Monthly Release Notes - December 2021

Jump to:

Automate Boldon James Bytware CCSS
Clearswift Cobalt Strike Core Security Digital Guardian
Document Management (RJS) Globalscape GoAnywhere Halcyon
HelpSystems One IBM Partnership Insite InterMapper
JAMS Powertech Robot Safestone
Sequel Showcase Skybot Tango/04
TeamQuest Titus Vera  

Automate

Automate Desktop and Automate Plus/Ultimate

Version 11.6.10

December 2, 2021

Backwards Compatibility Change
IMPORTANT: In version 11.6.10, Variables containing numeric values with their Variable type set to “Auto” are now treated the same as the Variable type “Number” and no longer as Variable type “Text” (in versions 11.0 – 11.6.0, Variables containing numeric values with their Variable type set to “Auto” were treated the same as Variable type “Text”). This change realigns how the “Auto” Variable type functioned in Automate versions 10 and earlier. If this change causes compatibility issues with your existing Tasks, change the Variable type setting for any affected Variable from “Auto” to “Text.”

New Features
  • Credentials Connections
    • Automate Plus/Ultimate only.

    • The Credentials Connections feature allows you to create and share connections to third-party credential sources that tasks can access without exposing the associated values among all or specific users and/or groups.

Enhancements
  • Added the ability to change the default behavior of declaring a task "failed" if the Agent disconnects during processing to the Default Task Agent Properties Miscellaneous settings.
Fixes
  • The Automate Recorder now correctly displays the green selection border for certain controls.

  • Backups and tasks imported from Automate version 9 to Automate version 11 using the Import Utility no longer fail during the import process.

  • Task Builder no longer crashes if any OCR activity is set to use Tesseract as its engine and Advanced Vector Extensions (AVX) are not supported by the computer's processor.

  • Task items with a Timeout set greater than 10 hours or 1 day no longer display an error when the task runs.

  • The %ExtractFilePath()% expression no longer inserts a drive letter in the path.

  • Text entered on web pages using the Web Browser (Set value) activity is now properly recognized in Selenium-based web browsers.

  • The PDF (Get attachment) activity now correctly recognizes attached files.

  • The IncrementFileName() Function no longer inserts a blank space after text.

  • The Server Management Console's Calendar now displays future workflows and tasks, regardless of regional and language settings.

  • The File System (Get information) activity now correctly validates parameters when the OK button is clicked.

  • The XML (Read node) activity no longer displays "Use existing XML file" in Task Builder Visual mode when Resource is set to Session.

  • The PDF (Set field) activity no longer sets the wrong PDF values in the date and time fields.

  • The Web Browser (Click) activity now properly detects and clicks web page buttons.

  • The Web Browser action now properly highlights and selects multiple items on web pages.

Back to Top

Boldon James

Mac Classifier

Version 3.12.6

December 2021

Enhancements

  • Updated for Microsoft Office 365 16.55

  • Confirmed compatibility with macOS Monterey.

SAFEmail

Version 3.9.0 HF1

December 2021

Enhancements

  • Additional functionality supported for GreenShield Expansion Pack.

Fixes

  • Capability Checker fails to find object if data held in Active Directory in different domain.

Back to Top

Clearswift

Secure Email Gateway

Version 5.4.2

December 21, 2021

  • In response to the recent global security alert (CVE-2021-45105) on Apache Log4j, we have fixed the vulnerability on the affected versions of the Secure Gateway products.

Version 5.4.1

December 17, 2021

New Features

  • SpamAssassin Rules have been enabled under Rspamd. These are an extra set of rules that work to improve the detection of Rspamd, enhancing spam detection rates.

Enhancements

  • Microsoft 365 deployments have been enhanced to make the process of deploying a Secure Email Gateway in conjunction with M365 more seamless and secure. This also reduces the possibility of spoofed messages from other M365 tenants by requiring outbound messages to contain a specific X-header that needs to match with specific values set in the Secure Email Gateway product.

  • Rspamd has been upgraded to 2.7.

  • Management links in Informs now follow PMM configuration (HTTP/HTTPS).

  • The product icon for Secure Email Gateway has been updated.

Fixes

  • Microsoft hosted SMTP servers are correctly configured for Greylisting.

  • If an FTP backup configuration is enabled, the password was previously held in plain text in the file /var/cs-gateway/diag/diag-config.xml. This is now encrypted.

