What's new in the YugabyteDB Anywhere v2024.2 LTS release series

What follows are the release notes for all releases in the YugabyteDB Anywhere (YBA) v2024.2 series. Content will be added as new notable features and changes are available in the patch releases of the YBA v2024.2 series.

For an RSS feed of all release series, point your feed reader to the RSS feed for releases.

Before you upgrade

{{< warning title="On-premises legacy provisioning deprecated" >}}

YugabyteDB Anywhere v2025.2 does not support legacy node provisioning for on-premises universe nodes.

To prepare for v2025.2, update your node provisioning automation and workflows to support the node agent script.

To migrate universe nodes to the new automated provisioning, you can follow the node patching procedure.

{{< /warning >}}

Before upgrading, review the information in Prepare to upgrade YugabyteDB Anywhere.

v2024.2.8.0 - February 23, 2026 {#v2024.2.8.0}

Build: 2024.2.8.0-b85

Third-party licenses: YugabyteDB, YugabyteDB Anywhere

Download

Improvements

• Introduces a runtime configuration (enabled by default) to allow local user login even when single sign-on (SSO) is enabled. PLAT-19204
• Enables Azure Managed Identity for VM-based backups. When taking backups of a VM-based universe to Azure Blob Storage, instead of using an SAS token, you can use the Azure IAM roles assigned to YugabyteDB Anywhere and database nodes to authenticate. PLAT-8708

Bug fixes

• Enables viewing specific TServer metrics on Kubernetes by adjusting metric query processing. PLAT-16268
• Eliminates collection of WARN logs in support bundles to save space as they duplicate INFO logs. PLAT-17480
• Reduces the risk of OOM by breaking down the tserver_export metrics collection in support bundles. PLAT-17837
• Resolves issue causing universe upgrade failure due to deprecated SYSTEMD_SUDOER_ENTRY in NodeInstance metadata. PLAT-19146
• Increases default bootstrap_producer_timeout to 20 minutes to reduce xCluster setup failures. PLAT-19283
• Adds prechecks to detect active or enabled master processes in nodes before changes. PLAT-19732
• Enhances security with Trust Manager updates and adds Azure IAM support. PLAT-19289
• Fixes the issue of on-prem nodes not being released after precheck-only flow. PLAT-19778,PLAT-19684
• Increases success marker download timeout and makes it configurable using the flag ybc.success_marker_download_timeout_secs. PLAT-18429
• Ensures OIDC redirect URIs use HTTPS when X-Forwarded-Proto=https is set. PLAT-19012
• Ensures YBA OIDC redirect URIs respect X-Forwarded-Proto for correct HTTPS handling. PLAT-19012
• Enables use of pip 25.3 for enhanced security on Python 3.9 and above. PLAT-19195
• Enables runtime modification of yb.support_bundle.application_logs_regex_pattern. PLAT-19369
• Allows custom prefix setting for support bundle filenames. PLAT-19625

v2024.2.7.3 - February 3, 2026 {#v2024.2.7.3}

Build: 2024.2.7.3-b1

Third-party licenses: YugabyteDB, YugabyteDB Anywhere

Download

This is a YugabyteDB-only release, with no changes to YugabyteDB Anywhere.

v2024.2.7.2 - January 16, 2026 {#v2024.2.7.2}

Build: 2024.2.7.2-b1

Third-party licenses: YugabyteDB, YugabyteDB Anywhere

Download

This is a YugabyteDB-only release, with no changes to YugabyteDB Anywhere.

v2024.2.7.1 - December 31, 2025 {#v2024.2.7.1}

Build: 2024.2.7.1-b1

Third-party licenses: YugabyteDB, YugabyteDB Anywhere

Download

This is a YugabyteDB-only release, with no changes to YugabyteDB Anywhere.

v2024.2.7.0 - December 30, 2025 {#v2024.2.7.0}

Build: 2024.2.7.0-b62

Third-party licenses: YugabyteDB, YugabyteDB Anywhere

Download

Improvements

• Upgrades Prometheus client library to remove duplicate JVM metrics and warnings. PLAT-17918
• Allows local user login even when Single Sign-On is enabled by default. PLAT-19204

Bug fixes

• Upgrades Postgres image in charts to address new customer-reported CVEs. PLAT-18517
• Allows using yugabyte as the default SSH user in the provider creation page if left blank, specifically for on-premise manual configurations. PLAT-18666
• Enables validation of NFS return codes in YBC for better error handling. PLAT-18671
• Allows non-root users to correctly run yba-ctl status for global systemd. PLAT-18733
• Allows yb-server-ctl script to run successfully with system level systemd universes. PLAT-18804
• Allows subdomain and CIDR support in YBA's custom proxy selector. PLAT-18925
• Enables stable YBC branch for generating compatible builds, resolving incompatibility issues. PLAT-18803
• Upgrades Jinja2 to version 3.1.6 to address {{<cve "CVE-2025-27516">}} vulnerability. PLAT-18964
• Fixes an issue that stopped PlatformInstanceClient from sending cluster header in HA API calls. PLAT-19114
• Revise health check metrics logic to accurately capture and report failure data for RF1 and RF3 clusters. PLAT-18636
• Upgrades java dependencies to fix multiple vulnerabilities, including a Denial of Service issue and Netty's MadeYouReset HTTP/2 DDoS vulnerability. PLAT-18737,PLAT-18659
• Integrates regex to enable volume stats metrics matching in OCP. PLAT-18763
• Increases the maximum python version limit for database nodes to 3.10. PLAT-16635
• Allows controlled server upgrades in availability zones with user-defined sleep time and enhanced logging for visibility. PLAT-18667,PLAT-18669

v2024.2.6.2 - December 22, 2025 {#v2024.2.6.2}

Build: 2024.2.6.2-b2

Third-party licenses: YugabyteDB, YugabyteDB Anywhere

Download

This is a YugabyteDB-only release, with no changes to YugabyteDB Anywhere.

v2024.2.6.1 - November 11, 2025 {#v2024.2.6.1}

Build: 2024.2.6.1-b2

Third-party licenses: YugabyteDB, YugabyteDB Anywhere

Download

This is a YugabyteDB-only release, with no changes to YugabyteDB Anywhere.

v2024.2.6.0 - October 31, 2025 {#v2024.2.6.0}

Build: 2024.2.6.0-b94

Third-party licenses: YugabyteDB, YugabyteDB Anywhere

Download

Improvements

• Adds option to disable table-level metrics collection in YugabyteDB. PLAT-18210
• Adds OutlierDB support to metrics view and removes outdated code. PLAT-18272
• Displays WAL status in CDC metrics for clearer stream expiry information. PLAT-18496

Bug fixes

• Secures LDAP passwords in logs by redacting sensitive flags during operations. PLAT-12639
• Ensures Route53 DNS addresses update correctly when editing a universe to include new TServers. PLAT-15647,PLAT-15648
• Updates Java dependencies to address multiple CVEs. PLAT-17981
• Upgrades braces to version 3.0.3 to prevent memory exhaustion. PLAT-18011
• Removes outdated Path sections and updates logging to use journal in systemd files. PLAT-18249
• Ensures support bundles correctly collect flag overrides in Kubernetes environments. PLAT-18255
• Enables customization of tserver liveness probes in the Helm chart. PLAT-18285
• Adds retries to systemctl commands for better stability during service management. PLAT-18321
• Reduces lock scope in XClusterScheduler to prevent UI unresponsiveness during node failures. PLAT-18398
• Corrects DR configuration issue for proper snapshot and retention settings. PLAT-18473
• Reduces logical replication lag reporting issues by using cdcsdk_flush_lag metric. PLAT-18479
• Ensures YBA HA GET APIs authenticate users without enforcing authorization checks. PLAT-18503
• Disables misleading systemd precheck alerts for cron-based universes. PLAT-18515
• Upgrades PostgreSQL to 14.19+ in YugabyteDB Anywhere to address critical CVEs. PLAT-18517
• Fixes the issue of excess masters by updating preflight checks and improving health monitoring. PLAT-18573
• Locks certifi version to support Python 3.6, preventing AWS create universe failures. PLAT-17917
• Upgrades setuptools to 78.1.1 to address high-severity CVEs. PLAT-17982
• Enhances security by updating Go libraries to address multiple CVEs. PLAT-17983
• Reduces buffer size to 1MB and switches to heap memory for easier management. PLAT-18164
• Upgrades YBA Prometheus in Helm charts to 3.5.0, addressing over 10 vulnerabilities. PLAT-18201
• Upgrades node_exporter to version 1.9.1, enhancing security. PLAT-18315
• Upgrades Protobuf to address {{<cve "CVE-2025-4565">}}. PLAT-18428
• Upgrades Go version to 1.24.6 and updates dependencies to enhance security. PLAT-18447,PLAT-18446
• Addresses {{<cve "CVE-2025-58367">}} with a Deep Diff update. PLAT-18557
• Adds metrics to track and alert on node agent installation failures. PLAT-17274
• Hides LDAP passwords in the YBA flags configuration UI to enhance security. PLAT-18069
• Ensures correct kubeconfig is used when adding a new AZ in Kubernetes setups. PLAT-18154
• Upgrades OAuth2 in Go services to fix a CVE. PLAT-18193
• Enables Azure backups to operate correctly with subdirectory specifications. PLAT-18207
• Hides LDAP passwords in flags within support bundles. PLAT-18363
• Fixes symlink issues to prevent rolling restart failures in OpenShift. PLAT-18433
• Displays a warning message for non-rolling upgrade attempts. PLAT-18692
• Enables creating and using custom Kubernetes regions. PLAT-18243
• Fixes cert-manager certificate names and SAN entries for MCS. <!-- GH-163,PLAT-17142 -->
• Reverts erroneous method changes to fix Azure Private DNS in universe creation/deletion. PLAT-17152
• Automatically includes inherited values in runtime configuration fetches. PLAT-18267
• Adds an API to set preferred zones by priority, ensuring optimal data placement. PLAT-18158,PLAT-18410
• Prevents YBA backups from overwriting each other using timestamped temp directories. PLAT-18514
• Enables validation of NFS return codes in YBC for better error handling. PLAT-18671
• Displays a warning message for non-rolling upgrade attempts. PLAT-18692
• Resolves incompatibility by using 2.2.0.1-b1 YBC branch to generate the build. PLAT-18803

