Bug Fixes

Description

When the "Reauthenticate Users After Inactivity" field in mzdesktop is set, sessions in Web UI are not terminated after a period of inactivity.

Resolution

Sessions are revoked after set period of time in "Reauthenticate Users After Inactivity" field in access control.

Description

If Pico config is updated from Web Pico Management UI then system log is not updated.

Resolution

System log is added with proper details for updates.

Description

Due to a previous bug fix, an exception is caused due to accessing an uninitialized list.

Resolution

This problem has now be sovled and a check for an empty null value of the list has been added.

Description

When encoding UDRs with the JsonEncodeUdr APL function, the UDRs containing field names starting with numbers or symbols are modified to satisfy Java class naming rules.

Resolution

Fix the encoding function to retain the original field name.

Description

Documentation for many System Tasks is missing.

Resolution

The documentation has now been updated to describe System Tasks.

Description

When user insert a wrong SAP CC login password, workflow can be start without abort, no authentication failed message at debug mode.

Resolution

When authentication failed it will immediately showing error and abort the workflow.

Description

A CVE regarding Netty, CVE-2022-41881, was detected.

Resolution

Netty has now been upgraded and this vulnerability is removed.

Description

Apache CXF contains vulnerabilities ( CVE-2022-46364 and CVE-2022-46363 ).

Resolution

Apache CXF have been upgraded to a non-vulnerable version.

Description

Some mzsh commands failures are not reported by the mzsh command line tool. Instead mzsh just silently fails, giving no feedback or error message.

Resolution

This problem has now been fixed and for any exceptions, an explicit message will be displayed.

Description

Commons-Net contain a vulnerability ( CVE-2021-37533 ).

Resolution

Commons-net have been upgraded to a non-vulnerable version.

Description

When using the Http agents with Open API Profile, the agent does not handle requests that contains array schema properly and throws null pointer exception.

Resolution

Fix the agent code to allow handling of array schema. Array schemas will be added to the open api class but will be skipped during decoding.

Description

A security vulnerability has been found in Netty versions 3.10.6.Final and 4.1.15.Final.

Resolution

Netty version is now upgraded to 4.1.73.Final to mitigate the reported vulnerability.

Description

Ultra doesn't support declaring bit_blocks in the prefix of a switched_set.

Resolution

Ultra has been updated to support bit_blocks in the prefix of a switched_set. The fields inside the bit_block can be used as any other field in the prefix.

Description

The Azure Libraries package contain a vulnerability ( CVE-2022-31684 ).

Resolution

The Azure Libraries package have been upgraded to a non-vulnerable version.

Description

The Postgres driver contain a vulnerability ( CVE-2022-41946 ).

Resolution

The Postgres driver has been upgraded to a non-vulnerable version.

Description

We do not support List and Map types for Data Veracity filter, repair and data masking. The documentation only mentions this fact in the Data Veracity search page.

Resolution

The note for unsupported data types for Data Veracity has now been added into the other parts of the documentation for Data Veracity. Namely in the filter, repair and data masking pages.

Description

When using the SFTP Collection Agent, the configured Sort Order criteria is not applied to subfolders when the SFTP collection agent setting is as follows: The Include Subfolder option under the Source tab is selected and the Enable Sort Order option under the Sort Order tab is selected and the specified Directory contains only the specified subfolder. The SFTP collection workflow run is expected to abort when the subfolder does not meet the Sort Order criteri. Instead, the workflow runs successfully without any error.

Resolution

This is fixed so that Sort Order criteria is applied when there is only 1 subfolder within the specified directory.

Description

Newer versions of bndlib has been released that we should upgrade to.

Resolution

bndlib has now been updated to 6.3.1.

Description

Despite Couchbase storage not being supported by batch workflows, Couchbase properties are still being displayed when configuring the Aggregation profile.

Resolution

Couchbase properties will not be displayed during configuration unless it is a real-time workflow.

Description

If a workflow stop fails, the workflow state may get into an unrecoverable state. It will then be running and can not be stopped unless the Execution Context is restarted.

Resolution

A workflow stop command will now always attempt to stop the workflow, even if the stop signal has already been sent.