  • The SMTP Inbound Transport service can now be restarted from the Admin UI control button.

  • Computer Graphics Metafile (CGM) files were not available in the Detectable Types selection list within the Detect media types content rule. This has now been resolved.

  • It is now possible to set custom "confirmed"/"suspected" spam detection thresholds for Mailshell. Support has also been added for Rspamd custom thresholds.

  • A fix has been applied so that when running a Connectivity Test for Avira, it no longer erroneously fails and shows servers as unavailable.

  • A fix has been applied so that forwarded message text is no longer truncated at the first special character.

  • When configuring a Redact Text rule for UK postcodes (which consist of multiple parts, e.g. AB1 0CD), only the first portion of the UK postcode was being redacted. This has been fixed.

  • Microsoft Project (.mpp) files were failing to process with errors. This has now been resolved.

  • A fix has been applied to the Sanitize Active Content rule, whereby active content was being incorrectly detected.

  • The 'remove potential embedded data' (anti-steganography) option in the Sanitize Document Content rule is now working on files generated using Xiao Steganography.

  • RBL error responses have now been updated so they no longer block mail that receives a Spamhaus error code.

  • Some macro-enabled Visual Basic .xlsm files were failing to process and causing the message to be held as Malformed Data. This has now been resolved.

  • A fix has been applied to an instance where messages were causing the encryption and policy engine components to crash while the messages were being processed.

  • When using both a Sanitize Message content rule to sanitize URLs, and adding a disclaimer, messages were not being sanitized correctly. This has now been fixed.

  • It was previously not possible to sanitize active content for xlsm created in the recent version of M365. This has now been fixed.

  • In response to the recent global security alerts (CVE-2021-44228 and CVE-2021-45046) on Apache Log4j, we have fixed the vulnerability on the affected versions of the Secure Gateway products.

Secure Exchange Gateway

Version 5.4.2

December 21, 2021

  • In response to the recent global security alert (CVE-2021-45105) on Apache Log4j, we have fixed the vulnerability on the affected versions of the Secure Gateway products.

Version 5.4.1

December 17, 2021

Enhancements

  • Management links in Informs now follow PMM configuration (HTTP/HTTPS).

  • The product icon for Secure Exchange Gateway has been updated.

Fixes

  • Some macro-enabled Visual Basic .xlsm files were failing to process and causing the message to be held as Malformed Data. This has now been resolved.

  • Computer Graphics Metafile (CGM) files were not available in the Detectable Types selection list within the Detect media types content rule. This has now been resolved.

  • If an FTP backup configuration is enabled, the password was previously held in plain text in the file /var/cs-gateway/diag/diag-config.xml. This is now encrypted.

  • When configuring a Redact Text rule, for UK postcodes (which consist of multiple parts, e.g. AB1 0CD), only the first portion of the UK postcode was being redacted. This has now been fixed.

  • It was previously not possible to sanitize active content for xlsm created in the recent version of M365. This has now been fixed.

  • A fix has been applied so that when running a Connectivity Test for Avira, it no longer erroneously fails and shows servers as unavailable.

  • Microsoft Project (.mpp) files were failing to process with errors. This has now been resolved.

  • A fix has been applied to the Sanitize Active Content rule, whereby active content was being incorrectly detected.

  • In response to the recent global security alerts (CVE-2021-44228 and CVE-2021-45046) on Apache Log4j, we have fixed the vulnerability on the affected versions of the Secure Gateway products.

Secure ICAP Gateway

Version 5.4.2

December 21, 2021

  • In response to the recent global security alert (CVE-2021-45105) on Apache Log4j, we have fixed the vulnerability on the affected versions of the Secure Gateway products.

Version 5.4.1

December 17, 2021

New Features

  • A support extract with system status information is now automatically generated by the watchdog whenever a service failure is detected, and more importantly before the ICAP service is restarted.

Enhancements

  • The product icon for Secure ICAP Gateway has been updated.

Fixes

  • Some macro-enabled Visual Basic .xlsm files were failing to process and causing the message to be held as Malformed Data. This has now been resolved.

  • If an FTP backup configuration is enabled, the password was previously held in plain text in the file /var/cs-gateway/diag/diag-config.xml. This is now encrypted.