v2024.2.5.1 - September 11, 2025 {#v2024.2.5.1}

Build: 2024.2.5.1-b1

Third-party licenses: YugabyteDB, YugabyteDB Anywhere

Download

{{< note title="Preflight check requirement for RHEL" >}}

Before deploying YugabyteDB Anywhere on a Red Hat Enterprise Linux (RHEL) system, ensure that a symbolic link for Python exists.

The preflight check requires /usr/bin/python and /usr/bin/python3 point to the same version of Python (via a symlink), and the Python version is supported (v3.6 to v3.11). If the link is missing, the preflight check fails, even if a compatible version of Python 3 is installed.

To prevent this issue, run the following command on your host machine to create the symbolic link:

sudo ln -s /usr/bin/python3 /usr/bin/python

{{< /note >}}

Bug fix

• Locks certifi version to support Python 3.6, preventing AWS create universe failures. PLAT-17917

v2024.2.5.0 - August 29, 2025 {#v2024.2.5.0}

Build: 2024.2.5.0-b59

Third-party licenses: YugabyteDB, YugabyteDB Anywhere

Download

New features

• UI updates to automatically provision on-premises nodes {{<tags/feature/ga idea="2081">}}. To improve the out-of-box experience, the UI for creating on-premises providers has been modified to direct users to automatic provisioning.

• Ephemeral disk support {{<tags/feature/ea idea="2298">}}. Added support for ephemeral disks for on-premises universes to improve performance for read-heavy workloads.

• Configurable common names for Kubernetes {{<tags/feature/ga idea="2065">}}. You can configure a custom common name suffix for Kubernetes cert-manager.

Improvements

• Shows a banner for cron-based universes needing an upgrade before v2025.2. PLAT-17422
• Enables a UI banner to prompt enabling Node Agent auto-installation for convenience. PLAT-17437
• Allows editing of PITR retention period directly from the DR configuration modal. PLAT-15114
• Adds support for no_proxy settings and customizable ports in node agent provisioning and node agent. PLAT-16659,PLAT-16570
• Adds support for GCP hyperdisks with smart resize options and a 4-hour cooldown on performance changes. PLAT-17704,PLAT-16607,PLAT-16834,PLAT-16448
• Adds a dropdown for automatic or legacy provisioning in the YBA UI when creating on-prem providers. PLAT-18112
• Enables retrieving all user groups from Azure AD by adding pagination support. PLAT-18181

Bug fixes

• Enhances security by upgrading crypto and net libraries in yba-installer and yba-ctl. PLAT-17846
• Adds a check to block non-restart upgrades when universe nodes are in-transit. PLAT-17905
• Secures LDAP passwords in logs by redacting sensitive flags during operations. PLAT-12639
• Enables manual flow control for Java node agent gRPC streaming to prevent buffer overflow. PLAT-17927
• Adds a critical alert for invalid THP parameters on nodes. PLAT-17170,PLAT-17938
• Reduces high CPU usage by eliminating infinite loops in YBC upgrades. PLAT-18174
• Removes NGINX from YBA Helm charts in versions 2.14 to 2.20. PLAT-10837
• Ensures accurate timestamp display in the live query panel by specifying the correct format. PLAT-16415
• Ensures correct kubeconfig is used when adding a new AZ in Kubernetes setups. PLAT-18154
• Supports fetching flags checksum using both old and new Helm naming styles. PLAT-18232

v2024.2.4.2 - December 16, 2025 {#v2024.2.4.2}

Build: 2024.2.4.2-b2

Third-party licenses: YugabyteDB, YugabyteDB Anywhere

Download

Improvement

• Allows local user login even when Single Sign-On is enabled on YBA by default. PLAT-19204

Bug fix

• Locks certifi version to support Python 3.6, preventing AWS create universe failures. PLAT-17197

v2024.2.4.1 - August 20, 2025 {#v2024.2.4.1}

Build: 2024.2.4.1-b4

Third-party licenses: YugabyteDB, YugabyteDB Anywhere

Download

This is a YugabyteDB-only release, with no changes to YugabyteDB Anywhere.

v2024.2.4.0 - July 14, 2025 {#v2024.2.4.0}

Build: 2024.2.4.0-b89

Third-party licenses: YugabyteDB, YugabyteDB Anywhere

Download

Improvements

• When creating a YugabyteDB Anywhere universe, Google Cloud Hyperdisks (specifically, the Balanced and Extreme options) are now a supported option for disk type on Google Cloud Platform. <!-- IDEA-1946 -->
• Adds a Tablet Report component to the Support Bundle for better diagnostics. PLAT-16280
• Adds custom PromQL queries and new components in the support bundle UI. PLAT-16286

Bug fixes

• Prevents re-blacklisting of tservers already added or joined on retry of edit universe operations. PLAT-16250
• Enhances latency alerts to display affected node names and ensures alert thresholds are in milliseconds. PLAT-16426
• Ensures all cloudInfo fields are merged in YBA UI before edit requests, preventing mischaracterized edits. PLAT-16924
• Triggers full backup instead of incremental if a scheduled full backup is missed. PLAT-17116
• Ensures TLS toggle and cert rotation manage YBC flags on dedicated masters. PLAT-17472
• Ensures YBA runs in UTC to maintain consistent timestamp handling. PLAT-17486
• Increases the nproc limit to support larger T-Servers. PLAT-17490
• Revamps YBA installer handling of self-signed certs, adding yba-ctl certs generate command. PLAT-17535
• Enables BackupAdmin Role to perform old RBAC restore preflight checks. PLAT-17553
• Prevents unnecessary reinstallation of node agent if root-level systemd is detected. PLAT-17665
• Enhances yba-ctl rollback to better handle filesystem and service restoration. PLAT-17717
• Blocks installs and upgrades on systems with incompatible GLIBC versions. PLAT-17725
• Enables password changes for ReadOnly and ConnectOnly roles via the reset_password API. PLAT-16734
• Handles commas in TLS algorithm lists for different OS compatibility. PLAT-16931
• Ensures node updates during tasks won't overwrite live data with stale information. PLAT-17405
• Enables the "Install Node Agent" action for on-prem universes with available SSH keys. PLAT-17436
• Disables background node agent installer by default, but tracks universes needing migration. PLAT-17435,PLAT-17449
• Adds a field to track node agent status updates on universe nodes. PLAT-17520
• Skips THP setting on CentOS 7 and AL2 to enhance stability. PLAT-17545
• Removes the memory preflight check from node agent during node agent provisioning. PLAT-17647
• Ensures collect_metrics.sh script re-uploads if a node name is reused. PLAT-17671
• Upgrades YBC client and server versions to 2.2.0.2-b5. PLAT-17736
• Updates outdated CRDs in the charts repo manually and sets up automation for future updates. PLAT-17749
• Blocks "Replace Node" action for Kubernetes-based universes from the UI. PLAT-14735
• Automatically reinstalls YBC on nodes failing ping checks before backup/restore. PLAT-15682,PLAT-15703
• Allows S3 bucket access through both global and private endpoints using the new globalBucketAccess field. PLAT-16571
• Allows specifying full URNs for Azure vnet/subnet to improve resource grouping. PLAT-17115
• Ensures dedicatedNodes is set to true for all Kubernetes universes. PLAT-17185,PLAT-16827
• Enhances IP validation in multi-cluster deployments for accuracy. PLAT-17205
• Enables task checkpointing with an optional runtime flag for easy disabling. PLAT-17325
• Enhances support bundle functionality with parallel processing, estimation tools, and customizable data collection. PLAT-17050,PLAT-16283,PLAT-17365,PLAT-12950,PLAT-10615,PLAT-17211,PLAT-16282,PLAT-12497,PLAT-16844
• Enables YBC connections in TLS-enabled universes with Istio. PLAT-17513
• Reverts changes to fix YBC connection issues with TLS in Istio-enabled universes. PLAT-17513
• Enables Istio compatibility for TLS-enabled YugabyteDB clusters. PLAT-17513
• Changes default storage location for node_health stats from /tmp to avoid data truncation. PLAT-17617,PLAT-17219
• Ensures restore preflight fails correctly when PITR is out of window. PLAT-17719
• Exits early if a node being provisioned using the node agent provisioning script cannot connect to YBA. PLAT-17734
• Expands GLIBC precheck compatibility for various system versions. PLAT-17784
• Enhances backup reliability by handling master address resolution failures effectively. PLAT-17887
• Ensures query call counts exceed integer limits by using long data types. PLAT-16470
• Enhances backup and restore by reconfiguring YBC on all queryable nodes, not just Running or ToBeRemoved. PLAT-17252
• Enhances handling and defaults of YBA installer configs. PLAT-17361,PLAT-17426
• Enables linger to prevent systemd failures during service launches. PLAT-17556
• Enable yb.skip_version_checks to bypass software upgrade version checks. PLAT-17780
• Updates YBA dashboards to display new Master RPC metrics. PLAT-17851
• Allows using IAM roles on DB nodes for S3 backups and restores. PLAT-15859
• Ensures yba-ctl clean succeeds even with incorrect configurations. PLAT-17547
• Corrects RBS metric calculation and provides updated metrics in YBA graphs. PLAT-17792
• Respects Kubernetes override settings for CPU core calculations. PLAT-17874
• Enhances backup reliability by handling master address resolution failures effectively. PLAT-17887
• Adds a health check for "THP issues" when RSS exceeds TCMalloc usage. PLAT-17937, PLAT-17637
• Enhances method to decide if use_sudo is needed for Ansible runbooks based on tserver status. PLAT-17963

