weekly changelog digest

Docker changelog digest

Oct 27 - Nov 2, 2025. Useful releases, risky migrations, and noisy updates from the Docker channel.

Docker GitHub Node.js PostgreSQL Redis

Most useful

8.2.3 8.0.5 7.4.7 7.2.12 6.2.21

Most risky

8.2.3 8.0.5 7.4.7 7.2.12 6.2.21

Noise filtered

No matching updates in this bucket.

all updates

Docker updates in 2025-w44

8 updates

Redis7 months agoNov 2, 2025, 01:46 PMUsefulAI-assisted summary

8.2.3

score 0

~Fixed CVE‑2025‑62507 and multiple memory‑corruption bugs in XACKDEL, HGETEX, HyperLogLog, Cuckoo and Bloom filters.
~Patched stack overflow, division‑by‑zero, counter overflow, and out‑of‑bounds access issues that could cause crashes or remote code execution.
+Added mitigations for arbitrary memory read/write in Bloom filter and restored handling of invalid filters.

Security-relevantsecuritybugfixsource needs reviewLast checked 4 days ago

Source

Redis7 months agoNov 2, 2025, 07:49 AMUsefulAI-assisted summary

8.0.5

score 0

~Fixed multiple critical crashes and memory safety issues across data structures (HGETEX, HyperLogLog, Cuckoo filter, Bloom filter, Top K).
~Patched division‑by‑zero, counter overflow, and out‑of‑bounds accesses in filters.
+Resolved arbitrary memory read/write vulnerabilities (thanks to AWS security disclosure).

Security-relevantbugfixsecuritysource needs reviewLast checked 4 days ago

Source

Redis7 months agoNov 2, 2025, 07:26 AMUsefulAI-assisted summary

7.4.7

score 0

~Fixed a potential crash in HyperLogLog when processing entries larger than 2 GB.
+Addressed a critical stability bug affecting a subset of users.

bugfixminorsource needs reviewLast checked 4 days ago

Source

Redis7 months agoNov 2, 2025, 07:25 AMUsefulAI-assisted summary

7.2.12

score 0

~Critical bug fix preventing crashes in HyperLogLog when processing entries larger than 2 GB
~Improves stability for affected subset of users

bugfixminorsource needs reviewLast checked 4 days ago

Source

Redis7 months agoNov 2, 2025, 07:23 AMUsefulAI-assisted summary

6.2.21

score 0

~Critical fix for potential crash in HyperLogLog when processing entries larger than 2 GB.
+Addresses a high‑urgency bug affecting a subset of users.

bugfixsource needs reviewLast checked 4 days ago

Source

Node.js7 months agoOct 28, 2025, 07:20 PMUsefulAI-assisted summary

2025-10-28, Version 25.1.0 (Current), @aduh95

score 0

+Add http server option optimizeEmptyRequests, SQLite defensive flag, and watch config namespace; introduce optional disabling of source‑phase imports and experimental IsolateGroups support
~Enhance inspector with network payload buffer limits and websocket handshake response; fix TLS external‑memory leak on invalid protocol versions and update root CA certificates
~Extensive documentation updates, test, build, and tooling fixes across the codebase

Security-relevantfeaturesecurityminorbugfixdocssource failing

Source

Node.js7 months agoOct 28, 2025, 07:09 PMUsefulAI-assisted summary

2025-10-28, Version 22.21.1 'Jod' (LTS), @aduh95

score 0

+Add passive listener spec compliance and extend SPrintF functions to accept std::string_view, enhancing API flexibility.
~Fix multiple bugs in HTTP2 upgrade flow, process env/defaults, async context handling, timer bindings, and WASI function signatures.
~Improve performance and code quality by optimizing priority queue, array inspection, early hints handling, and reducing unnecessary string allocations.

featurebugfixminorsource failing

Source

Node.js7 months agoOct 28, 2025, 05:45 PMMixedAI-assisted summary

2025-10-28, Version 24.11.0 'Krypton' (LTS), @richardlau

score 0

+Node.js 24.x transitions to LTS (codename Krypton) with support through April 2028.
~Only metadata (e.g., process.release) was updated; no functional changes from 24.10.0.
~Known issue: Buffer.allocUnsafe currently returns zero‑filled buffers; fix slated for the next LTS release.

minordocssource failing

Source