...
Oslo (under construction)
Package | Recommended Version | Release date | Notes | ||||||||||||||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
Java 11 | Java 11 (LTS) Minimum: Java SE 11.0.1721 Target: Java SE 11.0.2123 Java 17 (LST) Acceptable: Java SE 17.0.510 Target: Java SE 17.0.12 Java 21 (latest LTS) Target: Java SE 21.0.1004 | 20222023-10-1817 2023-10-17 2022-10-18 Latest: 2024-08-01-16 Latest: 2024-08-01 | Java SE 11 EOSL dates: September 2026 for Oracle, September 2026 for Azul, October 2024 for Red Hat Java SE 17: To accommodate ODL requirements; EOSL September 2024 for Oracle source: https://en.wikipedia.org/wiki/Java_version_history source: Java Archive | Oracle | ||||||||||||||||||||||
Python 3 | Minimum 3.9.19 Target: 3.12.24 | 20202022-1011-0512 2023-10-02 | security fixes available through: 2025-10 security fixes available through: 2028-10 | ||||||||||||||||||||||
not updated below this row | |||||||||||||||||||||||||
pip | target: 22.3.2 Acceptable: 22.3.1 | 2023-12-17 2022-11-05 | |||||||||||||||||||||||
Docker | Target: 24.0.9 Minimum: 24.0.0 | 2024-01-31 2023-05-16 | source: https://docs.docker.com/engine/release-notes/ | ||||||||||||||||||||||
Kubernetes | Target: 1. | 2930. | 03 Acceptable: 1. | 28.4+, 1.27.8+, 1.26.11+29.7 | 2024-07-16 | 2023-12-132023- | 1107- | 1416 | |||||||||||||||||
kubectl | Target: 1.29.0 Acceptable: 1.28.4+ | 2023-12-13 2023-11-14 | source: https://kubernetes.io/releases/ | ||||||||||||||||||||||
keycloak | Target: 23.0.7 Acceptable: 22.0.5 | 2024-02-22 2023-10-24 | source: Releases · keycloak/keycloak · GitHub usage: reference implementation | ||||||||||||||||||||||
Istio | Acceptable: 1.21.1+ Acceptable: 1.20.5+ | 2024-03 | , 1.27.8+, 1.26.11+-13 2023-11-14 | source: | https://kubernetes.io/releases/usage: reference implementation | ||||||||||||||||||||
Helm | Target:3.13.3 Acceptable: 3.12.3 | 2023-12-13 2023-08-10 | |||||||||||||||||||||||
Ubuntu | Target: 22.04.3 LTS Acceptable: 20.04.6 LTS | 2023-08-10 2023-03-23 | source: https://wiki.ubuntu.com/Releases | ||||||||||||||||||||||
Debian | Target 12.4 | 2023-12-10 | |||||||||||||||||||||||
Alpine | Target: 3.16.9, 3.17.7, 3.18.6 Target: 3.19.0 | 2024-01-26 2023-12-07 | |||||||||||||||||||||||
CentOS | CentOS Linux 7-2009 CentOS 8-Stream | 2020-09-29 | support ends: June 30, 2024 support ends: May 2024 source: https://www.centos.org/ | ||||||||||||||||||||||
curl | 8.5 0 | 2023-12-06 | |||||||||||||||||||||||
busybox | Acceptable: 1. | 35.0Acceptable: 1.34.36.1 | 20212023- | 1205- | 2619 | source: https://git.busybox.net/busybox/ | |||||||||||||||||||
OpenSSL | Target: 3.2.0 Target: 3.1.4, 3.0.12 Target: 1.1.1w | 2023-11-30 2023-10-24 2023-09-11 | ONAP acceptable cipher configuration must follow IANA recommendations source: https://www.openssl.org/ | ||||||||||||||||||||||
OpenSSH | Target: 9.6, 9.6p1 Target: 9.5/9.5p1 | 2023-12-18 2023-10-04 | ONAP acceptable cipher configuration must follow OpenSSH recommendations. | ||||||||||||||||||||||
Cassandra | Acceptable: 4.1.4 Acceptable: 4.0.12 | 2024-02-14 2024-01-23 | |||||||||||||||||||||||