v2024.2.3.3 - August 11, 2025 {#v2024.2.3.3}

Build: 2024.2.3.3-b4

Third-party licenses: YugabyteDB, YugabyteDB Anywhere

Download

Bug fixes

• Enhances method to decide if use_sudo is needed for Ansible runbooks based on tserver status. PLAT-17963
• Enables fetching all user groups from Azure AD by supporting pagination. PLAT-18181

v2024.2.3.2 - June 24, 2025 {#v2024.2.3.2}

Build: 2024.2.3.2-b6

Third-party licenses: YugabyteDB, YugabyteDB Anywhere

Download

This is a YugabyteDB-only release, with no changes to YugabyteDB Anywhere.

v2024.2.3.1 - June 13, 2025 {#v2024.2.3.1}

Build: 2024.2.3.1-b3

Third-party licenses: YugabyteDB, YugabyteDB Anywhere

Download

Bug fixes

• Triggers full backup instead of incremental if a scheduled full backup is missed. PLAT-17116
• Removes the memory preflight check from node agent during node agent provisioning. PLAT-17647

v2024.2.3.0 - May 16, 2025 {#v2024.2.3.0}

Build: 2024.2.3.0-b116

Third-party licenses: YugabyteDB, YugabyteDB Anywhere

Download

Highlights

This release brings significant enhancements focused on performance, flexibility, and operational improvements:

Private CA support for Kubernetes Deployments {{<tags/feature/ga idea="2023">}}

For Kubernetes-based universes using encryption-in-transit, this release adds support for aws-privateca-issuer, simplifying certificate management with AWS Private CA.

IAM role support for GCP Backups {{<tags/feature/ga idea="2024">}}

Managing backups to Google Cloud Storage (GCS) for VM-based universes is now easier. YugabyteDB Anywhere can now leverage its own IAM role for authentication to GCS, streamlining the configuration process.

Deprecation of cron on DB nodes {{<tags/feature/ga idea="1805">}}

The use of cron to start YB services on DB nodes has been deprecated. Instead, use systemd. YBA now flags any existing DB nodes using cron with a warning containing remediation instructions. <!-- IDEA-1805 -->

Change log

Improvements

• Automatically deletes associated backup policies when a universe is removed. PLAT-17197
• Enables connection pooling during universe creation using new flags. PLAT-16688
• Allows custom configuration of GCP connection draining timeout. PLAT-17356
• Enables LDAP URL validation to support IPv6 addresses. PLAT-17180
• Adds a linter to the YBA CLI project, use make fmt for formatting. PLAT-16887

Bug fixes

• Enhances KMS token renewal at 70% TTL and adds hourly refresh. PLAT-16290
• Supports multiple NTP services for health checks. PLAT-16709
• Allows uploading .cer certificates to YBA without checksum validation errors. PLAT-16726
• Disables clock drift check for Kubernetes clusters and when configured. PLAT-16819
• Enhances database health checks and process management for better stability and performance. PLAT-16197,PLAT-14999,PLAT-15742,PLAT-16895
• Enables retry and abort options for RR cluster deletion tasks. PLAT-16991
• Automatically renews node agent certificates ahead of expiry. PLAT-17056
• Ensures node agent installation is repeatable and error-resistant during manual provisioning. PLAT-17141
• Enables clearer metrics and alerts for backup deletions. PLAT-17251
• Upgrades BouncyCastle library to mitigate vulnerabilities. PLAT-13849
• Fixes Azure resource deletion by correctly reading the error code field. PLAT-16769
• Ensure instance types exist before node addition in onprem providers. PLAT-16810
• Restores using KMS now function correctly due to improved field annotations in YBA CLI. PLAT-16811,PLAT-16783
• Ensures correct certificate issuer settings during universe upgrades using certManager. PLAT-16812
• Fixes the issue where changing timezone doesn't update on zoomed metrics graphs. PLAT-16833
• Upgrades Prometheus in YBA installer to version 3.2.1, enhancing security. PLAT-16872
• Upgrades Prometheus in helm charts to version 3.2.1, enhancing security. PLAT-16872
• Upgrades PostgreSQL to version 14.17 to address critical security vulnerabilities. PLAT-16873
• Upgrades key dependencies for enhanced security against critical vulnerabilities. PLAT-16876,PLAT-16874,PLAT-16873
• Upgrades azcopy to version 10.28.0 to enhance security and performance. PLAT-16893
• Upgrades address security vulnerabilities in Netty, Json-smart, and Mina-core, ensuring increased safety against potential attacks. PLAT-16894
• Prevents YBA crash loop caused by invalid OIDC configuration settings. PLAT-16905
• Fixes clock drift metric reporting to ensure alert triggers. PLAT-16984
• Ensures unique names for databases during specific restores. PLAT-17146
• Fixes issues with creating universes and editing read replicas due to missing primary cluster payloads. PLAT-17224
• Fixes universe creation failure in on-prem tests by ensuring node agent cleanup. PLAT-17292
• Ensures Ansible provisioning validation works on Ubuntu by updating the scripting method. PLAT-17349
• Enables retrying CreateUniverse for on-prem nodes by modifying preflight checks. PLAT-17368
• Ensures YBA HA promotion success even if it fails midway after a restore. PLAT-17369
• Skips THP setting on CentOS 7 and AL2 to enhance stability. PLAT-17545
• Fixes disk IOPS and throughput reset issue during universe edits. PLAT-16661,PLAT-16724
• Fixes Helm error to successfully apply multiple nodeSelector values in overrides. PLAT-16727
• Adds flexible regex matching for S3 Host Base domains. PLAT-16842
• Fixes node agent precheck failures and streamlines AsyncTask interface for RPC tasks. PLAT-15566,PLAT-16886
• Ensures the crontab binary exists before disabling services on Amazon Linux 2023 AMI. PLAT-16902
• Adds a refresh button to the slow queries UI for easier data updates. PLAT-16917
• Fixes configuration display and saving issues for migrated universes from 2.20 to 2024.2. PLAT-16918
• Enhances PerfAdvisor by ignoring new fields and supporting custom temp directories. PLAT-17020,PLAT-14028
• Fixes deadlock issue in backups by using sequential streams instead of parallel streams. PLAT-17063
• Enables xCluster creation to require bootstrapParams.tables despite allowBootstrap addition. PLAT-17105
• Allows specifying full URN for Azure vnet and subnet for resource flexibility. PLAT-17115
• Enables correct setting of THP parameters during provisioning with Ansible and when using the node agent provisioning script. PLAT-171678,PLAT-17171,PLAT-17167
• Fixes issue where adding a new node to an async cluster incorrectly re-creates existing nodes. PLAT-17337
• Fixes node addition in async clusters without recreating existing nodes. PLAT-17311,PLAT-17337
• Ensures playbooks for AmazonLinux:2023 work smoothly in YBA 2024.2. PLAT-17364
• Enhances XCluster deletion by using source universe UUID when the target is absent. PLAT-13785
• Allows empty fields in Cert Manager Issuer during K8s setup. PLAT-16759,PLAT-16758
• Ensures backup schedules correctly update times for full and incremental backups. PLAT-16972
• Updates the client-side xCluster version check to 2024.1.3.0-b104 to align with backend validations. PLAT-17045
• Ensures node states update correctly during resize tasks with retries. PLAT-17189,PLAT-16916
• Enables creation and editing of xCluster configurations via YBA CLI. PLAT-16358
• Corrects API annotations for Point-in-Time Recovery operations. PLAT-16364
• Resolves the date conversion bug in the get JWT endpoint. PLAT-17261

