Apache Kafka Lifecycle Intelligence

Apache Kafka End of Life —
Version EOL Dates & KRaft Migration Guide

Updated 2026-05-30 · endoflife.ai · 9 min read

Apache Kafka is the backbone of real-time data pipelines for thousands of organizations. It processes billions of events per day at companies ranging from startups to the largest financial institutions in the world. And because Kafka is so deeply embedded in infrastructure — often handling compliance-critical financial, health, or audit data — its version lifecycle deserves careful attention.

This guide covers every Apache Kafka version's end-of-life date, EOL Risk Score™, and what running an unsupported version means for a platform handling real-time, often irreplaceable data streams.

Complete Apache Kafka EOL Schedule

Apache Kafka follows the Apache Software Foundation's standard project lifecycle. The community maintains the two most recent minor versions. Older versions receive no further development, bug fixes, or security patches once superseded.

VersionReleaseEnd of LifeStatusEOL Risk Score™
Kafka 2.6Aug 2020Oct 2022EOL90
Kafka 2.7Dec 2020Oct 2022EOL89
Kafka 2.8Apr 2021Oct 2023EOL84
Kafka 3.0Sep 2021Feb 2024EOL80
Kafka 3.1Feb 2022Jul 2024EOL78
Kafka 3.2May 2022Oct 2024EOL74
Kafka 3.3Sep 2022Feb 2025EOL70
Kafka 3.4Feb 2023Sep 2025EOL65
Kafka 3.5Jun 2023Dec 2025EOL58
Kafka 3.6Oct 2023Apr 2026Warning48
Kafka 3.7Mar 2024Sep 2026Supported30
Kafka 3.8Jul 2024Mar 2027Supported20
Kafka 4.0Mar 2025TBDLatest10
⚠ Kafka moves fast
Apache Kafka releases a new minor version roughly every four months. EOL dates arrive quickly — Kafka 3.6 entered warning territory in April 2026. If your team is more than one minor version behind, you are likely already EOL or approaching it.
Running Apache Kafka past end of life?
Extended-support vendors still ship security patches for EOL versions. We match you with the right provider for your stack — free, no obligation.
Get Apache Kafka Support Options →

Kafka 2.8 — End of Life October 2023

Kafka 2.8 was a landmark release — it was the first version to ship KRaft mode (Kafka without ZooKeeper) as an early access feature. Many teams adopted 2.8 specifically to begin evaluating KRaft before committing to it. Those deployments, now over two and a half years past EOL, are still seeing production traffic.

EOL Risk Score™
Kafka 2.8 — Score: 84 Critical

Kafka 3.x — Current Supported Versions

Of the Kafka 3.x series, only 3.7 and 3.8 are currently in active support. Kafka 3.6 reached EOL in April 2026. If you are on Kafka 3.5 or earlier, you are running an unsupported version regardless of how recently the 3.x release felt like a modern choice.

Kafka 4.0, released in March 2025, is the first version to fully remove ZooKeeper support. It requires KRaft mode exclusively and drops all ZooKeeper-related code. This is a significant migration milestone for any cluster still using ZooKeeper.

EOL Risk Score™
Kafka 3.8 — Score: 20 Low · Supported until Mar 2027

The ZooKeeper Deprecation and KRaft Migration

Apache Kafka's architectural shift away from ZooKeeper is the most significant infrastructure change in the project's history. In Kafka 3.x, ZooKeeper mode was deprecated. In Kafka 4.0, ZooKeeper mode is removed entirely.

This means any cluster still using ZooKeeper for cluster metadata cannot upgrade to Kafka 4.0 without first migrating to KRaft mode. Kafka 3.5 through 3.8 support a migration path from ZooKeeper to KRaft without downtime — if you haven't migrated yet, do it before attempting the 4.0 upgrade.

ZooKeeper is also EOL
Apache ZooKeeper 3.6 reached end of life in March 2024. ZooKeeper 3.7 is supported until October 2026. ZooKeeper 3.8 and 3.9 are currently supported. If your Kafka cluster uses ZooKeeper, check the EOL status of your ZooKeeper installation independently — it is a separate EOL risk from your Kafka version.

EOL Risk for Event Streaming Infrastructure

Kafka is different from most application-layer software because it stores data. An EOL web framework is a security risk; an EOL Kafka cluster is a security risk that also has custody of your data. CVEs affecting Kafka directly impact the confidentiality, integrity, and availability of every message in your topics.

Historically significant Kafka CVEs include authentication bypass vulnerabilities, SCRAM authentication weaknesses, and denial-of-service issues in the broker. On an EOL version, these are permanently unpatched. In regulated industries where Kafka carries financial, health, or PII data, the compliance implications are significant.

Upgrading Apache Kafka

Rolling upgrades are supported

Kafka supports rolling upgrades — you upgrade brokers one at a time while the cluster continues serving traffic. The cluster runs in a mixed-version state during the upgrade, which is supported when moving between adjacent minor versions. This makes Kafka upgrades less disruptive than many application-layer upgrades.

Use inter-broker protocol version control

During a rolling upgrade, set inter.broker.protocol.version to the previous version to maintain compatibility across mixed-version brokers. Only bump this value after all brokers are on the new version. The same applies to log.message.format.version for 3.x clusters.

Check client compatibility

Kafka clients are generally backward-compatible with older brokers, but broker upgrades may expose client-side issues. The Kafka protocol version matrix documents which client versions are compatible with which broker versions. Update your producers and consumers as part of the upgrade project, not after.

Upgrade ZooKeeper to KRaft first if on 2.x/3.x

If targeting Kafka 4.0, the ZooKeeper-to-KRaft migration must be completed first. Run the kafka-metadata-migration.sh tool included in Kafka 3.5+ to migrate your ZooKeeper-based cluster metadata to KRaft without downtime.

Monitor your full data stack
Kafka rarely runs alone. Check the EOL status of your Kafka ecosystem: Java (Kafka requires Java 11+, recommends Java 17 or 21), your Linux distribution, and any Kafka connectors or stream processing frameworks (Kafka Streams, Flink, Spark). The EOL Checker lets you look up all of these individually.

The Monthly EOL Digest™

Once a month — critical end-of-life dates, CVE blind spots, and lifecycle changes worth knowing about.

✓ You're on the list.