Description

WebSwing contains vulnerabilities ( CVE-2022-42920 , CVE-2022-3171 , CVE-2022-42003 and CVE-2022-42004 ).

Resolution

WebSwing has been upgraded to a non-vulnerable version.

Description

The Jackson libraries contain vulnerabilities ( CVE-2022-42003 and CVE-2022-42004 ).

Resolution

Jackson and Jackson-databind have been upgraded to a non-vulnerable version.{color}

Description

The CometD Library contain a vulnerability ( CVE-2022-24721 ).

Resolution

The CometD library have been upgraded to a non-vulnerable version.

Description

When udrDecode or udrEncode is called from the initialize block, certain references held as ThreadLocal values are not be released properly which can cause the system to run out of memory.

Resolution

The references stored as ThreadLocal values are now cleared properly and the system will release memory when the garbage collector is called by the jvm.

Description

APL and Java handle numeric values in a different manner. Inappropriate value operation can result in an overflow.

Resolution

The relevant documentation has been updated to reflect the differences between Java and APL.

Description

The SystemTask.Statistics_Cleaner_grp workflow group is not possible to import.

Resolution

The issue is resolved and the workflow group can now be imported.

Description

Incorrect SAP RFC Agent Preparation Documentation

Resolution

The correct information has been added to the Container section of the documentation with the common.java.library.path property.

Description

The SAP CC Online Agent Preparations documentation is incorrectly placed in the documentation and the list of libraries is missing _core_admin.jar_.

Resolution

This issue has now been fixed.

Description

In the System Exporter UI, select a config that has circular reference by another config, StackOverflowError exception was thrown.

Resolution

This issue is fixed. Circular dependencies can now selected.

Description

Despite configuring _mz.name_ in the _install.xml_ file, the value doesn’t reflect in the _cell.conf_ file post installation.

Resolution

This issue is fixed. _mz.name_ value should now be populated correctly in _cell.conf_.

Description

When upgrading from MZ8 to MZ9, the ECs would start with errors.

Resolution

The issue has been fixed and the ECs start without any error.

Description

When user has failed to delete Data Veracity filter, there was error notification, however the error message did not contain any helpful information.

Resolution

When user fail to delete a Data Veracity filter, error notification will now contain useful information for user to troubleshoot further.

Description

The upgrade instructions for the Platform Container were not complete.

Resolution

The documentation is now updated under section [https://infozone.atlassian.net/wiki/spaces/MD9/pages/4849779/Upgrade+Platform+Container|https://infozone.atlassian.net/wiki/spaces/MD9/pages/4849779/Upgrade+Platform+Container|smart-link] .

Description

If MZ8.x platform has enabled property mz.security.user.password.reset.enabled, during MZ9 upgrade it failed due to incorrect password state was migrated.

Resolution

This issue is fixed. Platform should be upgraded successfully when mz.security.user.password.reset.enabled is set.

Description

3pp libraries using multi-version packaged jars could not be used. This was with the SAP HANA JDBC driver, which made it impossible to use the _Try connection_ button in the Database profile.

Resolution

Multi-version jars, including the SAP HAN JDBC driver, can now be used.

Description

When enabled external reference on REST Client, validation error was thrown even though the reference value are set correctly.

Resolution

This issue is fixed. External reference should now work on REST Client.

Description

When using the 5G profile with http2 agents, there were some inconsistent behaviour relating to the heartbeat timer, custom specification and response handling.

Resolution

We enhanced the 5G Profile and its response handling behaviour when used with the http2 agents to be more in line with details stated in the 3GPP documentation.

Description

Sometimes in the Conditional Trace UI, both the _Start_ and _Stop_ buttons may be disabled.

Resolution

The issue has now been corrected so that the _Start_ and _Stop_ buttons are always enabled depending on whether a trace is running.

Description

Conditional Trace UI may not correctly update the displayed parameters for the selected Trace Template.

Resolution

The issue has been fixed.

Description

When stored UDRs from earlier versions of MediationZone are deserialized, you may get a ClassCast Exception.

Resolution

This problem has now been fixed and deserialization should work as intended.

Description

During the upgrade from mz8.3 to mz9.0.0.0, _auth.properties_ failed to update into _mzdb_ if the table is empty.

