Hi. Please list what security vulnerabilities are being fixed in this release. Thanks
Spring lib was upgraded to 6.1.10 to overcome cve-2024-22262
Other CVE fixed: CVE-2021-31684 , CVE-2024-25710,CVE-2024-26308 , net.minidev:json-smart , org.apache.commons:commons-compress
Issue of automatic start of web-ui with --auto flag was fixed
Added shading for bouncycastle lib in xap common jar
Fix query behavior of tierd storage in case of broadcast table
AntiAfiniti fix for non default namespace in k8s environment
Ester Atzmon
The service pack upgraded third parties jars to avoid security vulnerabilities
and fixed few issues related to xap and dih in k8s environment
full release notes document will be added.
1 person likes this