You are viewing the documentation for Blueriq 15. Documentation for other versions is available in our documentation directory.
2. Upgrade Instructions
There are no specific upgrade instructions for this release.
As a best practice
- backup your repository
- backup your database before running scripts
- backup your
spring.config.additional-location
directory ([Blueriq installation directory]\Runtime) - backup any config files you have altered under [Blueriq installation directory]\Services
before you start the upgrade.
3. Artifacts
The Blueriq artifacts are available under name: 15.13.29.2510
This release includes these versions of Blueriq components with a separate life cycle:
Component |
Version |
---|---|
Customer Data Service | 4.1.18 |
DCM Lists Service | 2.4.13 |
Material Theme | 1.1.11 |
Development tools frontend | 1.5.6 |
DCM Maintenance App | 2.1.32 |
Audit Consumer | 0.1.19 |
DCM Dashboard Service | 0.1.14 |
Gateway Service | 0.1.21 |
Document Renderer | 1.1.2 |
4. Aquima Libraries
For this release, the AquimaLibrary has been updated.
5. Libraries
ArtifactId |
GroupId |
License |
Version in 15.13.28 |
Version in 15.13.29 |
---|---|---|---|---|
org.ow2.asm |
9.5 |
9.7 |
||
org.apache.cxf |
3.5.8 |
3.5.9 |
||
org.apache.cxf |
3.5.6 |
3.5.9 |
||
org.apache.cxf |
3.5.6 |
3.5.9 |
||
org.apache.cxf |
3.5.6 |
3.5.9 |
||
org.apache.cxf |
3.5.6 |
3.5.9 |
||
org.apache.cxf |
3.5.6 |
3.5.9 |
||
org.apache.cxf |
3.5.6 |
3.5.9 |
||
org.apache.cxf |
3.5.6 |
3.5.9 |
||
org.apache.cxf |
3.5.6 |
3.5.9 |
||
org.apache.cxf |
3.5.6 |
3.5.9 |
6. Retirement announcement
There are no specific retirement announcements.
For a full list of deprecated features, go to Deprecated features.
7. Bug fixes
Identifier |
Component |
Issue |
Solution |
---|---|---|---|
BQ-23584 |
Java Runtime |
The XSS blacklist filter could fail to detect some patterns that may be considered potentially harmful. |
The XSS blacklist filtering has been improved. |
BQ-23557 |
Java Runtime |
Three CVE's (CVE-2024-29736, CVE-2024-32007, CVE-2024-41172) have been reported on Apache CXF on versions older than 4.0.5, 3.6.4 and 3.5.9 |
Updated Apache CXF to the latest patch version. |
CSD-5375 |
Java Runtime |
Input values containing backslash-escaped zeroes would inadvertently be interpreted as null bytes in the XSS filtering layer, even if the original input value is not otherwise determed to be malicious. |
The XSS filtering has been improved to better account for null bytes that are a result of canonicalization. |
CSD-5385 |
Encore |
Start and Message event nodes in Processes have a Message event field. While this field is required in the Runtime, it was optional in Encore. This may cause errors in the Runtime while running a model. |
A validation has been added to both types of Message event fields. Encore will display a message when a Message event is not provided. |
8. Known issues
For an overview of known issue please refer to: Known issues