v2024.2.2.5 - August 5, 2025 {#v2024.2.2.5}

Build: 2024.2.2.5-b2

Third-party licenses: YugabyteDB, YugabyteDB Anywhere

Download

Bug fix

• Allows specifying full URNs for Azure vnet/subnet to improve resource grouping. PLAT 17115

v2024.2.2.4 - May 19, 2025 {#v2024.2.2.4}

Build: 2024.2.2.4-b1

Third-party licenses: YugabyteDB, YugabyteDB Anywhere

Download

Change log

Bug fixes

• Allows specifying full URNs for Azure vnet/subnet to improve resource grouping. PLAT-17115

v2024.2.2.3 - May 6, 2025 {#v2024.2.2.3}

Build: 2024.2.2.3-b1

Third-party licenses: YugabyteDB, YugabyteDB Anywhere

Download

Change log

Improvements

• Allows custom configuration of GCP connection draining timeout. PLAT-17356

v2024.2.2.2 - April 9, 2025 {#v2024.2.2.2}

Build: 2024.2.2.2-b2

Third-party licenses: YugabyteDB, YugabyteDB Anywhere

Download

This is a YugabyteDB-only release, with no changes to YugabyteDB Anywhere.

v2024.2.2.1 - March 11, 2025 {#v2024.2.2.1}

Build: 2024.2.2.1-b6

Third-party licenses: YugabyteDB, YugabyteDB Anywhere

Download

This is a YugabyteDB-only release, with no changes to YugabyteDB Anywhere.

v2024.2.2.0 - February 28, 2025 {#v2024.2.2.0}

Build: 2024.2.2.0-b70

Third-party licenses: YugabyteDB, YugabyteDB Anywhere

Download

Known issue

If you previously had OIDC configured for YugabyteDB Anywhere, check the Scope parameter on the configuration. If it isn't set, update the scope value to openid email profile. (PLAT-17104)

New features

• More convenience when changing time zones. When viewing metrics or charts, switching time zones is now more conveniently located on the same web page, rather than several clicks away. <!-- IDEA-517 --> {{<tags/feature/ga idea="IDEA-517">}}
• Linux updates on YBA via boot-disk-replacement. As an alternative to in-place patching, Linux updates (for security, or for upgrades) to YBA can now be performed by replacing the YBA VM boot disk, reinstalling YBA, and re-attaching the data disk. <!-- IDEA-1829 --> {{<tags/feature/ga idea="IDEA-1879">}}
• YBA CLI. A new YBA command-line which enables script-based automation. Now available in Early Access. <!-- IDEA-1879 --> {{<tags/feature/ea idea="IDEA-1879">}}
• Connection Pooling (for Kubernetes) - K8s support for optional server-side Connection Pooling enables more connections per cluster, more efficient memory usage, and faster first connection (and therefore first query) latencies. <!-- IDEA-1860 --> {{<tags/feature/ea idea="IDEA-1860">}}

Change log

Improvements

• Enhances node agent logging and supports easier debugging in YBA. PLAT-16550
• Adds support for updating TLS settings of Universe via YBA CLI. PLAT-15532
• Ensures HA failover works across different timezones by using epoch millisecond time. PLAT-15970
• Include YBC ports in on-prem preflight checks for better setup validation. PLAT-16465
• Allows enabling the preview feature flag to mask unqualified commands. PLAT-16647

Bug fixes

• Handles Azure images without plan information to avoid errors. PLAT-16404
• Fixes LDAP authentication to return correct search results for mismatching email and DN entries. PLAT-16543
• Ensures K8s always displays TServer and Master configurations, irrespective of use_k8s_custom_resources flag. PLAT-16577
• Ensures yba-ctl preflight command runs smoothly without as_root setting errors. PLAT-16668
• Upgrades libcurl in YBC and YBDB binaries to version 7.86.0 or higher, ensuring CIDR notation in NO_PROXY is respected. PLAT-16504
• Allows restoring a universe on the same universe without renaming keyspaces. PLAT-16553
• Destroys manual-onprem universes stuck in DECOMMISSIONED state correctly. PLAT-16631
• Fixes incorrect flag in CLI for on-prem provider creation to prevent failures. PLAT-16672
• Fixes the premature "cluster not found" error for read replicas in YBA CLI. PLAT-16689
• Fixes output error for incremental backups in YBA CLI, ensuring accurate status messages. PLAT-16703
• Ensure instance types exist before node addition in on-premises providers. PLAT-16810
• Restores using KMS now function correctly due to improved field annotations in YBA CLI. PLAT-16811,PLAT-16783
• Ensures server certs do not rotate unexpectedly during upgrades with cert-manager. PLAT-16812
• Fixes the issue where changing timezone doesn't update on zoomed metrics graphs. PLAT-16833
• Adds an async task Java client for node agent, mirroring existing Python client. PLAT-15661
• Prevents both instances from entering standby after a peer promotion. PLAT-16468
• Enables RBAC commands in CLI to run without requiring runtime_config key permissions. PLAT-16520
• Corrects label errors in rpc_latency_sum and rpc_latency_count metrics. PLAT-16544
• Ensures collect_metrics_wrapper.sh aligns with node_exporter's metrics path. PLAT-16581
• Enables passing correlation ID from YBA to node agent for RPCs via Python processes. PLAT-16646
• Upgrades spring-security-core to 5.8.16 to address {{<cve "CVE-2024-38821">}}. PLAT-16648
• Fixes timezone-related metrics display to prevent data disappearance. PLAT-16704
• Allows empty fields in Cert Manager Issuer during K8s setup. PLAT-16758,PLAT-16759
• Enhances error handling in yba-ctl to prevent infinite loops and crashes from unhandled directory creation errors. PLAT-16467
• Standardizes on-prem instance labels for consistency across UI components. PLAT-16633
• Enhances yba-ctl efficiency by skipping needless state file updates when no changes occur. PLAT-16641
• Fixes YCQL restores to correctly check for empty table names. PLAT-16754
• Adds useTablespaces to the YBA CLI restore workflow. PLAT-16755

v2024.2.1.0 - January 30, 2025 {#v2024.2.1.0}

Build: 2024.2.1.0-b185

Third-party licenses: YugabyteDB, YugabyteDB Anywhere

Download

Known issue

If you previously had OIDC configured for YugabyteDB Anywhere, check the Scope parameter on the configuration. If it isn't set, update the scope value to openid email profile. (PLAT-17104)

New features

• Connection Pooling - Optional server-side Connection Pooling enables more connections per cluster, more efficient memory usage, and faster first connection (and therefore first query) latencies. {{<tags/feature/ea idea="1368">}} <!-- IDEA-1368 -->
• ARM processor support for Kubernetes universes - Support has been added for running Kubernetes-based universes on ARM CPUs. {{<tags/feature/ea idea="1486">}} <!-- IDEA-1486 -->
• Fire clock sync alert when Network Time Protocol Daemon (ntpd) is not enabled or not running on a node of a YugabyteDB universe. {{<tags/feature/ga idea="910">}} <!-- IDEA-910 -->

Change log

Improvements

• Displays post-master failover messages earlier, even if some nodes are down. PLAT-15924
• Skip SSH key parsing for node-agent communication type. PLAT-16145
• Speeds up sensitive flag parsing at YBA startup by using parallel processing. PLAT-15965
• Enables downloading EIT Certificates via YBA CLI commands. PLAT-15528
• Adds listing of all scheduled backups in YBA CLI. PLAT-15348

