MLFlow - v2.11.3

Security

MLflow 2.11.3 is a patch release that addresses a security exploit with the Open Source MLflow tracking server and miscellaneous Databricks integration fixes

Bug fixes:

  • [Security] Address an LFI exploit related to misuse of url parameters (#11473, @daniellok-db)
  • [Databricks] Fix an issue with Databricks Runtime version acquisition when deploying a model using Databricks Docker Container Services (#11483, @WeichenXu123)
  • [Databricks] Correct an issue with credential management within Databricks Model Serving (#11468, @victorsun123)
  • [Models] Fix an issue with chat request validation for LangChain flavor (#11478, @BenWilson2)
  • [Models] Fixes for LangChain models that are logged as code (#11494, #11436 @sunishsheth2009)

Security

Security wording was detected, but no CVEs were found.

Details

date
March 22, 2024, 1:05 a.m.
name
MLflow 2.11.3
type
Patch
official page
https://github.com/mlflow/mlflow/releases/tag/v2.11.3
👇
Register or login to:
  • 🔍View and search all MLFlow releases.
  • 🛠️Create and share lists to track your tools.
  • 🚨Setup notifications for major, security, feature or patch updates.
  • 🚀Much more coming soon!
Continue with GitHub
Continue with Google
or