Resolution

Add a checking if the table is empty skip the update, and proceed to insert into _mzdb_.

Description

The information about how to install the desktop or legacy desktop once the upgrade is done was missing from the documentation.

Resolution

The Post Upgrade section of the documentation is now updated with the relevant links.

Description

Legacy desktop launcher will not work with OpenJDK 17.

Resolution

This issue is fixed. Legacy desktop launcher is now compatible with the most recent JDK version.

Description

If system insight is enabled in the MZ 8.x installation by the property “mz.system.insight” being set, then upgrade to MZ 9.0 will fail. The system will not start up since the system insight packages are no longer available.

Resolution

The issue has now been fixed and the property will have no effect in the MZ 9 system after upgrade.

Description

Deadlock occurs in the SAP JCO RFC agent when the user stops the workflow whenever the UDR queue is full of UDRs.

Resolution

Removed lengthy loop logic waiting for the UDR queue to become empty when the user stops the workflow. Removed lengthy loop logic waiting for the RFCExecutor Thread to complete when the user stops the workflow. Added a try-catch handler for InteruptedException to exit the RFCExecutor Thread when the user stops the workflow

Description

Missing information on database related settings in the Upgrade Preparations document.

Resolution

The missing information is now updated in the document.

Description

In previous versions of MediationZone, some administrative commands were exposed to all users. This could potentially lead an unauthorized user to obtain information about the system.

Resolution

The verification of access rights has been fixed and sensitive commands are exposed only to authorized users as per design. Additionally, the interactive mode has been removed from mzsh.

Description

When receiving answers of timed out requests, the Diameter stack log one line for ever message. This can cause very excessive logging in some situations which can impact performance.

Resolution

When there many log messages like this, the logging is now throttled to a reasonable level

Description

When UDRs are generated from the Open API schema specification file, certain UDR fields used in the response body are marked as read-only. In some cases, the HTTP2 Server agent needs to initialize and set those fields to generate a proper response.

Resolution

Added a checkbox in the Open API profile to allow users to have the option to ignore the read-only tag for the selected schema specification file.

Description

Navigating system exporter back and forth cause UI pico out of memory when the system has a lot of configurations.

Resolution

System exporter memory leak issue has been fixed.

Description

When running really large UDR through a workflow, the Encoder may not have capacity enough and throw an error.

Resolution

The Encoder has now been redesigned to allow larger UDRs and the the problem with processing large amounts of data is fixed.

Description

The Subscription Client ID for the JMS Collector agent will fail the workflow validation although the field is optional as mentioned in the documentation.

Resolution

The Subscription Client ID Field is removed from the validation list.

Description

Specific fields or configuration save states are lost when importing the SQL forwarder from MediationZone 8.x to MediationZone 9.x.

Resolution

Added logic to handle imports from MZ 8.x to MZ 9.x.

Description

Certain fields or config save state is lost when importing the Open API Profile from MZ 8.x to MZ 9.x

Resolution

Add logic to handle imports from MZ 8.x to MZ 9.x

Description

When editing a workflow using Workflow Editor, an exception can be thrown.

Resolution

The issue has been fixed.

Description

The database forwarding agent was using two obsolete methods for Oracle's batch update functions. This causes performance issues when running toward Oracle 19c.

Resolution

The function calls have now been updated to no longer use deprecated implementations of the JDBC driver.

Description

Unsupported data types like Map and List are selectable in Data Veracity Restricted Field Edit/New dialog.

Resolution

Unsupported data types are hidden from a user in Data Veracity Restricted Field Edit/New dialog.

Description

The existing Data Veracity Search page has no option for Save New and Update. Users can only load a saved filter and modify the queries.

Resolution

This has been fixed by adding two new options added to Save, namely Save New and Update, allowing the user to save as new or update existing.

Description

5G Profile and workflows exported from MediationZone 8 not compatible with Private Edition and MediationZone 9. Some fields in the 5G Profile and workflow instance table columns have gone missing when imported into PE and MZ9.

Resolution

Some fields in the 5G Profile and some fields in the workflow instance table column exported from MZ8 are given special handling when being imported into PE and MZ9.

