February 5th, 2026

Real-Time Kubernetes

1.1.0 Realtime Kubernetes

Updates

Adds support for using Realtime components without a ClusterRole, disabling cluster-wide access for the SessionGroups controller. Refer to the sm-realtime Helm chart README.md for configuration details.

This Helm chart version uses Realtime container version 14.13.0. For more information, see the 14.13.0 container release notes.

Security

  • Software Bill of Materials (SBOM) is available for download from the corresponding release page in our Support Portal.

  • libgstreamer (CVE-2025-3887): This component has been manually patched to address CVE-2025-3887. Note: Security scanners may still flag this component as vulnerable because the base version string remains unchanged

  • Redis versioning: This release by default uses Redis version 8.2.1 with publicly disclosed security vulnerabilities (CVEs) that have been assessed to not impact this product. Users who require additional security controls or remediation for these CVEs can choose to deploy a different Redis version which remediates issues of concern.

Non-Applicable CVEs

The following vulnerabilities (including those reported for the third-party package Redis version) were reviewed and determined to have no security impact on this release due to specific configurations or the use of closed, trusted environments:

Component

Identified CVEs

redis

CVE-2025-49844, CVE-2025-46817, CVE-2025-46818, CVE-2025-46819, CVE-2025-62507

stdlib

CVE-2025-58183, CVE-2025-61726, CVE-2025-61728, CVE-2025-61729

protobuf

CVE-2026-0994

python-multipart

CVE-2026-24486

sentencepiece

CVE-2026-1260

jaraco.context

CVE-2026-23949

wheel

CVE-2026-24049

zipp

CVE-2024-5569

General Libs

libc (CVE-2025-4802, CVE-2026-0861), libpam (CVE-2025-6020), libssl3 (CVE-2025-15467, CVE-2025-69419, CVE-2025-69421)zlib (CVE-2023-45853), gpgv(CVE-2025-68973, CVE-2026-24882)

Others

perl (CVE-2023-31484)