Dear Apache Geode Community, The Apache Geode community is pleased to announce the availability of Apache Geode 1.15.3.
Geode is a data management platform that provides a database-like consistency model, reliable transaction processing and a shared-nothing architecture to maintain very low latency performance with high concurrency processing. Apache Geode 1.15.3 is dedicated to critical security remediations and essential dependency updates, ensuring the continued security and integrity of the Apache Geode platform. Highlights -Security Vulnerability Remediation: Resolved Allocation of Resources Without Limits or Throttling (GEODE-10567 #7991) -Vulnerability Remediation: Addressed CVE-2025-68161 to protect against a man-in-the-middle attack (GEODE-10544 #7978) -Security Remediation: Addressed CVE-2025-48924 in Apache Commons Lang3 (GEODE-10546 #7976) -Dependency Update: Upgraded commons-io from 2.15.1 to 2.18.0 (GEODE-10549 #7979) -Dependency Update: Upgraded slf4j-api from 1.7.32 to 1.7.36 (GEODE-10548 #7977) Users are encouraged to upgrade to the latest 2.0.1 release. For the full list of changes please review the release notes at: https://cwiki.apache.org/confluence/display/GEODE/Release+Notes#ReleaseNotes-1.15.3 Release artifacts and documentation can be found at the project website: https://geode.apache.org/releases/ https://geode.apache.org/docs/guide/115/about_geode.html We would like to thank all the contributors that made the release possible. Best regards, Jinwoo Hwang on behalf of the Apache Geode team SASĀ® Research and Development http://JinwooHwang.com<http://jinwoohwang.com/>