Description

Sometimes workflow packages with long names would exceed the DB column limit of 64 characters for the workflow key. This would break the workflow handling.

Resolution

This issue has been fixed by adding a character limit check to workflow packages. Validation has been added to the export of workflow packages to prevent this from happening. A (dynamic) limit has been added to the workflow package name. This limit is dynamic and not a “hard” limit because the key itself is comprised of other dynamic parts besides the workflow package name, such as version, system name, and instance ID.

Description

The references to “mzsh keytool” are no longer valid.

Resolution

Documentation has been updated to replace these references with valid information on creating Keystore.

Description

The link to the Legacy Desktop section in the user documentation is broken.

Resolution

The link has now been fixed and points to the right place.

Description

Web Desktop installation documentation had instances of service context and some extraneous information.

Resolution

The documentation is now updated accordingly.

Description

Workflow tables that references HTTPD’s keystore and truststore fields disappear after upgrading from MZ8. After upgrading from MediationZone 8, workflow tables that reference HTTPD’s keystore and trustore fields disappear. After upgrading from MZ8, workflow tables that reference HTTPD's keystore and truststore fields disappear.

Resolution

The keystore and trustore fields for HTTPD no longer exist, as MediationZone 9 uses Security Profile instead. A note is added to the HTTPD documentation to inform users on this issue.

Description

The CVE-2021-47621 is present in classgraph library.

Resolution

This CVE is resolved by upgrading the classgraph library.

Description

When upgrading from MZ8 to MZ9, some workflow configuration may fail during the migration.

Resolution

Fixed vcimport issue when there are no matching parameters found in workflow table column and the issue where the migration of configuration from MZ8 might overwrite existing configurations.

Description

We didn't support global named attributes before. If the user tried to define such an attribute a parsing exception was thrown.

Resolution

Global named attributes, or named attributes at the root level are now supported and can be used from other non root attributes with the ref argument.

Description

ResourceURI in the response message will be populated with a value that is a combination of the path from BaseURL and the actual ResourceURI from the request message.

Resolution

Fix to ensure the ResourceURI in the response message matched the ResourceURI from the request message.

Description

For a Workflow Configuration using Dynamic Fields, validation can become extremely slow if you have many rows in the workflow table. This is due to failures in field type lookup causes a large amount of synchronous requests being sent from the UI process to the platform.

Resolution

The issue has been fixed and the unnecessary lookup attempts have been eliminated.

Description

An appendix containing information on changing Java versions was missing in the Installation Instructions documentation.

Resolution

The appendix has been added back into the Installation Instructions.

Description

BouncyCastle versions prior to 1.78.1 could be susceptible to various vulnerabilities including, side-channel attacks, timing-attacks, affecting specific cryptographic algorithms.

Resolution

BouncyCastle has been updated to 1.78.1 to mitigate these vulnerabilities.

Description

Prometheus backend is now replacing InfluxDB in System Insight. Users are looking for information on setting up Prometheus in MediationZone 9, but there is no available documentation.

Resolution

The user documentation has been updated to include the necessary details for setting up Prometheus in MediationZone 9.

Description

When forwarding more than 1000 UDRs with Disk Forwarding, some are lost in the process.

Resolution

This issue has now been fixed and the user can now send more than 1000 UDRs without losses.

Description

Neither vcexport nor vcimport commands support the Encryption Profile configuration type. There is no defined file extension for this configuration type.

Resolution

To resolve this issue, define a file extension for this configuration type.

Description

Due to rounding errors in the Queue Throughput calculations, the value is misreported as too large in System Statistics.

Resolution

The calculation has been fixed to be as exact as possible (given that it is reported as an integer value).

Description

When the REST response has exceeded 8MB, users will encounter “Error Message: Request too large: Request of size <size> was longer than the maximum of 8388608”. This is caused by the new limit added to the third-party library in order to limit the memory usage.

Resolution

A new property, the "rest.client.max.strict.bytes" is added to allow users to adjust the maximum number of bytes when reading the entire entity into the memory.

Description

During an installation, any non-default value provided for “install.admin.password” property will be disregarded when “install.security” is set to false. This result in the default admin password being configured as the default value.