Bug fixes

• Handles IPv6 loopback addresses in platform backup scripts. PLAT-15499
• Add a default one-day cooldown for retrying node-agent installation. PLAT-15765
• Eliminates unnecessary master restarts during disk resizing in older versions. PLAT-16002
• Allows skipping permission setting during dataless installs. PLAT-16064
• Supports parsing OpenSSH private keys to prevent failures. PLAT-16144
• Switches key value separators in YBA CLI from comma to double colon for better handling of multiple values. PLAT-13993
• Adds useLdapSsl flag for LDAP universe sync to support SSL connectivity. PLAT-15197
• Fixes inconsistent pagination on the Platform Configuration page. PLAT-15820
• Upgrades Java dependencies to enhance security and patch vulnerabilities. PLAT-15837
• Exposes roll N nodes configurations to users, enhancing control and visibility. PLAT-15925,PLAT-15926
• Ensures Yba Installer symlinking checks and handles pre-existing links to prevent errors. PLAT-15943
• Adds a step to set encryption keys during non-rolling upgrades on k8s. PLAT-16067
• Allows optional fields in EIT cert-manager configurations to be left blank without errors. PLAT-16084
• Skips prechecks if Node2Node certificates have expired during certificate rotation tasks. PLAT-16203
• Enables off-cluster PITR feature with the feature_flags.off_cluster_pitr_enabled flag. PLAT-16149
• Enables real-time editing and listing of runtime configurations via CLI commands. PLAT-13131,PLAT-13132
• Allow aborting tasks in YBA via CLI with Ctrl+C or the wait=false flag. PLAT-13876
• Collect metrics from nodes joining or leaving the cluster during edit tasks. PLAT-15312
• Adds list and get commands to YBDB release management APIs. PLAT-16058
• Adds a delete command to YBA CLI for managing releases. PLAT-16058
• Enables creation of release artifacts and extraction of metadata from URLs via new YBA CLI commands. PLAT-16059
• Add commands to upload and retrieve YBDB release files using YBA API. PLAT-16060
• Enhances the YBA CLI to modify architecture details in existing releases. PLAT-16099
• Adds user management commands to YBA CLI for listing, describing, creating, and deleting users. PLAT-16127
• Adds RBAC commands to YugabyteDB Anywhere CLI for role management. PLAT-16129
• Enables runtime configuration of Off-cluster PITR with a new flag. PLAT-16160
• Ensures YBA CLI correctly marks case-sensitive fields and documents them. PLAT-16164

v2024.2.0.0 - December 9, 2024 {#v2024.2.0.0}

Build: 2024.2.0.0-b145

Third-party licenses: YugabyteDB, YugabyteDB Anywhere

Download

Highlights

We're excited to announce the Early Access and General Availability of the following powerful new features in YugabyteDB Anywhere aimed at simplifying operations, enhancing functionality, and improving performance.

Batching of rolling operations {{<tags/feature/ea>}}

YugabyteDB Anywhere now supports applying changes to multiple nodes simultaneously (and in parallel) in each availability zone during rolling operations, such as software upgrades and flag changes. This can reduce the time required to perform rolling operations on large clusters by 2x, 3x, or more depending on the (configurable) batch size. For more information, refer to Batched rolling restart documentation.

Automated YB-Master failover {{<tags/feature/ea idea="22">}}

If a node with Master process fails unexpectedly (reducing health, but not causing service downtime), YugabyteDB Anywhere now auto-heals the universe by starting a Master process on a suitable surviving node (if one exists). For more information, refer to Automatic YB-Master failover.

LDAP/OIDC groups to custom roles mapping {{<tags/feature/ea idea="1501">}}

We've added support for mapping LDAP and OIDC groups to YBA custom roles, enabling you to manage user access and permissions directly from your Identity Provider (IDP) in a scalable and secure way. For more information, refer to Support for LDAP/OIDC groups and custom roles in YugabyteDB Anywhere.

Restoring PITR-enabled backups into a different universe {{<tags/feature/ea idea="990">}}

Previously, backups could only be restored to the moment in time when the backup was taken. Now, you can restore backups at any point in time. Like the Instant database cloning feature, this feature provides a safety net for rapid recovery from accidental SQL or CQL human errors that cause data loss or corruption. For more information, refer to Restore to point on time.

YugabyteDB Kubernetes Operator {{<tags/feature/ea idea="831">}}

The YugabyteDB Kubernetes operator is a powerful tool designed to automate deploying, scaling, and managing YugabyteDB clusters in Kubernetes environments. It streamlines database operations, reducing manual effort for developers and operators.

New automatic on-premises provisioning {{<tags/feature/ga>}}

We've automated and simplified the previously manual or otherwise cumbersome process for preparing nodes for use in on-premises providers. System admins now download and run a single, simplified provisioning script directly on the VMs. The script not only provisions the node but also creates the on-premises infrastructure provider and adds the node to the infrastructure provider's free pool. After the process is completed, your nodes are ready for deployment in universes. With this new provisioning method, dozens of steps are reduced to just a few, the provisioning process won't change from release to release, and security concerns about providing SSH and/or sudo access to VMs are eliminated.

For more information, refer to Automatically provision on-premises nodes.

Note: Support for legacy node provisioning will be dropped in v2025.2 (available late 2025). Before upgrading to v2025.2, be sure to update your node provisioning workflows to support automatic provisioning.

New features

• xCluster disaster recovery. A turnkey solution for business continuity and disaster recovery, allowing you to recover from an unplanned outage (failover) or to perform a planned switchover. It also includes APIs to set up xCluster replication for an entire database. {{<tags/feature/ga>}}

  • Semi-automatic schema change mode for xCluster DR. Provides operationally simpler setup and management of replication, and fewer steps for performing DDL changes. {{<tags/feature/ea idea="1186">}}

• Simplified database registration. Simplified process for registering database versions (and their binaries) with YugabyteDB Anywhere using a dramatically improved user interface.

• Force update of TLS certificates. If certificates expire, you can now "force update" the replacement of certificates with new ones, removing the need to call Technical Support.

• Clock sync alert. Fire a clock sync alert if the Network Time Protocol Daemon (ntpd) is not enabled or not running on a node of a YugabyteDB universe. {{<tags/feature/ea>}}

• Backup portability. After sending backups to a cloud object store (such as S3, GCS, or Azure blob storage), you can now copy those backup sets to other cloud storage buckets and restore from them.

• Kubernetes

  • Kubernetes resource specification. You can now configure CPU and memory needs for YB-TServer and YB-Master pods natively, instead of using the instance types API.
  • Kubernetes service endpoint documentation. Documented the workflow to create a unified service endpoint for all TServers in single namespace universes.
  • Kubernetes readiness probe. Added readiness probes for TServer and Master pods in YugabyteDB, supporting custom or default configurations. This enhances stability by ensuring YSQL/YCQL and YB-Master pods are ready before traffic is routed.
  • Kubernetes service endpoint. For single-region universes in Kubernetes, added support for creating a unified service endpoint. This is in addition to the already-supported one service endpoint per availability zone (AZ). {{<tags/feature/ea idea="1405">}}
  • ARM processor support for Kubernetes universes. Added support for running Kubernetes-based universes on ARM CPUs. {{<tags/feature/tp idea="1486">}}
  • Non-disruptive flag changes for K8s. Adding and modifying selected configuration flags for YB-Master and YB-TServer pods in a Kubernetes universe can now be done without restarting the Master or T-Server processes.

• YBA HA enhancements. Added validation checks to ensure split-brain correctness post failover. Specifically, after a failover to the standby YugabyteDB Anywhere instance, if the new primary YugabyteDB Anywhere detects that its state is out-of-sync with a universe it's operating on, it aborts the operation.

• Support bundle collection improvements. Support bundles now optionally include time series metrics. Also, collection is more resilient to point failures; if one data collection task fails, the collection operation ignores the failure and proceeds.

• Connection pooling. Optional server-side connection pooling enables more connections per cluster, more efficient memory usage, and faster first connection (and therefore first query) latencies. {{<tags/feature/tp idea="1368" >}}

• Improved node and process metrics. Metrics are now collected about each node's processes (PG, YBC, node agent, otel agent, and so on). Metrics cover up times, activity counts, cpu/memory consumed, and more.

