Bug Fixes (2.0.3)

2.0.3

Version	Case ID	Internal ID	Components	Summary
2.0.3		XE-6278	Web Desktop	Java Version for Web Desktop Needs to be Upgraded Description The Web Desktop is still running on Java 11 while other images use Java 17. Resolution OpenJDK has now been upgraded to support Java 17 in Web Desktop.
2.0.3	31983	XE-6277	Docker	OpenJDK Vulnerability Description A vulnerability was detected in the OpenJDK version. Resolution The OpenJDK version has now bee upgraded and the vulnerability removed.
2.0.3		XE-6325	Core	esapi Vulnerability Description A vulnerability was detected in the esapi version. Resolution The esapi version has now bee upgraded and the vulnerability removed.
2.0.3	31960	XE-6268	System Log	Syslog Collection Agent does not Handle non-ASCII Messages Correctly Description The Syslog Collection Agent does not handle character encodings as described in RFC5424 correctly. Resolution The agent now decodes UTF-8 encoded messages correctly.

2.0.2

Version	Case ID	Internal ID	Components	Summary
2.0.2		XE-6217	Aggregation Couchbase	Old Couchbase Profile Fails Description New couchbase properties cause Aggregation agent to fail if using an older Couchbase profile. Resolution This problem has now been fixed, a warning is written in the execution context log, and default values will be used during execution.
2.0.2	31761	XE-6214	Web Desktop	Go Vulnerability Description A vulnerability was detected in the Go version. Resolution The Go version has now bee upgraded and the vulnerability removed.
2.0.2		XE-5999	Liquibase	Liquibase Vulnerability Description A vulnerability was detected in the Liquibase version. Resolution The Liquibase version has now bee upgraded and the vulnerability removed.
2.0.2		XE-6218	Couchbase	Issues When Using Parametrization in Couchbase Profile Description When using parametrized in a Couchbase profile, passwords need to be written in clear text, and it is not possible to use External References and parametrization at the same time in a Couchbase profile. Resolution These issues have now been solved, and passwords need to be encrypted, and it is possible to use external references and parametrization in combination in a Couchbase profile.

2.0.1

Version	Case ID	Internal ID	Components	Summary
2.0.1	30875	XE-5920	Logging	Log Forwarding Does not Forward Group Messages Description When using log forwarding, group messages are not forwarded. Resolution This problem has now been fixed and group messages are forwarded.
2.0.1		XE-5776	Logging	Couchbase Profile Does not Support Parametrization Description When using the Couchbase profile it was not possible to set parameters for values in the Connectivity and Management tabs. Resolution This has been fixed and parametrization can be used in the Couchbase profile.
2.0.1	29576	XE-5760	Helm	Resources Cannot be Configured for Init Containers Description It is not possible to configure limits and requests for CPU and Memory resources in the values. yaml file for the initial container. Resolution This has now been fixed and Kubernetes resources can be configured for the platform and mzonline init containers. Please refer to the platform.init.resources and mzonline.initMyservice.resources values in the Usage Engine Private Edition helm chart for details.This has been fixed and parametrization can be used in the Couchbase profile.
2.0.1		XE-5060	ECDeployments MZOnline	Adding Custom Metrics Breaks ECDeployment Description The ECD wizard breaks when adding custom metrics. Resolution This issue has now been fixed and custom metrics can be added without breaking the UI.
2.0.1		XE-3820	Web Desktop	WebDesktop Allows HTTP Traffic When TLS is Enabled Description When using the Web Desktop, HTTP is still allowed after TLS has been enabled. Resolution This problem has now been fixed, and when TLS is enabled only HTTPS traffic is allowed when using the Web Desktop.
2.0.1	30832	XE-5844	HTTP/2	Http2 Server Agent Incorrectly Returns a RequestCycleUDR with Errors Description When the http2 server agent is used without OpenAPI profile enabled, the RequestCycleUDR returned will contain schema not found error message and the isError flag set to true. Resolution Fix the backend logic for the server to handle requests properly when OpenAPI profile is disabled. Also fixed the error messages wording to be more clear.
2.0.1		XE-5937	Azure	Jackson Vulnerability Description A vulnerability was detected in the Jackson version. Resolution The Jackson version has now bee upgraded and the vulnerability removed.
2.0.1		XE-6001	Postgres	Postgres Vulnerability Description A vulnerability was detected in the Postgres version used. Resolution Postgres has now been updated and the vulnerability removed.
2.0.1	31425	XE-6075	Helm	Helm Chart Enhancements for AWS Description Some configurations were not possible to make in the helm charts. Resolution The following enhancements have been made to the helm chart: * It is now possible to configure the region that the Kubernetes cluster belongs to. Meaning that the url:s used by the Usage Engine specific Kubernetes resources will automatically contain the correct region. This is done via the global.region value. * It is now possible to configure the annotations applied to the ingress-alb Ingress and and the platform Service resources. This is done via the aws.ingress.metadata.annotations and the aws.platform.service.metadata.annotations values respectively. If there is a need to exclude a default annotation for one reason or another, this can be done via the aws.excludeDefaultAnnotations value. See the values file for further details.
2.0.1		XE-6096	System Log	Log Forwarding Does not Forward Full Information to Syslog Description When using log forwarding to the Syslog collection agent, the full information visible in the System Log is not included. Resolution This problem has now been fixed, and the information sent to the Syslog agent is the same as in the System Log.
2.0.1		XE-5970	Security	OS Vulnerability in Docker Images Description A vulnerability was detected in the OS in the Docker images. Resolution This issue has now been fixed and the vulnerability removed.
2.0.1		XE-5532	Operator	Unnecessary ECD Restarts Description When updating a WFG in an ECD, the ECD is unnecessarily restarted. Resolution This problem has now been fixed and the ECD will only be restarted when attributes that affect the ECD have been changed.
2.0.1		XE-5777	Couchbase	Support for Encrypted Port in Couchbase Profile Description It was not been possible to set the encryption port in the Couchbase profile. Resolution There is now support to set port numbers and to enable security in the Couchbase profile.