MongoDB | Acceptable: 6.0.14 Acceptable: 5.0.25 Acceptable: 4.4.29 | 2024-02-28 2028-02-28 2028-02-28 | previous versions of 4.0, 5.0, 6.0 may skip peer certificate validation which may result in untrusted connections to succeed. | ||||||||||||||||||||||
MariaDB | Acceptable: 11.1.3, 11.0.4, 10.11.6, 10.10.7, 10.6.16 | 2023-11-13 | source: https://mariadb.com/kb/en/release-notes/, https://en.wikipedia.org/wiki/MariaDB | ||||||||||||||||||||||
Postgresql | NOTE that these releases fix a security bug in the previous minor releases. Acceptable: 16.2 Acceptable: 15.6 Acceptable: 14.11 Acceptable: 13.14 Acceptable: 12.18 | 2024-02-08 2024-02-08 2024-02-08 2024-02-08 2024-02-08 | Final release: 2028-11-09 Final release: 2027-11-11 Final release: 2026-11-12 Final release: 2025-11-13 Final release: 2024-11-14 | ||||||||||||||||||||||
Camunda | Acceptable: 8.4.0, 8.3.5, 8.2.20, 8.1.22 | 2024-01-08 | |||||||||||||||||||||||
OpenDayLight | ChlorinePotassium | 20222024- | 1202- | 2724 | |||||||||||||||||||||
Kafka | Acceptable: 3.6.1 Acceptable: 3.6.0 Acceptable: 3.5.2 | 2023-12-07 2023-10-10 2023-12-23 | Do not use 3.3.0 because it contains a significant bug Do not use 3.2.2 because it contains a significant bug | ||||||||||||||||||||||
etcd | Target: 3.5.11 Acceptable: 3.4.28 | 2023-12-7 2023-11-23 | in multicloud k8s | ||||||||||||||||||||||
redis | Acceptable: 7.2.4 Acceptable: 7.0.15 Acceptable: 6.2.14 Acceptable: 6.0.20 | 2024-01-09 24-01-09 23-10-18 2023-07-10 | Upgrade urgency: SECURITY, contains fixes to security issues. Upgrade urgency: SECURITY, contains fixes to security issues. Upgrade urgency: SECURITY, contains fixes to security issues. Upgrade urgency: SECURITY, contains fixes to security issues. in DCAE, VFC source: https://github.com/redis/re | ||||||||||||||||||||||
Elasticsearch | Acceptable: 8.12.0 Acceptable: 8.11.4 Acceptable: 8.6.2 Acceptable: 7.17.17 | 2024-01-17 2024-01-11 2023-02-16 2024-01-23 | EOSL: The later of 2024-08-10 or 6 months after the release date of 9.0 (TBD) EOSL: The later of 2024-08-10 or 6 months after the release date of 9.0 (TBD) EOSL: The later of 2024-08-10 or 6 months after the release date of 9.0 (TBD) EOSL: Maintained until version 9.0.0 source: https://www.elastic.co/support/eol source: https://github.com/elastic/elasticsearch/releases in SDNC + | ||||||||||||||||||||||
haproxy | Acceptable: | 12. | 179. | 10 Acceptable: | 12. | 168. | 40 Acceptable: | 12. | 157. | 81 Acceptable: | 12. | 146. | 117 | 2023-12- | 1205 2023- | 1205- | 1221 | 20232022-12- | 1219 | 20232022- | 1012- | 31Resolves security issues Resolves security issues Resolves security issues Resolves security issues source: https://github.com/hashicorp/consul/releases in AAF SMS + in "consul" | vault | Acceptable: 1.1502 | provides a path to 2.8 to be released in 2023 and is the next LTS version Current LTS (LTS through 2027-Q2) used by AAI |
filebeat | Acceptable: 8.11.4 Acceptable: | 18. | 1410. | 84 Acceptable: | 17. | 1317. | 1216 | 2024-01- | 0511 | 20242023- | 0110- | 0517 | 20242023- | 0112- | 0512 | source: https://github.com/ | hashicorpvault | ||||||||
