New Service pack 17.0.2 is available for download

The service pack upgraded third parties jars to avoid security vulnerabilities

and fixed few issues related to xap and dih in k8s environment

full release notes document will be added. 


1 person likes this

Hi. Please list what security vulnerabilities are being fixed in this release. Thanks

Spring lib was upgraded to 6.1.10 to overcome cve-2024-22262

Other CVE fixed:  CVE-2021-31684 ,  CVE-2024-25710,CVE-2024-26308 ,  net.minidev:json-smart ,  org.apache.commons:commons-compress 

Issue of automatic start of web-ui with --auto flag was fixed

Added shading for bouncycastle lib in xap common jar

Fix query behavior of tierd storage in case of broadcast table

AntiAfiniti fix for non default namespace in k8s environment

Login or Signup to post a comment