25.10 Release notes

Instabase 25.10 is a major release that introduces new features, enhancements, and bug fixes.

Subsequent patch releases typically contain bug fixes along with testing, optimizations, security fixes, and other internal changes.

25.10.0

RC November 15, 2025

Security updates

• Upgraded libunbound8 to version 1.19.2-1ubuntu3.6 to address CVE-2025-11411.

• Upgraded torch to version 2.8.0 to address CVE-2025-3730.

• Upgraded black to version 24.3.0 to address CVE-2024-21503.

• Upgraded busybox to version 1.37.0-r50 to address CVE-2022-48174 and CVE-2025-46394.

• Upgraded coreutils-single to version 8.32-30.amzn2023.0.4 to address CVE-2025-5278 and other security vulnerabilities.

• Upgraded curl to version 8.14.1-r2 to address CVE-2025-10148 and CVE-2025-9086.

• Upgraded expat to version 2.6.3-1.amzn2023.0.3 to address CVE-2025-59375.

• Upgraded github.com/go-viper/mapstructure/v2 to version 2.4.0 to address CVE-2025-52893, GHSA-2464-8j7c-4cjm, GHSA-fv92-fjc5-jj9h, and other security vulnerabilities.

• Upgraded github.com/miekg/dns to version 1.1.31 to address CVE-2017-3142.

• Upgraded glibc to version 2.41-60 to address CVE-2025-5702 and CVE-2025-5745.

• Upgraded gnupg2-minimal to version 2.3.7-1.amzn2023.0.5 to address CVE-2025-30258.

• Upgraded golang.org/x/oauth2 to version 0.27.0 to address CVE-2025-22868.

• Upgraded libarchive to version 3.7.4-2.amzn2023.0.4 to address CVE-2025-5915 and CVE-2025-5917.

• Upgraded libcrypto3 and libssl3 to version 3.5.4-r0 to address CVE-2025-4575, CVE-2025-9230, CVE-2025-9231, and CVE-2025-9232.

• Upgraded libxml2 to version 2.13.6 to address CVE-2025-9714, CVE-2025-13038, CVE-2025-49794, CVE-2025-49795, and CVE-2025-49796.

• Upgraded openssl to version 3.0.13-0ubuntu3.6 to address CVE-2021-3711, CVE-2021-3712, CVE-2022-1292, CVE-2022-2068, CVE-2022-2097, CVE-2022-4304, CVE-2022-4450, CVE-2023-0215, CVE-2023-0286, CVE-2023-0464, CVE-2023-0465, CVE-2023-0466, CVE-2023-2650, CVE-2023-4807, CVE-2023-5678, CVE-2024-0727, CVE-2025-9230, CVE-2025-9231, and CVE-2025-9232.

• Upgraded opentelemetry-instrumentation to version 0.41b0 to address CVE-2023-43810.

• Upgraded pypdf to version 6.1.3 to address CVE-2023-36807, CVE-2023-36810, CVE-2023-46250, CVE-2025-55197, CVE-2025-62707, and CVE-2025-62708.

• Upgraded python3 and python3-libs to version 3.9.23-1.amzn2023.0.2 to address CVE-2025-6069.

• Upgraded python3-pip-wheel to version 21.3.1-2.amzn2023.0.14 to address CVE-2025-8869.

• Upgraded redis to version 6.2.20 to address CVE-2025-49844.

• Upgraded redis-tools to version 5:7.0.15-1ubuntu0.24.04.2 to address CVE-2025-49844.

• Upgraded requests Python package to version 2.32.4 to address CVE-2024-47081.

• Upgraded stdlib to version 1.25.1 to address CVE-2025-0913, CVE-2025-4673, CVE-2025-22874, CVE-2025-47906, CVE-2025-47907, and CVE-2025-47910.

• Upgraded zstd to version 1.5.6 to address CVE-2022-4899.