nginx | Acceptable: | 21. | 925. | 04 Acceptable: | 21. | 824.0 | 2024-02-14 2023- | 0504- | 21nifi-registry | filebeat | Acceptable: 8.11.4 Acceptable: 8.10.4 Acceptable: 7.17.16 | 2024-01-11 2023-10-17 2023-12-12 | nginx | nexus | Target: 3.45.1 Acceptable: 3.44.0 Acceptable: 3.43.0 | 2023-01-17 2022-12-14 2022-11-07 | 11 | source: https://endoflife.date/nginx | |||||||
nexus | Acceptable: 3.63.0 | 2023-12-05 | Amy Zwarico ask LFIT what version is currently running https://help.sonatype.com/repomanager3/product-information/release-notes Nexus Repository Manager software usage: possibly in Policy | ||||||||||||||||||||||
zookeeper | Target: 3.9.2 Acceptable: 3.9.1 Target: 3.8.4 Acceptable: 3.8.3 | 2024-03-11 2023-10-03 2024-03-04 2023-10-09 | has known security vulnerabilities has known security vulnerabilities source: https://mvnrepository.com/artifact/org.apache.zookeeper/zookeeper usage: dmaap message router and portal | ||||||||||||||||||||||
memcached | Acceptable: 3.7.0 Acceptable: 3.6.9 Acceptable: 3.5.9 | 2023-12-29 2023-12-29 2023-08-28 | in contrib source: https://github.com/memcached/memcached/wiki/ReleaseNotes | ||||||||||||||||||||||
rabbitmq | Target: 3.12.12 Acceptable: 3.11.27 | 2024-01-05 2023-12-13 | source: https://github.com/rabbitmq/rabbitmq-server/releases | ||||||||||||||||||||||
ChartMuseum | Target: 0.16.1 Acceptable: 0.16.0 | 2024-01-04 2023-06-14 |
New Delhi
Package | Recommended Version | Release date | Notes | |||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|
Java 11 | Java 11 Minimum: Java SE 11.0.17 Target: Java SE 11.0.21 Java 17 Acceptable: Java SE 17.0.5 Target: Java SE 17.0.10 | 2022-10-18 2023-10-17 2022-10-18 2024-01-16 | Java SE 11 EOSL dates: September 2026 for Oracle, September 2026 for Azul, October 2024 for Red Hat Java SE 17: To accommodate ODL requirements; EOSL September 2024 for Oracle source: https://en.wikipedia.org/wiki/Java_version_history source: Java Archive | Oracle | |||||||||
Python 3 | Minimum 3.9.19 Target: 3.12.2 | 2020-10-05 2023-10-02 | security fixes available through: 2025-10 security fixes available through: 2028-10 | |||||||||
pip | target: 22.3.2 Acceptable: 22.3.1 | 2023-12-17 2022-11-05 | ||||||||||
Docker | Target: 24.0.9 Minimum: 24.0.0 | 2024-01-31 2023-05-16 | source: https://docs.docker.com/engine/release-notes/ | |||||||||
Kubernetes | Target: 1.29.0 Acceptable: 1.28.6+ | 2023-12-13 2023-11-14 | ||||||||||
kubectl | Target: 1.29.0 Acceptable: 1.28.4+ | 2023-12-13 2023-11-14 | source: https://kubernetes.io/releases/ | |||||||||
keycloak | Target: 23.0.7 Acceptable: 22.0.5 | 2024-02-22 2023-10-24 | source: Releases · keycloak/keycloak · GitHub usage: reference implementation | |||||||||
Istio | Acceptable: 1.21.1+ Acceptable: 1.20.5+ | 2024-03-13 2023-11-14 | source: Istio / Supported Releases usage: reference implementation | |||||||||
Helm | Target:3.13.3 Acceptable: 3.12.3 | 2023-12-13 2023-08-10 | ||||||||||
Ubuntu | Target: 22.04.3 LTS Acceptable: 20.04.6 LTS | 2023-08-10 2023-03-23 | source: https://wiki.ubuntu.com/Releases | |||||||||
