Note that Publisher 4 is no longer supported. Please try to upgrade to the newest version.
Bugfixes
Incident number | Summary (problem description) | Resolution |
|---|---|---|
| PUB-302 | CVE-2021-22112 detected in spring-security-core 5.0.16.Release | resolved by upgrading to 5.0.19.Release |
| PUB-290 | Various CVE's detected: CVE-2020-17521, CVE-2020-8908, CVE-2020-29242, CVE-2020-29243, CVE-2020-29244, CVE-2020-29245 | resolved by upgrading to groovy-2.4.21 and guava-30.1-jre |
| PUB-288 | CVE-2020-5421, CVE-2020-13956, CVE-2020-25638 spring-core and spring-tx | resolved by upgrading to 5.1.18.Release |
| PUB-272 | CVE-2020-5421 detected in springframework 5.1.13.Release CVE-2020-13956 detected in httpcore 4.4.10 | resolved by upgrading to 5.1.16.Release resolved by upgrading httpcore to 4.4.14 and httpclient to 4.5.13 |
| PUB-256 | CVE-2012-5408 detected in spring-security-core 5.0.12.Release | resolved by upgrading to 5.0.16.Release |
Upgrade Instructions
There are no upgrade instructions.
3rd Party Libraries
There is also a page available which lists all the 3rd party libraries that are used in the Publisher. See for more information: Blueriq Publisher 4 libraries. For a list of all known vulnerabilities please view Blueriq Publisher Vulnerabilities. -
Overview
Content Tools