You are viewing the documentation for Blueriq 14. Documentation for other versions is available in our documentation directory.

1. Upgrade Instructions

For this release there are not specific upgrade instructions.

As a best practice

  • backup your repository
  • backup your database before running scripts
  • backup your spring.config.additional-location directory ([Blueriq installation directory]\Runtime)
  • backup any config files you have altered under [Blueriq installation directory]\Services

before you start the upgrade.

2. Artifacts

The Blueriq artifacts are available under name: 14.11.37.6508

This release includes these versions of Blueriq components with a separate life cycle:

Component

Version

Customer Data Service 3.4.25
DCM Lists Service 2.0.11
Material Theme 1.1.3
Development tools frontend 1.3.1
Document Renderer 1.1.1

3. Libraries



ArtifactId

GroupId

License

Version in 14.11.36

Version in 14.11.37

logback-classic

ch.qos.logback

Eclipse Public License - v 1.0

1.2.12

1.2.13

logback-core

ch.qos.logback

Eclipse Public License - v 1.0

1.2.12

1.2.13


4. Retirement announcement

For this release there are no specific retirement announcements.

For a full list of deprecated features, go to Deprecated features.

5. Bug fixes

Identifier

Component

Issue

Solution

BQ-21733

 

CVE-2023-6378 has been detected on the logback-core dependency.

Updated logback-core to the latest version.

BQ-21671

 

CVE-2023-34055 has been reported on Spring Boot. Also, CVE-2023-34053 has been reported on Spring Boot 3.x, which is used by R16.

For R15 & R16, Spring Boot has been upgraded to the latest version. For lower versions, there is no fix available since the underlying Spring Boot version is no longer supported. Upgrade to a newer Blueriq version. In the meantime, have a look at the temporary workaround described in [

https://spring.io/security/cve-2023-34055

].

6. Known issues

For an overview of known issue please refer to: Known issues


  • No labels