• Non-root installation of YBA. You can install YugabyteDB Anywhere as a de-privileged user; a root-privileged user is no longer required. This reduces friction and security concerns during initial testing, setup, and proof of concepts. {{<tags/feature/ea idea="1521">}}

• Improved support for bi-directional xCluster. Bi-directional xCluster supports adding a non-empty table to the replication stream, and safeguards against the unsafe (and potentially data-overwriting) action of restarting replication. {{<tags/feature/ea>}}

• Azure support for multiple Resource Groups (one per region). Added support for Azure configurations with one Azure Resource Group per region (and also one network per Azure Resource Group), a configuration providing better network management and resilience. {{<tags/feature/ea idea="1606">}}

Change log

Improvements

• Collects core dumps in the background, not just at shutdown. PLAT-12633
• yba-ctl createBackup now skips restart by default, enhancing the user experience. PLAT-12912
• Reduces the clock skew alert threshold to 250ms for earlier issue detection. PLAT-13249
• Restores access to the api_token endpoint for HA followers, aiding automation scripts. PLAT-13267
• Adds missing replicated settings and ensures systemd units reload on restart. PLAT-13331,PLAT-13330
• Sets default permissions to 600 for the backup manifest file. PLAT-13578
• Enhances SMTP port validation in the alert channel dialog. PLAT-13702
• Enables suppressing health check notifications during maintenance windows. PLAT-13856
• Adds checks for the expiry of runtime certificates in use, not just on-disk. PLAT-13865
• Allows certificate expiration alerts to monitor active certificates instead of just on-disk ones. PLAT-13865
• Replaces hostname in Ansible's control path with a hash to prevent task failures with long hostnames. PLAT-13938
• Ensures upgrade checks account for new state file, avoiding incorrect disk space errors. PLAT-14188
• Enables configuring the federation scrape interval for systems with many tables and nodes. PLAT-15474
• Adds a configurable delay after auto flag promotions, defaulting to 1 minute. PLAT-13139
• Fixes admin user creation issue during concurrent DDL operations. PLAT-13221
• Changes password reset URL and adds an old password verification step. PLAT-13510
• Adds ldapSearchFilter option to restrict LDAP login access in YBA. PLAT-13209
• Increases AZ name character limit from 25 to 100, supporting new AWS regions. PLAT-13212
• Raises health check alerts 30 days before certificate expiry. PLAT-13348
• Enables alerts for nearing or reaching tablet capacity limits in TServers starting version 2024.1. PLAT-13520
• Adds uptime reporting to yba-ctl status command. PLAT-13532
• Enhances YBA rollback by regenerating configuration files and preventing multiple concurrent upgrades. PLAT-14776
• Adds optional labels and tooltips for Azure network fields. PLAT-12546
• Increases SSH key validation accuracy for on-prem providers and synchronizes error formats. PLAT-13064
• Adds ikeep to XFS mount options to mitigate block cache key issues. PLAT-13192
• Disables "assign public IP" option by default in Azure environments. PLAT-13948
• Replaces CentOS 7 repo URLs to fix universe creation issues. PLAT-14546
• Ensures pexlock is properly removed after use in yba-installer. PLAT-14161

