Versions Compared

Old Version 2

changes.mady.by.user Joost Koehoorn

Saved on

compared with

New Version Current

changes.mady.by.user Vincent Jansen

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

Identifier

Component

Issue

Solution

CSD-4377RuntimeDetected CVE-2022-22980Although we do not use any of the vulnerable code we have upgraded the version of spring-data-mongodb which does not contain the vulnerability

CSD-4344

Runtime

When reading an aggregate which contains a user-set unknown multi-valued attribute, the attribute becomes system-set. 

This issue has been resolved, stored user-set unknown attributes are still user-set unknown when reading the aggregate, regardless if it it is multi-valued or single-valued

CSD-4309


If running behind a reverse proxy server, in the development dashboard, some webservice links would not be rewritten to match the proxy server configuration, but they would display the internal URL structure.

This has been fixed.

CSD-4390RuntimeCVE-2022-42004 was discovered for jackson-databind prior to version 2.13.4. For Runtime 15.x, spring-framework has been updated to the latest version where this issue is fixed.Updated jackson-databind to 2.13.4