Release Date	08 Dec 2020
Content	Release 13.7.1
Download	Download Blueriq

On this page:

1. Bug fixes

Identifier	Issue	Solution
BQ-11264	CVE-2020-25638 on hibernate-core & CVE-2020-13956 on httpclient was reported on both the runtime and the customerdata service	Both libraries have been updated to the latest version in which the CVEs are fixed.
BQ-11216	CVE-2020-13954 was reported on the Runtime.	The affected library (apache-cxf) was updated to version 3.3.8, which doesn't contain the CVE.
CSD-3498	When generating documentation containing an external flow the Studio server would crash and terminate.	The crash has been resolved and the error handling for rendering images in the documentation generation plugin has been improved to gracefully handle errors instead of terminating the server.
BQ-11070	When opening a branch in the model mapper for the first that it has been opened, an exception would occur in the studio server resulting into a 500 error on the model mapper. This would stop the model mapper from loading.	During the serialization of elements when loading branches, a race condition occurred when serializing both the workspace content and the subscription content. This has been resolved.

2. Upgrade Instructions

There are no specific upgrade instructions for this release.

As a best practice

backup your repository
backup your database before running scripts
backup your spring.config.additional-location directory ([Blueriq installation directory]\Runtime)
backup any config files you have altered under [Blueriq installation directory]\Services

before you start the upgrade.

3. Artifacts

The Blueriq artifacts are available under name: 13.7.1.2226

4. Aquima Libraries

There are no specific Aquima Library updates for this release.

5. Libraries

In this release, the set of third party libraries that is used by Blueriq was updated. When your installation of Blueriq includes custom components (artifacts that do not ship with Blueriq, such as proprietary plugins), those components should be tested for compatibility with these changes.

ArtifactId	GroupId	License	Version in 13.7.0	Version in 13.7.1
cxf-core	org.apache.cxf	Apache License 2.0	3.3.7	3.3.8
cxf-rt-bindings-soap	org.apache.cxf	Apache License 2.0	3.3.7	3.3.8
cxf-rt-bindings-xml	org.apache.cxf	Apache License 2.0	3.3.7	3.3.8
cxf-rt-databinding-jaxb	org.apache.cxf	Apache License 2.0	3.3.7	3.3.8
cxf-rt-frontend-jaxws	org.apache.cxf	Apache License 2.0	3.3.7	3.3.8
cxf-rt-frontend-simple	org.apache.cxf	Apache License 2.0	3.3.7	3.3.8
cxf-rt-transports-http	org.apache.cxf	Apache License 2.0	3.3.7	3.3.8
cxf-rt-ws-addr	org.apache.cxf	Apache License 2.0	3.3.7	3.3.8
cxf-rt-ws-policy	org.apache.cxf	Apache License 2.0	3.3.7	3.3.8
cxf-rt-wsdl	org.apache.cxf	Apache License 2.0	3.3.7	3.3.8
hibernate-core	org.hibernate	LGPL 2.1	5.4.23.Final	5.4.25.Final
hibernate-entitymanager	org.hibernate	LGPL 2.1	5.4.23.Final	5.4.25.Final

ArtifactId	GroupId	License	Version in 3.2.6 (Blueriq 13.7.0)	Version in 3.2.7 (Blueriq 13.7.1)
hibernate-commons-annotations	org.hibernate.common	LGPL 2.1	5.1.0.Final	5.1.2.Final
hibernate-core	org.hibernate	LGPL 2.1	5.4.22.Final	5.4.25.Final
javassist	org.javassist	Apache License 2.0	3.24.0-GA	3.27.0-GA

No changes in the DCM Lists Service

6. Known issues

For an overview of known issue please refer to: Known issues

Space shortcuts

Page tree

1. Bug fixes

2. Upgrade Instructions

3. Artifacts

4. Aquima Libraries

5. Libraries

6. Known issues

Space shortcuts

Page tree

Blueriq 13.7.1 Release Notes

1. Bug fixes

2. Upgrade Instructions

3. Artifacts

4. Aquima Libraries

5. Libraries

6. Known issues