://github.com/thingsboard/thingsboard/pull/13504
• Fixed full screen mode in editors by @vvlladd28 in https://github.com/thingsboard/thingsboard/pull/13508
• Fixed LWM2M Bootstrap configured display after saving by @vvlladd28 in https://github.com/thingsboard/thingsboard/pull/13512
• Fixed XSS vulnerability when delete state name by @vvlladd28 in https://github.com/thingsboard/thingsboard/pull/13515
• Fixed details panel button freeze midway in Firefox by @vvlladd28 in https://github.com/thingsboard/thingsboard/pull/13517
• Fixed visible elements behind widget preview by @vvlladd28 in https://github.com/thingsboard/thingsboard/pull/13519
• Fixed lwm2m device profile object configuration checkbox alignment by @vvlladd28 in https://github.com/thingsboard/thingsboard/pull/13520
• Fixed change detection in device profile transport configuration by @vvlladd28 in https://github.com/thingsboard/thingsboard/pull/13527
• Fixed for widgetTitlePanel templateOutlet by @LeoMorgan113 in https://github.com/thingsboard/thingsboard/pull/13394
• Hide zero false tooltip for Rule Engine Statistics dashboard by @ArtemDzhereleiko in https://github.com/thingsboard/thingsboard/pull/13540
• Prevent deleting an (entity alias/filter) that’s still used in map widgets by @vvlladd28 in https://github.com/thingsboard/thingsboard/pull/13550

• Fixed FOTA updates in LwM2M by @nickAS21 in https://github.com/thingsboard/thingsboard/pull/12876
• Fixed 404 error when accessing LwM2M Profile Transport Configuration with LwM2M disabled by @nickAS21 in https://github.com/thingsboard/thingsboard/pull/13243
• Use LwM2M Object 19 to send OTA update metadata by @nickAS21 in https://github.com/thingsboard/thingsboard/pull/12799

• @omahurin made their first contribution in https://github.com/thingsboard/thingsboard/pull/13145
• @tjg23 made their first contribution in https://github.com/thingsboard/thingsboard/pull/13154
• @yuliaklochai made their first contribution in https://github.com/thingsboard/thingsboard/pull/13301
• @sumin-denys made their first contribution in https://github.com/thingsboard/thingsboard/pull/13404
• @idealissst made their first contribution in https://github.com/thingsboard/thingsboard/pull/13367
• @Deesthortered made their first contribution in https://github.com/thingsboard/thingsboard/pull/13427

Full Changelog: https://github.com/thingsboard/thingsboard/compare/v4.0.2...v4.1

Minor release with the following bug fixes and improvements:

• EDQS improvements and bug fixes by @ViacheslavKlimov in https://github.com/thingsboard/thingsboard/pull/13362
• Fixed vulnerabilities by @smatvienko-tb in https://github.com/thingsboard/thingsboard/pull/13356
• Fixed retry mechanism in deduplication rule node by @ShvaykaD in https://github.com/thingsboard/thingsboard/pull/13414
• Fixed queue prefix not applied for some topics by @ViacheslavKlimov in https://github.com/thingsboard/thingsboard/pull/13374
• Fixed WS updates when updating older timeseries by @irynamatveieva in https://github.com/thingsboard/thingsboard/pull/13465
• Fixed vulnerabilities CVE-2025-49146 postgresql.driver and CVE-2025-27817 kafka client by @smatvienko-tb in https://github.com/thingsboard/thingsboard/pull/13577

• Improved Nederlands (België) translation by @vvlladd28 in https://github.com/thingsboard/thingsboard/pull/13290
• Improved dashboard autocomplete component by @vvlladd28 in https://github.com/thingsboard/thingsboard/pull/13299
• Hint for dynamic settings and refactoring flow animation connectors SCADA symbols by @ArtemDzhereleiko in https://github.com/thingsboard/thingsboard/pull/13292
• Removed sticky option for argument table header row in calculate field dialog by @ArtemDzhereleiko in https://github.com/thingsboard/thingsboard/pull/13344
• Fixed an issue with broken pagination settings validation in table-widgets by @Terny22 in https://github.com/thingsboard/thingsboard/pull/13253
• Fixed incorrect help links for calculated fields by @vvlladd28 in https://github.com/thingsboard/thingsboard/pull/13289
• Fixed percent value for doughnut chart by @ArtemDzhereleiko in https://github.com/thingsboard/thingsboard/pull/13300
• Fixed rule node config style by @vvlladd28 in https://github.com/thingsboard/thingsboard/pull/13321
• Fixed HP curcuit breaker widget type fqn by @ArtemDzhereleiko in https://github.com/thingsboard/thingsboard/pull/13413

• MQTT client exponential reconnect strategy by @smatvienko-tb in https://github.com/thingsboard/thingsboard/pull/12981

Full Changelog: https://github.com/thingsboard/thingsboard/compare/v4.0.1...v4.0.2

This is a small correction for reverting and re-introducing bits missing in previous releases.

• Fix is of session renew loop based on monotonic time

• make sure to cancel promises of failed DDLs

orientdb-community-3.2.42.tar.gz orientdb-community-3.2.42.zip

orientdb-tp3-3.2.42.tar.gz orientdb-tp3-3.2.42.zip

agent-3.2.42.jar