Resolution

This issue is resolved by allowing the non-default value for “install.admin.password” property to be used as the admin password during an installation regardless of the “install.security” property value.

Description

HTTP Client Functions may crash an EC when a timeout and Response are received simultaneously.

Resolution

Deprecated thread stopping functions are refactored to respond with timeout without crashing the EC.

Description

The OpenAPI profile does not typecast numbers to BigDecimals.

Resolution

This issue is resolved and when the type is “number” without a defined format, any numbers should be allowed. The number encompasses both integer and floating-point numbers (BigDecimal).

Description

The documentation contains incorrect information about using standard input with mzsh as well as references to configuration spaces which no longer exist.

Resolution

The documentation has now been updated.

Description

The Rest Client Agent sends the request to the HTTP endpoint despite configuring the Base URL with HTTPS.

Resolution

This has been fixed to ensure the request is sent to HTTPS when the endpoint is configured to use HTTPS.

Description

This issue only happens in Legacy Desktop Workflow Editor. When sorting the Name column in the Workflow Table, on double-clicking an external reference cell at another column to edit, a random external reference name of another cell is displayed instead. If no change is done, the cell will now be set to the incorrect random external reference name.

Resolution

The issue is fixed and the correct external reference name will remain when clicking to edit.

Description

When reading the documentation for the Dup Batch profile, it is not entirely clear how empty batches will be evaluated when using MIM values as detection method.

Resolution

The documentation has now been updated to clarify this a bit more.

Description

An HTTP/2 SSL connection that is established and TCP congested will be leaked when it times out. An attacker can cause many connections to end up in this state, and the server may run out of file descriptors, eventually causing the server to stop accepting new connections from valid clients. Solution Update the version of org.eclipse.jetty from 9.4.49.v20220914 to 9.4.54.v20240208.

Resolution

Description

The current length for the field prop_value in platform_properties table was too small, and this caused some upgrades to fail.

Resolution

The field length has been increased from 64 to 256 characters.

Description

A vulnerability exists when using the extended mode in the connection property. This only impact customers who would use the advanced options, and does not impact customers using the default, and simple mode in connection property. Solution: PostgreSQL has been updated to 42.7.3 to mitigate this vulnerability.

Resolution

Description

Importing a Security Profile with an external referenced Keystore Path causes an import error, due to the value being identified as empty.

Resolution

The issue has been fixed and it is now able to import a Security Profile with an external referenced Keystore Path.

Description

Configurations with SFTP agents exported from version 8.3.3.x cannot be imported to version 9.x.

Resolution

This problem has now been fixed and configurations with SFTP agents can be imported as expected.

Description

The built-in webservers on our server processes accept HTTP TRACE calls. For security reasons, this should not be allowed. This affects the platform, Desktop Online, as well as any Execution Context processes.

Resolution

We are now blocking TRACE and TRACK explicitly, giving a 403 Forbidden response.

Description

Workflows containing an Aggregation agent may abort after upgrading from version 8.3 to 9 if the session contains date or UDR data.

Resolution

This issue has now been fixed, and the old session data from version 8 is readable, and the workflow no longer aborts after an upgrade.

Description

The Aggregation Session Inspector is only available in the Desktop interface, which is not obvious to the users and needs to be documented.

Resolution

This is now described in the user documentation.

Description

When configuring a secret key for the Radius agent, it is visible in plain text both in the agent configuration and in the workflow table.

Resolution

This problem has now been fixed and the secret key is not visible in plain text anymore.

Description

A vulnerability was detected in the version of Clojure used.

Resolution

This has now been fixed by upgrading Clojure.

Description

The HTTP2 Agent will receive an invalid request response when sending a request with multiple credentials, one in the header and one in the request body.

Resolution

Add a check to remove the credentials from the request body if it already exists in the headers.

Description

Outdated ion-java package causing high CVE.

Resolution

Upgrade to use ion-java version 1.11.0.

Description

After the property “postgresql.connectionpool.maxlimit” in the Database Profile is updated, the old connections in the connection pool are not properly removed. This leads to a connection leak in Database Forwarding Agent and sqlExec APL function.

Resolution

This issue has been fixed for Database Forwarding Agent and sqlExec APL function.