Debian | Target 12.4 | 2023-12-10 | ||||||||||
Alpine | Target: 3.16.9, 3.17.7, 3.18.6 Target: 3.19.0 | 2024-01-26 2023-12-07 | ||||||||||
CentOS | CentOS Linux 7-2009 CentOS 8-Stream | 2020-09-29 | support ends: June 30, 2024 support ends: May 2024 source: https://www.centos.org/ | |||||||||
curl | 8.5 0 | 2023-12-06 | ||||||||||
busybox | Acceptable: 1.36.1 | 2023-05-19 | source: https://git.busybox.net/busybox/ | |||||||||
OpenSSL | Target: 3.2.0 Target: 3.1.4, 3.0.12 Target: 1.1.1w | 2023-11-30 2023-10-24 2023-09-11 | ONAP acceptable cipher configuration must follow IANA recommendations source: https://www.openssl.org/ | |||||||||
OpenSSH | Target: 9.6, 9.6p1 Target: 9.5/9.5p1 | 2023-12-18 2023-10-04 | ONAP acceptable cipher configuration must follow OpenSSH recommendations. | |||||||||
Cassandra | Acceptable: 4.1.4 Acceptable: 4.0.12 | 2024-02-14 2024-01-23 | ||||||||||
MongoDB | Acceptable: 6.0.14 Acceptable: 5.0.25 Acceptable: 4.4.29 | 2024-02-28 2028-02-28 2028-02-28 | previous versions of 4.0, 5.0, 6.0 may skip peer certificate validation which may result in untrusted connections to succeed. | |||||||||
MariaDB | Acceptable: 11.1.3, 11.0.4, 10.11.6, 10.10.7, 10.6.16 | 2023-11-13 | source: https://mariadb.com/kb/en/release-notes/, https://en.wikipedia.org/wiki/MariaDB | |||||||||
Postgresql | NOTE that these releases fix a security bug in the previous minor releases. Acceptable: 16.2 Acceptable: 15.6 Acceptable: 14.11 Acceptable: 13.14 Acceptable: 12.18 | 2024-02-08 2024-02-08 2024-02-08 2024-02-08 2024-02-08 | Final release: 2028-11-09 Final release: 2027-11-11 Final release: 2026-11-12 Final release: 2025-11-13 Final release: 2024-11-14 | |||||||||
Camunda | Acceptable: 8.4.0, 8.3.5, 8.2.20, 8.1.22 | 2024-01-08 | ||||||||||
OpenDayLight | Potassium | 2024-02-24 | ||||||||||
Kafka | Acceptable: 3.6.1 Acceptable: 3.6.0 Acceptable: 3.5.2 | 2023-12-07 2023-10-10 2023-12-23 | Do not use 3.3.0 because it contains a significant bug Do not use 3.2.2 because it contains a significant bug | |||||||||
etcd | Target: 3.5.11 Acceptable: 3.4.28 | 2023-12-7 2023-11-23 | in multicloud k8s | |||||||||
redis | Acceptable: 7.2.4 Acceptable: 7.0.15 Acceptable: 6.2.14 Acceptable: 6.0.20 | 2024-01-09 24-01-09 23-10-18 2023-07-10 | Upgrade urgency: SECURITY, contains fixes to security issues. Upgrade urgency: SECURITY, contains fixes to security issues. Upgrade urgency: SECURITY, contains fixes to security issues. Upgrade urgency: SECURITY, contains fixes to security issues. in DCAE, VFC source: https://github.com/redis/re | |||||||||
Elasticsearch | Acceptable: 8.12.0 Acceptable: 8.11.4 Acceptable: 8.6.2 Acceptable: 7.17.17 | 2024-01-17 2024-01-11 2023-02-16 2024-01-23 | EOSL: The later of 2024-08-10 or 6 months after the release date of 9.0 (TBD) EOSL: The later of 2024-08-10 or 6 months after the release date of 9.0 (TBD) EOSL: The later of 2024-08-10 or 6 months after the release date of 9.0 (TBD) EOSL: Maintained until version 9.0.0 source: https://www.elastic.co/support/eol source: https://github.com/elastic/elasticsearch/releases in SDNC + | |||||||||