  • The description for the Drugs URL category previously grouped all "drug" websites into one category. We have created a new Illegal Drugs category which is separate from the medical/pharmaceutical products.​ This default policy now blocks illegal drugs.

  • The Netstar "search & portal" category now maps to both Clearswift Search and Portal categories instead of just the Portal.

  • HTTPS content in tokens, headers and data will be displayed in Informs only when both of the following is true. The functionality to include HTTPS headers, data and diagnostic information is configured in the UI and a support script has been run as documented in the online help.

  • Netstar SSL experienced some errors when updating. This had been resolved by Netstar in a later SDK version than the one being used at the time.

  • Computer Graphics Metafile (CGM) files were not available in the Detectable Types selection list within the Detect media types content rule. This has now been resolved.

  • When configuring a Redact Text rule, for UK postcodes (which consist of multiple parts, e.g. AB1 0CD), only the first portion of the UK postcode was being redacted. This has now been fixed.

  • A fix has been applied so that when running a Connectivity Test for Avira, it no longer erroneously fails and shows servers as unavailable.

  • It was previously not possible to sanitize active content for xlsm created in the recent version of M365. This has now been fixed.

  • When querying the user activity for a particular user, there was too much data per day. This has been fixed and a time range can now be configured for the user activity report. This facilitates for the amount of data to be reduced and prevents the size limit being reached.

  • Microsoft Project (.mpp) files were failing to process with errors. This has now been resolved.

  • A fix has been applied to the Sanitize Active Content rule, whereby active content was being incorrectly detected.

  • In response to the recent global security alerts (CVE-2021-44228 and CVE-2021-45046) on Apache Log4j, we have fixed the vulnerability on the affected versions of the Secure Gateway products.

Back to Top

 

Cobalt Strike

Version: 4.5

December 14, 2021

New Features

  • Added a new Aggressor script hook to allow users to define how fork&run process injection is implemented.

  • Added a new Aggressor script hook to allow users to define how explicit process injection is implemented.

  • Added support for explicit process injection to post-exploitation jobs.

  • Added a "max retry" option which allows a Beacon to exit or increase sleep time after a specified failure count. This applies to HTTP, HTTPS and DNS Beacons.

  • Added a console history command to display a list of commands. Display the entire command history, or specify how many items to display.

  • Added support for the bang (!) character to run a command from the command history list.

  • Added support to the sleep_mask kit for masking heap memory.

Enhancements

  • Increased available space in the sleep_mask kit from 289 to 769 bytes.

  • Increased reserved size in Beacon for a larger User Defined Reflective Loader. A new hook adds an override with a 100kb upper limit (5kb default).

  • x64 checkbox is now checked by default in all dialogs related to payload generation.

  • Made changes to product security and licensing.

  • Improved command history behavior. Commands are now appended to the history in the correct order.

Fixes

  • Fixed an issue where the user defined reflective loader was not being cleaned up in some circumstances. The bootstrap code now supports the stage.cleanup setting.

  • Fixed issue that caused a warning to appear if TeamServer.prop was missing at teamserver startup.

  • Fixed a validation issue on the HTML Attack dialog where the dialog could be submitted without a listener value.

  • Fixed an issue in c2lint where a space at the end of the metadata/prepend transformation caused an error to be reported.

  • Fixed an issue in c2lint where an error was reported if allow_useragents was set but block_useragents wasn't.

  • Fixed an issue where the cp command was mishandling spaces in the path. Spaces are now supported when the path is enclosed with single or double quotes.

  • Fixed an issue where the mv command was mishandling spaces in the path.Spaces are now supported when the path is enclosed with single or double quotes.

  • Fixed an issue where the timestomp command was mishandling spaces in the path. Spaces are now supported when the path is enclosed with single or double quotes.

  • Fixed an error in the phishing dialog where email addresses in the Bounce To field were not being correctly validated.

  • Fixed an issue where reading job output from multiple reads was returning the last read size instead of the total size.

Back to Top

 

Document Management (RJS)

Webdocs Forms Management

Version: 10.1.9

December 15. 2021

New Features

  • New Digital Signatures: Email Authentication

    • Digital Signatures on section controls can now be used for email-assigned workflow steps.

    • Signed sections on email-assigned workflow steps provide an authentication dialog to verify the user's email address and collect the first and last name.

    • Signed sections for both user and email authentication display a consent to digitally sign the message before signing, and a "verified" message with a unique signature ID after signing.

