Resolved issues
Resolved issues release notes for 25.3.x.
25.4.0-1
Updated 12/4/2025
| Issue Key | Application Module | Description |
|---|---|---|
| 4939194 | UDX | Python UDx Installation Fix: Resolved an issue where users were unable to install Python User-Defined Extensions (UDx). This problem occurred when creating UDx libraries with large dependencies (such as torch) or when dependency paths contained special characters like '+', leading to a 'timed out in receiving a UDx message' error. This fix ensures successful Python UDx library creation under these conditions. |
| 4945235 | Backup/DR | Object-Level Restore: Resolved an issue where object-level restores of tables using the RESTORE FROM ARCHIVE command could fail, often reporting a "can't find the folder in the node path" error. |
| 5008268 | Optimizer | Resolved Critical Database Crashes with LIKE ANY Clause: This release addresses a critical issue (Defect ID: 5008268) that caused Vertica databases to crash unexpectedly. The crash occurred when specific SQL queries utilized the LIKE ANY clause with an explicit cast to ARRAY[Varchar] (e.g., LIKE ANY ('%pattern%'::ARRAY[Varchar])). This fix enhances database stability and prevents service interruptions caused by such queries. |
| 5013296 | Security |
New Database Parameter: Introduced a new database parameter, OAuth2JITConflictPolicy, to control OAuth2 JIT login for existing users. MERGE, the default, allows OAuth2 login for existing vertica users and grants them the appropriate auth method. This is identical to the existing behavior. If set to IGNORE then existing users require an OAuth2 client authentication granted to log in with an OAuth2 token, no automatic granting is performed. Users with psuedosuperuser are always treated as if OAuth2JITConflictPolicy is set to IGNORE, ie. they can only use authentication methods that have been explicitly granted. |
| 5019107 | System: Performance |
Fix for 100% CPU Utilization with STRPOS Function: We’ve optimized the behavior of the STRPOS function to significantly improve performance in specific scenarios. What changed: Previously, all inputs to STRPOS were converted to UTF-16 to leverage the ICU (International Components for Unicode) library for string comparison. While ICU provides robust support for complex locale-aware comparisons, this conversion introduced overhead—especially for simple use cases. Now, for simple locales with 1-to-1 character mappings (such as en_US, de_DE, and other locales where each character maps directly between UTF-8 and UTF-16 without requiring normalization or multi-codepoint handling), STRPOS uses a UTF-8 based comparison. This avoids the need for conversion to UTF-16 and bypasses the ICU library entirely, resulting in much faster execution. |
| 5041757 | Admin Tools | fjsonparser incompatibility issue: This fix ensures the upgrade process is successful and correctly handles the FlexTableLib library, resolving the fjsonparser incompatibility issue. |
| 5043725 | License | An issue was found, where the audit functionality was producing invalid results, leading to inaccurate size reporting. This issue has been fixed to ensure the audit size accurately reflects the actual data size. |
| 5057904 | EON | Crashes Due to OOM Errors: This release addresses an issue where cluster nodes experienced frequent crashes due to out-of-memory (OOM) errors. The problem was observed across primary and secondary subclusters, with RSS memory usage growing constantly, even on idle secondary subclusters. The fix resolves a memory leak that was affecting all hosts, regardless of hardware specifications or operating system. |
| 5085485 | Data Networking | Database Hanging After Upgrade: Addressed a high-severity issue where Vertica databases could experience hangs shortly after upgrading to version 25.3.0-2. This issue was particularly observed when TLS 1.3 was enabled (MinTLSVersion = 3). This resolution improves database stability and prevents unexpected unresponsiveness post-upgrade. |
| 5086370 | Data Networking | Improved System Stability: TS Callback Deadlock ResolutionResolved a potential deadlock (ID: 5086370) that could occur when TS callback destructors executed while holding a lock. This fix prevents conflicts, especially with the async Messenger notifier, enhancing overall system reliability. |
25.4.0-0
Updated 10/20/2025
| Issue Key | Application Module | Description |
|---|---|---|
| 4536473 | WLA - Workload Analyzer | Fixed an issue where "no histogram" messages were incorrectly displayed in dc_optimizer_events for Live Aggregate Projection (LAP) projections with statistics. This issue affected workload analyzer accuracy. The fix ensures that histogram information is correctly reported for LAP projections, providing accurate data for workload analysis. |
| 4344413 | Security | Fixed an issue where creating access policies added extra parentheses, causing COPY_TABLE to fail with an access policy mismatch error. |
| 4350082 | Monitoring, UI Management Console | Fixed an issue where SNMP trap events and system log event settings were not being applied correctly in Management Console 24.x. Users can now successfully configure and save these settings. |
| 4392317 | Security | Fixed an issue where Vertica's OAuth2 authentication method incorrectly handled EC keys. The system now accurately supports RSA keys for JWT validation, resolving the 'failed to load public key' error encountered when using EC keys. This enhancement ensures seamless integration with Keycloak IDP and other identity providers using RSA-signed JWT tokens. |