2.0.0

Version	Case ID	Internal ID	Components	Summary
2.0.0	30156	XE-5628	IBM MQ Documentation	Update Classpath Documentation for MQ Server and MQ Client Description For IBM MQ Server and IBM MQ Client, you need only one jar file and that must be installed from the mvn repository. Resolution The documentation now includes the updated jar file and the link from where the jar file can be downloaded from. It is recommended to use the jar version relevant to the MQ service that is being used.
2.0.0		XE-5531	Operator	Old and New Workflow Members Cannot be Mixed Description When mixing new and and existing workflow members in a workflow group in an ECD, the operator goes into an error loop. Resolution This problem has now been fixed.
2.0.0		XE-5504	HTTP/2	Monitoring Functionality Missing in HTTP/2 Client Description The HTTP/2 Client is missing the ability to monitor connection status. Resolution Monitoring connection status is now possible, and two new MIM parameters called Available Servers and Unreachable Servers have been added.
2.0.0		XE-5414	SFTP	SFTP key value not working in MZ10 workflow instance table Description When a user pastes the SFTP private key directly into the workflow table, the value is not readable by the system and the private key is shown as plain text. Resolution This problem has now been fixed. The private key can be entered by clicking on the button with the three dots in the Private Key field in the workflow table and pasting the key into the text area.
2.0.0		XE-5156	HTTP/2 Security Profile	Error While Importing Exports Including HTTP/2 Agents and Security Profile Description Some classes related to Security Profile, HTTP/2 Client, and Server have the wrong version ID. Because of that, importing exported workflows and configurations prepared in the MediationZone 8-track can lead to a faulty import. Resolution Version IDs are now correct and the import logic is improved to handle MediationZone 8 imports properly.
2.0.0		XE-4606	HTTP/2	APL httpRequest - PATCH Request Body not Supported Description While using the APL function httpRequest, the body of PATCH request is not supported. Resolution Support for PATCH request with body is now added.
2.0.0		XE-4905	mzcli User Management	mzcli Can Disable/Enable System Users Description When using mzcli it is possible to disable/enable the system admin users mzadmin and mzk8soperator. Resolution This problem has now been fixed.
2.0.0		XE-5386	Desktop Framework External References	Adding Keys for Empty Properties File in External References Generates Exception Description When configuring External References with a blank Properties File, and adding keys, you get an infinite exception. Resolution This problem has now been fixed, and you will not get an infinite exception.
2.0.0		XE-4420	Diameter Documentation	Information About Diameter in Kubernetes is Missing Description Instructions for how to handle Diameter in Kubernetes clusters is missing from the user documentation. Resolution This problem has now been fixed and this has been described.
2.0.0		XE-4923	PosgreSQL	Postgres Vulnerability Description A vulnerability was discovered in the PostgreSQL JDBC Driver. Resolution The driver has now been upgraded and the vulnerbility removed.
2.0.0		XE-4925	CXF	CXF Vulnerability Description A vulnerability was detected in the CXF version. Resolution CXF has now been upgraded and the vulnerability removed.
2.0.0		XE-5007	3pp	xmlsec Vulernability Description A vulnerability was detected in the xmlsec version. Resolution xmlsec has now been upgraded and the vulnerability removed.
2.0.0		XE-5413	ECS	Oracle Insert ECS_BATCH Has Incorrect Parameter Type Description The recently added insert_time parameter order messes with the errorudr parameter. Resolution The order has been corrected.
2.0.0		XE-5412	SAP CC	SAP CC Client Does Not Handle Failover Of Cluster Nodes Description When using SAPCC cluster if the first node in the profile gets a connection error then the rest of the clusters nodes fail to connect. This was due to an error a connection being cached and then checked if we had a connection. This lead to the application beveling it had a connection when it did not. Resolution Rebuild the connection logic to handle this case.
2.0.0		XE-5329	Access Control	User Group Logging Missing from System Log Description Details logging is missing for user groups add/remove. Resolution It is now have the details logging add/remove user group.
2.0.0		XE-5217	HTTP/2	HTTP/2 Server Unable to Retrieve Header Username of a Request Description The username in the header of a request to the HTTP/2 server could not be retrieved by the server. Resolution This problem is now fixed.
2.0.0		XE-5416	Workflow Bridge	Workflow Bridge in Batch Workflows can not Terminate Due to Deadlock Description Workflow bridge in batch workflows can not terminate due to deadlock, since disconnect is invoked twice. Resolution The extra disconnect is now removed.
2.0.0		XE-4702	ECDeployments	Incorrect ECD Patch Service Behavior Description When apply a service patch, the patch node port overrides the existing entries node port result in wrong behavior. Resolution This issue is fixed, the patch should only apply to the corresponding entry based on port number.