Description

In Aggregation Session Inspector vaadin UI, exiting from Explore Session using ESC button did not release the profile lock.

Resolution

Add profile lock release process upon exiting Explore Session with ESC button.

Description

The transactional behavior is not working for the SAP CC batch agent if a workflow is stopped immediately. The worklfow is likely to abort and the transaction state of the SAP CC batch agent will not be saved. This will result in the agent not sending the last processed UDR.

Resolution

The transaction state is now saved properly, the agent will now function as expected.

Description

The existing SFTP third-party library Maverick 1.7.53 contains CVE-2023-48795, which is vulnerable to security issues.

Resolution

Upgrading to the latest Maverick 1.7.56 has fixed the issue.

Description

The Host Statistics and Pico Instance Alarm conditions are not available.

Resolution

This functionality has now been added and they are showing in Alarm Detection Profile.

Description

Datahub workflow with LDAP authentication or None authentication aborted with failed to copy to temp HDFS file exception whenever Datahub workflow with Kerberos authentication was run before them.

Resolution

This problem has now been solved and you can set this flag ipc.client.fallback-to-simple-auth-allowed to true.

Description

Vulnerability CVE-2023-2976 is detected.

Resolution

Vulnerability CVE-2023-2976 is resolved.

Description

The CVE-2022-3509 is present in protobuf library.

Resolution

The protobuf library has been removed, so that the CVE-2022-3509 is solved.

Description

The Avro library included with the Ultra Avro support package is impacted by the vulnerability CVE-2023-39410. This could allow for Denial of Service attacks by manipulating the input data.

Resolution

Avro has been upgraded.

Description

When having an Ultra format containing Avro schema with nested complex object definitions, you may get a compilation error.

Resolution

The code generation implementation has now been fixed to generate unique class names.

Description

Desktop does not allow the Prometheus forwarding agent renaming as there was no way to enable it to happen. Renaming of the agent from the Legacy Desktop is still allowed.

Resolution

An interface has now been added to the Prometheus Forwarding agent to enable users to rename it from the Desktop.

Description

Database Profile UI does not prompt notification to save configuration after changes to the External Reference and Advanced Properties. It also does not retain values when the tabs/radio button is toggled. There is an unused field - "Notification Service", in the External Reference table, which is meant only for Oracle DB.

Resolution

Improved the UI to prompt users to save the configuration when changes are made, retain values when the tabs/radio button is toggled, and the "Notification Service" field has been removed from the External Reference table for database types that do not require this field.

Description

When ExecutionSettingsPanel is created for display on the screen, initially it does not set the Workflow Execution Type with the persisted configuration data and it defaults to Normal. For the Desktop UI, after the creation of ExecutionSettingsPanel, it will call the setStandAlone method to set the Workflow Execution Type based on the persisted configuration data. In the Desktop interface, it never performs the second step to set the Workflow Execution Type with the retrieved persisted configuration data. Therefore, the correct persisted configuration data for the Workflow Execution Type is not reflected on the Desktop.

Resolution

For the Desktop interface, we need to call the setStandAlone method after the creation of ExecutionSettingsPane. Then the persisted configuration data for Workflow Execution Type is reflected on the screen.

Description

The mzsh topo command does not work as intended when upgrading from an older version of 10 to 9.1. This issue is caused by the missing topo migration handling.

Resolution

This issue is fixed and the topo command is now working as intended.

Description

A vulnerability was detected in the amqp-client library.

Resolution

The amqp-client library has now been upgraded to remove this vulnerability.

Description

ECS APL functions such as udrAddError() and udrGetErrorMessages() are not available.

Resolution

This problem has now been fixed and the ECS APL functions are available.

Description

The HTTP2 Client Agent decodes the response body received to populate the OpenAPIUDR object, including responses with status code 204 No Content. Since responses with status code 204 do not have any body content, errors are listed in the EC log, and performance is slowed down.

Resolution

This issue is fixed, and if the response has status code 204, there will be no attempt to decode the response body.

Description

The Distributed Storage package does not properly declare its dependencies. That means that depending on the license, those dependencies may not be enabled and the functions will abort in runtime.

Resolution

The dependency declaration has been fixed

Description

Expand/Collapse All buttons are not available.