Bug fixes

• Handles health checks for on-prem nodes even with empty node identifier fields. PLAT-11188
• Enables automatic re-fetching of access tokens before expiry. PLAT-11246
• Ensures YBC upgrades only occur on the initial backup and restore attempts, and handles cases where source universe UUID is null. PLAT-12663,PLAT-12644
• Ensures accurate date display in the UI by specifying timestamp format. PLAT-12721
• Fixes platform exit code on SIGTERM to ensure graceful shutdown and correct status reporting. PLAT-12767
• Adds lock timeouts in Ansible tasks to prevent failures due to yum lockfile issues. PLAT-13029
• Removes lock_timeout from apt modules in YugabyteDB, preventing errors in environments using Ansible versions before 2.12. PLAT-13029
• Skips wait for clock sync check if chronyc is not installed. PLAT-13137
• Ensures more reliable SSL certificate verification by using the cryptography.X509 library. PLAT-13169
• Enables use of underscores in GCS bucket names for backups. PLAT-13266
• Adds missing cloud regions to metadata for Kubernetes providers. PLAT-13374
• Ensures accurate scheduling of next incremental backup times. PLAT-13375
• Ensures node metrics file has correct permissions for accessibility. PLAT-13378
• Automatically unlocks universes and aborts operations if YBA restarts during restore or xCluster setup. PLAT-13409,PLAT-12830
• Stops health-check alerts during active maintenance windows using the new SuppressHealthCheckNotificationsConfig parameter. PLAT-13518
• Fixes LDAP validation to correctly identify LDAP strings using regex. PLAT-13575
• Enhances backup deletion logic and handling in YugabyteDB. PLAT-13750
• Enables rotation of node-to-node certs independently in the UI. PLAT-13806
• Unsnoozes all universe level health check notifications and promotes using maintenance windows. PLAT-13928
• Ensures successful upgrades from 2.14 by fixing the checksum mismatch in V342 migration. PLAT-13977
• Adds timezone support to backup timestamps in HA "Make Active" dialog. PLAT-14031
• Fixes API to correctly return inherited configuration values. PLAT-14090
• Hides passwords in application logs to enhance security. PLAT-14286
• Ensures node agent installer does not overwrite PATH values in automatic provisioning. PLAT-14332
• Adjusts release GC in yb-software to ensure the last old release is retained. PLAT-14368
• Corrects certificate alerts by properly calculating affected nodes. PLAT-14385
• Ensures full backup is successful before updating incremental backup times and prevents repeated full backup attempts. PLAT-14497
• Enhances resilience during Kubernetes operations by handling "Pod not found" errors gracefully. PLAT-14498
• Adds a DDL atomicity check and alert in health check scripts to detect potential DDL corruption. PLAT-14696
• Displays a warning to verify the image on a VM before upgrading. PLAT-14749
• Updates TLS cipher suite list for Prometheus to enhance security. PLAT-15448
• Changes GCP pricing URL to a reliable internal one and ignores errors during queries. PLAT-15655
• Enhances security by hashing API tokens in the database and updating related API behaviors. PLAT-8028
• Disables weak ciphers in YBA to enhance security against attacks. PLAT-9590
• Ensures Prometheus HTTPS uses updated TLS cipher suites post-YBA upgrade. PLAT-9590
• Prevents null pointer errors when adding Name instance tags to universes. PLAT-9827
• Stops running non-existent clock-scripts during yb-server start in upgrades. PLAT-13444
• Displays accurate master placement configuration in the edit universe modal. PLAT-13445
• Stops dual NIC configuration during systemd upgrades, avoiding node downtime. PLAT-13495
• Supports sha1 or md5 checksums for release artifacts. PLAT-13716
• Restores dual NIC script functionality on GCP with CentOS, ensuring connectivity to public endpoints. PLAT-14209
• Corrects a typo in the dual-NIC configuration script for stable external connections. PLAT-14370
• Retries asRoot migration safely to ensure successful upgrades. PLAT-15733
• Fixes schema version initialization by skipping missing values and ensuring migrations run correctly. PLAT-15733
• Deprecates the outdated change_password API, enforcing the use of a more secure method that requires current password verification. PLAT-10472
• Upgrades AzCopy to version 10.25.1 to address security vulnerabilities. PLAT-11235
• Enhances confirmation modals to show instance tag differences in edit operations. PLAT-12085
• Replaces deprecated API to prevent 3-hour timeouts when querying Azure instance types. PLAT-12558
• Allows retrying the SystemdUpgrade task for smoother operations. PLAT-13089
• Corrects the delay used for the server wait task in Kubernetes configurations. PLAT-13182
• Enhances flag upgrade process for dual NIC setups in clusters. PLAT-13223
• Fixes modal loading issues in the create universe form when changing providers. PLAT-13294
• Adds correct master address assignments for dual NIC setups in YBM. PLAT-13463
• Ensures pending tasks are marked failed on YBA restart. PLAT-13516
• Fix WSClient memory leak, tune garbage collection, and disable process metrics collector. PLAT-13619
• Fixes file descriptor leaks to enhance system stability. PLAT-13665
• Enables running node actions using Java when node-agent is available, reducing runtime and fixing file descriptor leaks. PLAT-13673
• Enhances UI layout stability by fixing skewed and hidden tabs. PLAT-13678
• Removes unnecessary dependency in systemd for metric collection. PLAT-13706
• Restores initialization of lastBackupTime during HA sync to prevent null updates. PLAT-13708
• Fixes metadata issues in YBA default bundles for accurate configuration on version updates. PLAT-13796
• Ensures disk update operations in YBA use the correct machine image for better reliability. PLAT-13808
• Updates the PostgreSQL library to address critical vulnerabilities. PLAT-13824
• Enhances yb_backup.py to ignore non-critical logs for smoother operations. PLAT-14012
• Fixes ShellResponse to return a generic error code on connection failures. PLAT-14131
• Fixes software upgrade process handling for master nodes and improves retry logic. PLAT-14153
• Ensures Edit Kubernetes Universe tasks validate previous parameters before re-run. PLAT-14203
• Fixes node agent upgrade issue by not requiring user to pass remote process user. PLAT-14289
• Reduces cyclic dependency issues in system timers and services. PLAT-14293
• Resolves circular dependencies and restricts node_exporter use for non-YBM scenarios. PLAT-14297
• Fixes a compile error by importing the missing Stream symbol. PLAT-14428
• Resolves high CPU issues by updating Pekko to fix TLSActor loops. PLAT-14524
• Fixes the Azure provider edit and create flows by adjusting mandatory fields. PLAT-14530
• Fixes a crash issue by adding missing XmlElement dependency. PLAT-14536
• Ensures YB Controller logs and symlinks correctly name and generate, using the log_filename flag. PLAT-14594
• Enhances YBC support bundle's log file matching to include timestamp-pid prefixes. PLAT-14609
• Ensures uploaded files persist across container restarts by changing the upload directory location. PLAT-14655
• Upgrades Platform's PostgreSQL version from 14.9 to 14.12. PLAT-14670
• Refines node-agent error messages to specify missing local cert files during installation checks. PLAT-14700
• Fixes a regression causing Create universe to fail on node locale fetching. PLAT-14814
• Displays continents instead of country borders on YBA UI maps to maintain neutrality. PLAT-15639
• Enhances ::clock to better select a valid Python executable if multiple versions are present. PLAT-15771
• Ensures yba-ctl install works on CIS hardened images by adjusting file permissions. PLAT-15780
• Ensures master addresses are correctly resolved during the universe_join_existing_cluster subtask. PLAT-15830
• Ensures node operations succeed when DB audit logging is enabled without wrongly resetting flags. PLAT-15833
• Eliminates unnecessary master restarts during disk resizing in older versions. PLAT-16002
• Allows skipping permission setting during dataless installs. PLAT-16064
• Ensures handleCallback is thread-safe to prevent "boxed error" issues in yb-client. PLAT-10056
• Adds a metric to track YugabyteDB Anywhere startup time. PLAT-10807
• Upgrades Go etcd and cyphar libraries in yba-installer to enhance security. PLAT-12335
• Upgrades to more secure versions of mina-core and paramiko packages. PLAT-12336
• Returns a 409 status code for conflicting edit tasks. PLAT-12557
• Ensures third-party support files in YBA tarballs update without triggering AUTO-RELOAD. PLAT-12564
• Disables creation of the master folder on read replica nodes to avoid version mismatches. PLAT-12806
• Removes the duplicate exported_instance label from Prometheus targets. PLAT-12808
• Adds alerts for when YBA Node Agent is down for over a minute. PLAT-12835
• Enables detecting failed master nodes via a new background task, configurable with yb.automated_master_failover.enabled. PLAT-12856
• Enables automatic master failover based on a scheduled task. PLAT-12857
• Uses AZ UUID instead of name for master node operations, ensuring unique AZ identification. PLAT-12886
• Enables specifying useIMDSv2=true in image bundle details during provider creation. PLAT-12967
• Ensures NTP clock sync health check passes on AL2 aarch64 CIS hardened images. PLAT-13000
• Retries AWS VM creation to ensure host information retrieval. PLAT-13049
• Removes the backup option from the /tables page to prevent errors. PLAT-13056
• Adds preflight check validation for AWS image bundles in provider creation. PLAT-13111
• Catches and handles bad_alloc exceptions in RunOp and clears IP-tablet mapping before retries. PLAT-13157
• Allows editing the number of read replicas in Kubernetes from both backend and UI. PLAT-13163
• Enhances Kubernetes certs reload to correctly use updated rootCA from YBA metadata. PLAT-13172
• Ensures release artifacts use the correct "sha256:" prefixed checksum format. PLAT-13193
• Adds database version check to ensure node safety during xCluster upgrades. PLAT-13204
• Alerts now filter by template instead of name for accurate replication lag monitoring. PLAT-13211
• Allows TaskExecutor to handle error codes and task retry information more effectively. PLAT-13242
• Reduces VM creation failures by fixing AnsibleCreateServer's retry and cleanup logic. PLAT-13270
• Adds preflight checks and adjusts directory permissions during YBA install on Replicated machines. PLAT-13271
• Ensures Python can access the seobject library on Alma9 for custom SSH port registration. PLAT-13276
• Restores logging for [app] tagged Python subtask execution logs. PLAT-13313
• Fixes SSH port configuration during bundle setups in YBM. PLAT-13325
• Enhances the sorting functionality and correctly renames the "copy file path" to "copy file name." PLAT-13362,PLAT-13350
• Kills the postmaster process during the stopNode operation and changes localProvider key from taskKey to inputKey for visibility in sbt tasks.PLAT-13367
• Switches to the latest stable YBC version for specific universe tasks. PLAT-13373
• Adds a cluster_membership.timeout flag to retry tablet checks for 1 minute before node cleanup. PLAT-13381
• Moves the IMDSv2 toggle to image bundle details on the AWS provider creation page. PLAT-13429,PLAT-13333
• Adds support for managing preview flags in YugabyteDB Admin. PLAT-13438
• Adds a tooltip explaining the need for OIDC provider metadata in YBA. PLAT-13446
• Maintain unknown fields between configurations to ease editing operations. PLAT-13462
• Allows admins to assign specific role privileges when creating users. PLAT-13486
• Ensures YBA-managed bundles use default AMI if regional AMI is missing; custom bundles fail early. PLAT-13500
• Handles null values in placementInfo to prevent NullPointerException during universe creation. PLAT-13514
• Enables UI workflows to utilize the new ybdb_releases API for database version management. PLAT-13435,PLAT-13519
• Enables displaying metrics charts in user's preferred timezone. PLAT-13538
• Fixes UI crash by adding missing import statement for DeleteNode operation. PLAT-13546
• Fixes a JavaScript error when clicking the In-Use Universes tab. PLAT-13549
• Disables toggling AWS time sync when creating or editing universes if already enabled. PLAT-13536,PLAT-13551
