Update Changes.MD for 2.52.0 (#29435)

apache · Nov 15, 2023 · a9201e3 · a9201e3
1 parent 9b1040b
commit a9201e3
Showing 1 changed file with 5 additions and 2 deletions.
diff --git a/CHANGES.md b/CHANGES.md
@@ -122,9 +122,11 @@ as a workaround, a copy of "old" `CountingSource` class should be placed into a
 * Fixed "Desired bundle size 0 bytes must be greater than 0" in Java SDK's BigtableIO.BigtableSource when you have more cores than bytes to read (Java) [#28793](https://github.com/apache/beam/issues/28793).
 * `watch_file_pattern` arg of the [RunInference](https://github.com/apache/beam/blob/104c10b3ee536a9a3ea52b4dbf62d86b669da5d9/sdks/python/apache_beam/ml/inference/base.py#L997) arg had no effect prior to 2.52.0. To use the behavior of arg `watch_file_pattern` prior to 2.52.0, follow the documentation at https://beam.apache.org/documentation/ml/side-input-updates/ and use `WatchFilePattern` PTransform as a SideInput. ([#28948](https://github.com/apache/beam/pulls/28948))
 * `MLTransform` doesn't output artifacts such as min, max and quantiles. Instead, `MLTransform` will add a feature to output these artifacts as human readable format - [#29017](https://github.com/apache/beam/issues/29017). For now, to use the artifacts such as min and max that were produced by the eariler `MLTransform`, use `read_artifact_location` of `MLTransform`, which reads artifacts that were produced earlier in a different `MLTransform` ([#29016](https://github.com/apache/beam/pull/29016/))
+* Fixed a memory leak, which affected some long-running Python pipelines: [#28246](https://github.com/apache/beam/issues/28246).
 
 ## Security Fixes
 * Fixed [CVE-2023-39325](https://www.cve.org/CVERecord?id=CVE-2023-39325) (Java/Python/Go) ([#29118](https://github.com/apache/beam/issues/29118)).
+* Mitigated [CVE-2023-47248](https://nvd.nist.gov/vuln/detail/CVE-2023-47248)  (Python) [#29392](https://github.com/apache/beam/issues/29392).
 
 # [2.51.0] - 2023-10-03
 
@@ -156,8 +158,9 @@ as a workaround, a copy of "old" `CountingSource` class should be placed into a
 
 ## Known Issues
 
-* Python pipelines using BigQuery Storage Read API must pin `fastavro`
-  dependency to 1.8.3 or earlier: [#28811](https://github.com/apache/beam/issues/28811)
+* Long-running Python pipelines might experience a memory leak: [#28246](https://github.com/apache/beam/issues/28246).
+* Python pipelines using BigQuery Storage Read API might need to pin `fastavro`
+  dependency to 1.8.3 or earlier on some runners that don't use Beam Docker containers: [#28811](https://github.com/apache/beam/issues/28811)
 
 # [2.50.0] - 2023-08-30