KurrentDB

v24.10.14 Security

This release includes 1 security fix for security teams reviewing exposed deployments.

Published 19d Streaming & Message Queues

View tool

✓ No known CVEs patched

Read the diff → Tool health → What is this tool? →

This release patches 1 known CVE

Topics

cqrs database event-sourcing event-store eventsourcing eventstore

Summary

AI summary

Fixed wrong checkpoint handling and reply NotHandled when the Persistent Subscriptions service is not ready.

Changes in this release

Type	Severity	Summary	CVE
Security	Medium	Upgrade packages to address CVE-2026-33116 vulnerability. Upgrade packages to address CVE-2026-33116 vulnerability. Source: llm_adapter@2026-05-21 Confidence: low	—
Performance	Medium	Improve pinned persistent subscription performance under burst load. Improve pinned persistent subscription performance under burst load. Source: llm_adapter@2026-05-21 Confidence: high	—
Bugfix	Medium	Fix wrong checkpoint in persistent subscriptions with pinned strategy. Fix wrong checkpoint in persistent subscriptions with pinned strategy. Source: llm_adapter@2026-05-21 Confidence: high	—
Bugfix	Medium	Reply NotHandled when Persistent subscriptions service is not ready. Reply NotHandled when Persistent subscriptions service is not ready. Source: llm_adapter@2026-05-21 Confidence: high	—

Full changelog

What's Changed

Fixed

[DB-2027] [release/v24.10] Persistent subscriptions: Fix wrong checkpoint when using pinned strategy by @timothycoleman in https://github.com/kurrent-io/KurrentDB/pull/5615
[DB-2027][24.10] Reply NotHandled when Persistent subscriptions service is not ready (#5596) by @timothycoleman in https://github.com/kurrent-io/KurrentDB/pull/5617
[DB-2027][24.10] Use server-generated Node identity in Persistent Subscription Pinned strategy (#5597) by @timothycoleman in https://github.com/kurrent-io/KurrentDB/pull/5618

Changed

[DB-2027] Upgrade packages for CVE-2026-33116 by @timothycoleman in https://github.com/kurrent-io/KurrentDB/pull/5614
[DB-2027][v24.10] Improve pinned persistent subscription performance under burst load (#5576) (#5613) by @timothycoleman in https://github.com/kurrent-io/KurrentDB/pull/5616

Full Changelog: https://github.com/kurrent-io/KurrentDB/compare/v24.10.13...v24.10.14

Security Fixes

dep: CVE-2026-33116 — upgraded packages to address vulnerability

View diff on GitHub

Weekly OSS security release digest.

The CVE patches and breaking changes that affected production tools this week. One email, every Sunday.

No spam, unsubscribe anytime.

Share this release

Share on X Share on Bluesky

Track KurrentDB

Get notified when new releases ship.

About KurrentDB

KurrentDB is a database that's engineered for modern software applications and event-driven architectures. Its event-native design simplifies data modeling and preserves data integrity while the integrated streaming engine solves distributed messaging challenges and ensures data consistency.