haproxy | Acceptable: 2.9.0 Acceptable: 2.8.0 Acceptable: 2.7.1 Acceptable: 2.6.7 | 2023-12-05 2023-05-21 2022-12-19 2022-12-02 | provides a path to 2.8 to be released in 2023 and is the next LTS version Current LTS (LTS through 2027-Q2) used by AAI | |||||||||
filebeat | Acceptable: 8.11.4 Acceptable: 8.10.4 Acceptable: 7.17.16 | 2024-01-11 2023-10-17 2023-12-12 | ||||||||||
nginx | Acceptable: 1.25.4 Acceptable: 1.24.0 | 2024-02-14 2023-04-11 | source: https://endoflife.date/nginx | |||||||||
nexus | Acceptable: 3.63.0 | 2023-12-05 | Amy Zwarico ask LFIT what version is currently running https://help.sonatype.com/repomanager3/product-information/release-notes Nexus Repository Manager software usage: possibly in Policy | |||||||||
zookeeper | Target: 3.9.2 Acceptable: 3.9.1 Target: 3.8.4 Acceptable: 3.8.3 | 2024-03-11 2023-10-03 2024-03-04 2023-10-09 | has known security vulnerabilities has known security vulnerabilities source: https://mvnrepository.com/artifact/org.apache.zookeeper/zookeeper usage: dmaap message router and portal | |||||||||
memcached | Acceptable: 3.7.0 Acceptable: 3.6.9 Acceptable: 3.5.9 | 2023-12-29 2023-12-29 2023-08-28 | in contrib source: https://github.com/memcached/memcached/wiki/ReleaseNotes | |||||||||
zookeeper | Target: 3.8.0 Stable: 3.7.1 | 2022-04-04 2022-05-10 | Latest release - transition when stable release available Latest stable release source: https://mvnrepository.com/artifact/org.apache.zookeeper/zookeeper dmaap message router and in portal | |||||||||
memcached | Target: 1.6.18 Acceptable: 1.6.17 | 2023-01-10 2022-08-26 | netbox | Target: 3.4.2 Acceptable: 3.3.10 Acceptable: 3.2.9 | 2023-01-03 2022-12-13 2022-08-16 | awx | 23.6.0 23.5.1 | 2024-01-02 2023-12-05 | ejbca | 8.2.0.17.11.0 8.0.0 | 2023-12-07 2023-06-30 | https://www.ejbca.org/download/|
rabbitmq | Target: 3.12.12 Acceptable: 3.11.27 | 2024-01-05 2023-12-13 | source: https://github.com/rabbitmq/rabbitmq-server/releases | |||||||||
ChartMuseum | Target: 0.16.1 Acceptable: 0.16.0 | 2024-01-04 2023-06-14 |
Montreal
Package | Recommended Version | Release date | Notes |
---|---|---|---|
Java 11 | Minimum: Java SE 11.0.17 Acceptable: Java SE 11.0.19 Target: Java SE 17.7 | 2022-10-18 2023-04-18 2023-04-18 | Java SE 11 EOSL dates: September 2026 for Oracle, September 2026 for Azul, October 2024 for Red Hat Java SE 17: To accommodate ODL requirements See: Dependency Upgrade in Policy Framework source: https://www.java.com/releases/, https://en.wikipedia.org/wiki/Java_version_history |
Python 3 | Absolute minimum 3.8.16 Minimum:3.10.10 Target: 3.11.3 | 2022-12-06 2023-04-05 2023-04-05 | security fixes available through: 2024-10 security fixes available for 3.10 through: 2026-10 security fixes available for 3.11 through: 2027-10 source: https://www.python.org/doc/versions/, https://www.python.org/downloads/, https://en.wikipedia.org/wiki/History_of_Python |
centOS | Rocky Linux 8 or 9 | 7.9 is the final release of centOS. CentOS users should upgrade to Rocky Linux 8 or 9. | |
curl | 8.4.0 | 2023-10-11 |
...