| 4716237 | Node Management Agent, Vcluster | Critical security vulnerabilities have been identified and fixed in the Go binaries (vcluster, vcluster_server, and node_management_agent) that shipped with the Vertica database (both RPM and containers). |
| 4771462 | UI - Management Console | The Vertica Management Console (MC) version 25.1.0-0 does not allow users to control the number of EBS volumes provisioned during the revive Eon Mode Database process. This fix ensures that users can specify the desired number of EBS volumes, addressing the issue where the total volume size was not being divided as expected. This enhancement provides users with greater flexibility and control over their EBS volume configuration. |
| 4824434, 4862238 | UI - Management Console | Fixed an issue where N2 series machines were not visible in the MC provisioning tool for the us-east4-c region on GCP, despite their availability in the GCP console. This fix enables users to provision N2 series machines through MC in the specified region. Note that while N2 support has been added, N4 machine types are not supported by MC for Vertica. |
| 4846116 | Third Party Tools | Fixed a critical security vulnerability (CVE-2024-45337) in the Vertica Docker image (opentext/vertica-k8s:24.4.0-1). |
| 4854920 | UI - Management Console | Fixed an issue in the Management Console (MC) where SMTP configuration without authentication was not supported. Restored the original email functionality by allowing SMTP configurations that do not require a username and password, as per product documentation. |
| 4858078 | Security | Fixed a bug where dropping a role assigned via OAuth JIT user provisioning and then attempting to authenticate the user after the role is dropped would cause an internal error. This error no longer occurs. |
| 4860823 | Execution Engine | An issue occurred where LISTAGG queries did not consistently return NULL when no rows match the search criteria. This bug manifested when using the WITHIN GROUP clause alongside an AND NOT EXISTS subquery within the LISTAGG statement. This issue has been resolved. |
| 4861828 | Optimizer | Fixed an issue where INSERT…SELECT statements would hang when GROUPBY PUSHDOWN was not occurring due to the presence of non-equi joins. |
| 4866130 | Hadoop, Resource Manager | After upgrading from version 12.0.4 to 25.1, the Vertica Database failed to start due to a timeout issue, resulting in a core dump during the 'Read DataCollector' stage. A fix has been implemented to resolve this startup failure. |
| 4882688 | QA - MC | A fix has been implemented to address an issue where MC extended monitoring was not streaming data in Vertica Management Console. The fix ensures that data is correctly displayed in the MC. |
| 4898183 | Backup/DR | Fixed an issue where server-based replication between two Eon Mode clusters failed due to mismatched shard boundaries after migrating from an Enterprise Edition (EE) cluster to an Eon mode cluster. Replication now functions correctly between migrated and freshly installed clusters. |
| 4920734 | Data load / COPY | Fixed a use-after-free issue that caused Vertica node crashes when loading large JSON data. The issue occurred during the destruction of an ArrayWriter when an error was raised due to insufficient UDLMaxDataBufferSize. The fix ensures that memory is properly managed during error conditions, preventing the crash. |
| 4935630 | Data load / COPY | When enabling knob CopyFaultTolerantExpressions, COPY commands with ill-formed column expressions used to core dump. Now, Vertica returns a proper error message about the faulty expression. |
| 4936293 | SDK - Python | Resolved an issue where the 'ssl' module lacked the 'wrap_socket' attribute due to its deprecation in Python 3.12. The vertica-python library has been upgraded to a compatible version that utilizes 'ssl.create_default_context()' instead, resolving the error and ensuring compatibility with newer Python versions. |
| 4948330 | Cloud - Amazon | The cluster was experiencing "Cluster Truncation Lag" due to nodes encountering "ExpiredToken" errors when reading from Parquet files in S3. This issue was causing the catalog truncation version to lag, requiring node restarts to resolve. A fix has been implemented to ensure the SDK correctly handles token expiration and retries, preventing the "ExpiredToken" errors and subsequent catalog synchronization issues. |
| 4948707 | Execution Engine | A node crash was triggered by a VAssert failure related to memory allocation within the Vertica database, specifically the assertion VAssert(toCheckCleared[0] == 0 && (memSize < 16 || toCheckCleared[1] == 0)) failed. This issue has been addressed, preventing further node crashes related to this memory allocation assertion. |
| 4951289 | UI - Management Console | Resolved security vulnerabilities related to Tomcat and Spring Security. Updated Apache Tomcat to version 10.1.42 and Spring Security to version 6.4.4 to address CVE-2024-50379, CVE-2024-54677, CVE-2024-56337, CVE-2025-24813, CVE-2025-31650, CVE-2025-31651, CVE-2025-46701, CVE-2025-48976, CVE-2025-48988, CVE-2025-49124, CVE-2025-49125 and CVE-2025-22228. |
| 4971271 | Hadoop, UDX | Addressed a critical security vulnerability, CVE-2022-23305 (CWE-89), identified through SBOM scanning of Vertica server, console, and JDBC client packages. This vulnerability could potentially block customer installations. This release resolves the vulnerability to ensure secure deployments. |
| 5015913 | Kubernetes | Operator version 25.3.0-0 contains critical vulnerability CVE-2025-22871 and high-severity vulnerability CVE-2025-47907 in stdlib v1.23.5. To get the operator fix, please upgrade to the new version. |