You are viewing the documentation for Blueriq 14. Documentation for other versions is available in our documentation directory.
Identifier |
Component |
Issue |
Solution |
---|---|---|---|
BQ-20832 |
|
CVE-2023-33546 is reported on the Janino library which is used by older versions of the runtime & CDS |
The Janino library has been upgraded to the latest version in which the CVE was fixed. |
CSD-4751 |
JAVA Runtime |
A session would sometimes not be written to Redis yet while retrieving it after a redirect. This happens if the legacy endpoints /server/start/* are used in combination with Redis and JBoss EAP. This only happens in JBoss due to a difference in the order of marking the request response as complete between Tomcat and JBoss. |
We now manually flush the session after session creation to make sure that the flush happens before the marking the request as finished. |