• Integrates ASH with TS framework UI and enhances usability with special outlier style buttons. PLAT-13557
• Disables the Kamon status page module to enhance security. PLAT-13563
• Enhances the node agent client's cleanup process for more immediate eviction of expired entries. PLAT-13581
• Ensures consistent reading of static configuration keys across various components. PLAT-13582
• Expands AWS region coverage in YBA metadata. PLAT-13623
• Enhances how volume size and node placement changes are handled in the UI. PLAT-13630
• Uses the sshUser from the provider when using machineImage in universe creation. PLAT-13632
• Corrects misleading "Upgrade Available" link and fixes non-clickable CDC link in the UI. PLAT-13677,PLAT-13675
• Ensures manual backups do not interfere with HA promotion by cleaning up leftover files. PLAT-13683
• Fixes build error by reverting to an older redocly/cli version. PLAT-13690
• Retry tasks now skip node prechecks, preventing false failures. PLAT-13703
• Fetches Azure VM plan info from image tags before VM creation to prevent cluster failures. PLAT-13712
• Adds a total CPU usage graph to easily identify peak usage times. PLAT-13714
• Enables integration of the v2 API into the UI, with initial setup of JavaScript API stubs. PLAT-13742
• Removes internal flags for providers now enabled by default. PLAT-13743
• Fixes issue where adding an AArch64 version without existing ones caused errors. PLAT-13744
• Fixes universe status update by handling service endpoint exceptions; initializes resourceUUID correctly in tasks. PLAT-13753
• Changes the default metrics directory from /tmp to yb_home. PLAT-13755
• Hides auto flags from the UI when listing configuration flags. PLAT-13794
• Upgrades commons-compress to 1.26.0 to address high-severity CVEs. PLAT-13829
• Upgrades Netty libraries to address security vulnerabilities. PLAT-13834
• Upgrades Python dependencies to enhance security and address vulnerabilities. PLAT-13836,PLAT-13835
• Upgrades Golang crypto to 0.17+ to enhance security. PLAT-13844
• Fixes ARM architecture filtering for the List DB Versions API call. PLAT-13852
• Replaces "Snooze Alert" with "Create Maintenance Window" for better alert management. PLAT-13857
• Ensures that data restores correctly by using the right parameter for new backups. PLAT-13905
• Reduces issues during systemd upgrades by not fetching device_names when the skip_preprovision flag is set. PLAT-13971
• Respects logCmdOutput parameter when using node agent for shell commands execution. PLAT-14048
• Ensures yb.runtime_conf_ui.tag_filter displays all specified flags correctly in the UI. PLAT-14098
• Changes oidc_feature_enhancements flag status from BETA to PUBLIC. PLAT-14140
• Adds non-null checks to prevent NPE with old storage configuration proxy settings. PLAT-14143
• Enables M-series instance types by default on AWS. PLAT-14196
• Ensures keyspace names are not empty or blank during the restore process. PLAT-14221
• Adds the ConnectOnly role to LDAP group table constraints. PLAT-14230
• Restores backward compatibility for API by supporting sshUser/Port overrides. PLAT-14244
• Skips node_exporter systemd setup on CentOS 7 during deployment. PLAT-14275
• Enables ignoring specific subtask failures and setting markers for further processing in Task Executor. PLAT-14316
• Fixes issue where remote commands hang with large output. PLAT-14342
• Fixes Ubuntu 20 provisioning failures on GCP by improving locale installation. PLAT-14420
• Fixes incorrect lag calculation on xCluster configuration cards by using the correct query parameter. PLAT-14425
• Ensures reprovision tasks properly enrich parameters with azUUID before running prechecks. PLAT-14440
• Enables customization of the timeout duration for YBA installer readiness checks. PLAT-14443
• Speeds up YBA startup by moving AWS queries to an async task. PLAT-14444
• Fixes issue with dropping tables in non-database scoped xCluster replication sessions. PLAT-14467
• Enhances SetYamlValue to work with empty files, allowing Prometheus auth without HTTPS. PLAT-14478
• Allows skipping specific migrations in YBA installer, ensuring future upgrades apply them. PLAT-14511
• Fixes display and data clearing issues when previewing ysql_hba_conf or ysql_ident flags. PLAT-14515
• Ensures all local releases are processed, even with file issues. PLAT-14532
• Allows editing flag metadata in YugabyteDB UI for versions 2.16 and newer. PLAT-14533
• Fixes volume size issue when using ULTRA storage in Azure. PLAT-14654
• Upgrades Prometheus to version 2.53.1 in the chart. PLAT-14671
• Ensures nodes no longer get stuck in "VM image upgrade" after a Linux version upgrade. PLAT-14731
• Fixes the loader positions for universe status on the dashboard page. PLAT-14737
• Replaces deprecated methods in the node agent for enhanced stability. PLAT-14746
• Ensures smooth task list operations by fixing a missing import error. PLAT-14757
• No tooltip displays when master or TServer nodes are unreachable. PLAT-14792
• Enables superadmin users to create DR and opens DR documentation in a new tab. PLAT-14861,PLAT-14862
• Adds useLdapSsl flag to LDAP universe sync API for SSL connectivity support. PLAT-15197
• Fixes inaccurate CPU per process metrics displaying overly large percentages. PLAT-15572,PLAT-15558
• Ensures polkit package is installed on AlmaLinux 9 nodes to enable linger. PLAT-15698
• Ensures UIs for storage configuration and disaster recovery creation load properly after DR deletions. PLAT-15720
• Standardizes flag groups across all 2024.1 releases for consistency. PLAT-15798
• Adds flag groups file for the 2024.2 release. PLAT-15799
• Disables custom YSQL port override on the universe page for Kubernetes. PLAT-15815
• Exposes Roll N Nodes configurations to users as visible but disabled. PLAT-15927,PLAT-15925
• Blocks creation of multiple TLS certificates with the same name to avoid confusion. PLAT-7406
• Adds retry logic for node creation failures in Azure environments. PLAT-11654
• Adds a clickable link to the universe name, enabling quick navigation back to the overview page. PLAT-12592
• Ensures validation checks for node availability in user-selected zones during configuration. PLAT-12959
• Adds data test IDs for automation and architecture for existing releases. PLAT-13227
• Ensures index tables are included in bootstrap parameters during xCluster configuration updates. PLAT-13308
• Enables editing of providers created in version 2.14 by merging legacy fields into current provider requests. PLAT-13394
• Allows changing the API path for TS UI using an environment variable. PLAT-13539
• Ensures all artifacts, including local helm charts, are generated from ReleaseMetadata. PLAT-13558,PLAT-13561
• Skips checks for DB versions earlier than 2.8 to prevent upgrade failures. PLAT-13657
• Ensures YBA Managed bundles generate correctly when VM_OS_Patching is first enabled. PLAT-13681
• Fixes string equality check to ensure YBA Managed Bundles generate correctly on first enablement. PLAT-13681
• Updates YBA to utilize the latest TS Framework version. PLAT-13687
• Adds event operation filtering in OUTLIER mode and updates TS Framework in YBA. PLAT-13687
• Sets the default image based on "useAsDefault" during universe creation. PLAT-13722
• Displays the correct SSH port in the UI connection modal. PLAT-13754
• Enables correct JSON formatting and deserialization in import/export universe workflows. PLAT-13761
• Removes SystemdUpgrade from the IN_TRANSIT list, fixing -gcp-rf3 failures. PLAT-13770
• Removes the runtime flag for CA truststore configuration, now enabled by default. PLAT-13798
• Ensures Linux version catalog UI consistency and properly disables when needed. PLAT-13776,PLAT-13807
• Enables creation of database-scoped disaster recovery configurations. PLAT-1386
• Enhances the UI for release management features. PLAT-13918
• Ensures editing Kubernetes universe doesn't reset TServer volume size. PLAT-13920
• Ensures UI buttons correctly reflect disabled state during node decommission. PLAT-14001
• Adds task_id to Prometheus metrics and creates an API for detailed task analysis. PLAT-14017
• Adds follower_lag_ms metric to metrics dashboard for better lag visibility. PLAT-14254
• Adds last anomaly detection time and consistent color coding for outlier graphs. PLAT-14305
• Consolidates flags to INTERNAL and PUBLIC, removing unused YBM tag. PLAT-14323,PLAT-14156
• Moves node agent flags from BETA to INTERNAL, restricting their exposure. PLAT-14324
• Adds validation to block non-restart upgrade options during rollbacks. PLAT-14390
• Enhances security by moving YSQL/YCQL configuration RBAC checks to universe actions level. PLAT-14668
• Display a toast message when user profile information is updated. PLAT-14740
• Adds configuration to display or hide Azure Premium V2 Storage type during setup. PLAT-14750
• Adds a runtime configuration ybDownloadMetricsPDF to toggle the PDF export button in the Metrics Page. PLAT-14781
• Enhances version compatibility checks between YBA and YugabyteDB using a single flag. PLAT-14800
• Backups now retry every 2 minutes until successful, facilitating initial setup reliability. PLAT-15802
• Ensures consistent pricing by filtering out alternate Azure price entries during instance selection. PLAT-15863,PLAT-15554
• Enables custom image compatibility by removing OS name check in AMIs. PLAT-3838
• Stops logging CA certificate contents in plaintext on delete requests. PLAT-11650
• Supports comma-separated hostnames in YBA-installer configurations. PLAT-13096
• Removes duplicate cloud provider entries in the universe regions map. PLAT-13138
• Updates the URL endpoint for the TS service. PLAT-13154
• Updates the URL endpoint for the TF service to support HTTPS requests. PLAT-13154
• Corrects the autoflag check to use TServer flags during restoration. PLAT-13161
• Deprecates useIMDSv2 at the provider level. PLAT-13482
• Ensures inherited runtime configuration values are read correctly for geo-partitioning settings. PLAT-13606
• Fixes duplicate metric headings and enables '|' in LDAP flag configurations. PLAT-13395,PLAT-13697
• Adds uptime display for master nodes in dedicated mode. PLAT-13679,PLAT-13746,PLAT-12372
• Ensures safe extraction of DB files in multi-thread environments without speed loss. PLAT-14160
• Fixes a bug in yb_backup.py to correctly handle stderr keyword argument. PLAT-14208
• Removes unused fromString code from storageType for cleaner operation. PLAT-14369
• Corrects spelling mistakes in the UI notification for dropping a table. PLAT-14510
• getSessionInfo now generates and returns a new API token, enhancing security and usability. PLAT-14672
• Enables unique Helm release names by prefixing with namespace, preventing failures in shared Kubernetes clusters. PLAT-14709
• Stops returning apiToken in getSessionInfo API responses. PLAT-14710
• Stops /session_info API from generating new apiToken on each call. PLAT-14710
• Enables deploying DevSpace clusters with an internal load balancer by default. PLAT-14798
• Fixes the restartSec setting in yba-installer for correct YAML path usage. PLAT-14848
• Collect metrics from nodes joining or leaving the cluster during edit tasks. PLAT-15312
• Ensures the build process always uses the latest PostgreSQL version. PLAT-15565
• Fixes legend name and corrects a typo in the Open Files metric for consistency. PLAT-15592
• Displays per-process metrics by default in the UI. PLAT-15865,PLAT-15673
• Fixes unintended pagination reset on "Platform Configuration" page. PLAT-15820
• Corrects table name in YSQL health checks to fix errors. PLAT-15937
• Enables parsing of OpenSSH private keys in load_pem_private_key. PLAT-16144

Advisories

• xCluster Advisory: If you have the backup_restore permission in your custom, Admin, or Super Admin role, you are automatically subscribed to the new xCluster role and can continue using APIs without any issue. However, if you have backup_admin system_role, you need to create a new xCluster role and assign it to yourself.
• DR Advisory: If you have other update/create/delete permission in your custom, Admin, or Super Admin role, you are automatically subscribed to the new xCluster role and can continue using APIs without any issue. However, if you were using other read-only permissions, you will need to add Universe.READ to continue reading DR configurations.