Resolution

Expand/Collapse All buttons have now been added.

Description

Security Upgrade for BigQuery Storage API Client Library

Resolution

grpc-google-cloud-bigquerystorage-v1beta1 client library has been upgraded to address the security vulnerability identified in CVE-2023-44487.

Description

The install.xml file contains duplicate JDBC properties, and this cause issues for users to update the values during upgrade process. These duplicate properties are mz.jdbc.user , install.db.jdbc.user , install.<DB_TYPE>.jdbc.user , and mz.jdbc.password , install.db.jdbc.password , install.<DB_TYPE>.jdbc.password .

Resolution

The duplicate properties are removed and only mz.jdbc.user and mz.jdbc.password are retained.

Description

SAP CC notification TLS is not working due to a bug in SAP CC library API that is used by the SAP Notification Agent.

Resolution

SAP has provided a fix that as of writing is only available for SAP CC version 2020 SP2 Patch 5 and SAP CC version 2023 FPS1. A code fix is required and is done for SAP Notification Agent to implement the fix from SAP which resolved the SAP CC notification TLS issue. Expecting more SAP CC versions to get this fix moving forward, you can check with SAP on availability of this feature for other SAP CC version.

Description

NullPointerException occurs when the user validates the OpenAPI profile with a yaml file that has empty properties in Object Schema.

Resolution

A check is now done to see if the properties are null before proceeding to validate any Object Schema in the yaml file.

Description

When the routeToAPL checkbox is disabled in the HTTP2 Server agent, certain errors and the error messages encountered by the HTTP2 Server agent backend logic are not sent back to the client agent as a response.

Resolution

The HTTP2 Server agent backend behavior has not been adjusted to account for scenarios with routeToAPL disabled.

Description

There is no instruction to guide users to retrieve the mz.license file content.

Resolution

The documentation is updated with the required command to retrieve the content in mz.license file.

Description

Resolution

Description

The RFC templates are queried from the server and cached locally when connecting to RFC. However, sometimes during the initialisation, the RFC server may return a null value for a template. These null values would cause the workflow to abort.

Resolution

Null values are now detected when the server is queried, and the user can re-try a number of times before aborting the workflow if the template is not found.

Description

When using the HTTP2 Agent with the Analysis Agent, if an improper response is constructed in the Analysis Agent and passed to the server agent, it is still routed back to the Analysis Agent even when the routeToAPL checkbox is disabled.

Resolution

The HTTP2 Server agent backend behavior has now been adjusted to directly send the response back to the client agent in the scenario where the response is constructed improperly and routeToAPL is disabled.

Description

The product version was hardcoded to 9.0.

Resolution

The hardcoded value has been replaced with a dynamic version number that updates according to the deployment version.

Description

DataHub workflow aborted when trying to connect Cloudera deployed in AWS EC2. This is because datahub workflow was contacting the external network outside of our office network using IP address by default. IP address translation between local area network and external network blocks communication of datanode internally.

Resolution

Enable datanode communication to use hostname instead of IP address. Set this flag dfs.client.use.datanode.hostname to true.

Description

The install.xml file contains unused properties, and this cause issues for users to update the values during the upgrade. These properties values do not automatically update from the existing installation.

Resolution

The install.xml file has been clean up and most of the properties are now able to be updated automatically from the existing MZ_HOME.

Description

Currently, targetNameSpace property is always added to target locations. In case targetNameSpace is null, then schemaLocation is completely ignored.

Resolution

A new system property called mz.ultra.xml.schemalocation.newparsing is added. If set to true, it will give precedence to schemaLocation (if available) and targetNameSpace will be ignored. In case property is not available (or set to false), then the default behaviour is backward compatible.

Description

There was a security vulnerability (CVE-2024-47561) in Apache Avro where schema parsing in the Java SDK of versions 1.11.3 and earlier allowed for the possibility of arbitrary code execution by malicious actors.

Resolution

This vulnerability has now been removed by upgrading Apache Avro from version 1.11.3 to 1.11.4 and Apache Commons Compress from version 1.25.0 to 1.26.1, which also brings the library up-to-date with the latest bug fixes and performance improvements, ensuring better stability.