Enhancements

  • Trial tenants no longer allow deployment of forms/workflows to production.

  • An updated development watermark now promotes user awareness and prevents misuse of development forms/workflows.

  • Azure Security Manager now supports Microsoft Graph API (replaces Azure AD Graph API, which will be deprecated in a future release).

  • The Max File Size for Upload Control on frevvo Cloud has increased to 25 MB.

Fixes

  • Log4j has been updated to version 2.16 for CVE-2021-44228.

  • An issue causing the XML Data Sources button to be hidden in the UI has been fixed.

  • The SOLR default port is now limited to localhost only to improve security.

  • An issue causing unavailability of the ‘2/29’ date during leap years in a form escalation assigned to a user role has been fixed.

  • An issue that could cause the submit button to be hidden under certain conditions in mobile browsers has been fixed.

  • An issue preventing arabic text from printing right-to-left (RTL) on PDF Snapshot, and causing some letters appear in the wrong order, has been fixed.

  • CSS class 'f-page-break-inside-avoid' applied to a section with a table inside no longer prints table on next page.

  • Form/workflow Style Settings: Control templates set in Print Header and Print Footer fields now correctly print the control values on PDF Snapshot.

  • Message Control no longer unexpectedly adds blank space in PDF Snapshot.

  • Workflow Style Settings: The FREVVO.PRINT_PAGE_COUNT template now recalculates the total pages on each new form instead of having a single total pages number throughout.

  • Section controls no longer appear slightly wider than other 12-column controls on the PDF Snapshot.

  • Images uploaded in Message controls via the Rich Text Editor are now printed on the PDF Snapshot.

  • Workflows created in v9.2 and uploaded in v10.0.x with Who Can Start the Flow permission set to "Authenticated Users (login required)" no longer gives application error (instead of login screen) when using ‘Link (Email/Web page) share link’.

  • Admin users no longer see "Templates" instead of "Shared Controls" in the left-side menu, and minor grammar corrections have been made.

  • The Login window provided when a user clicks ‘Link (Email/Web page) share link’ no longer shrinks when opened on an iPad, preventing the user from logging in.

  • Umlauts in the file name are no longer displayed as “?” in frevvo after uploading the file via API, resulting in a FileNotFoundException after submitting the form with Filesystem Connector Doc Action.

  • Unhelpful message "Reloading resource with missing content" no longer appears many times in log files.

  • Data API: FormEntry.getSnapshotLink no longer always creates a link for a Flow even when FormEntry is of formType.

  • Users no longer see an endless blue spinner when attempting to perform a particular task from the task list. And, after this, users are also now able to perform other tasks on the task list. This behavior would occur if a precondition was added to a workflow with pending tasks, and that precondition resolved to 'false' causing the pending step(s) to be skipped.

  • A message control that is configured via business rule to display an uploaded image no longer shows a broken image icon on the PDF Snapshot.

  • PDF Snapshot no longer incorrectly shows an uploaded filename as clickable link, and clicking the link no longer directs user to an error page.

  • After an upgrade from v10 to v10.1, the table column headers display on the PDF Snapshot is no longer in a different color.

  • Uploaded files with foreign language or special characters in the filename no longer appear with an encoded filename like "=?UTF-8?...." when emailed via Email Document Action.

  • Arabic text no longer prints left-to-right instead of right-to-left on PDF Snapshot.

  • A problem preventing PDF Snapshot from printing merged signature control on multi-form workflow has been fixed.

  • CLI tutorial .jar file downloads are no longer for older versions.

  • On Premise: frevvo.csrf.protectAll property default value of 'true' no longer causes errors when using the API.

  • HQSQL Database - Creating a user without a role no longer fails and gives error "User could not be added."

  • Deleting an invalid (e.g. previously deleted) user account no longer deletes all submissions from the tenant.

  • LDAP/SAML Tenant Upgrade v7.2 → v9.0 → v10.0 no longer creates an extraneous built-in admin user ("admin1").

  • A problem that caused an API call to fail intermittently due to a connection reset or a socket read timeout as been fixed.

  • Date, Time, and Date/Time controls with the setting Format=Automatic no longer display in the PDF Snapshot as YYYY-MM-DD and military time instead of the locale-specific format when the form is submitted from a tablet or phone.

  • Application Error is no longer shown after SharePoint Connector tenant setup when SharePoint access token length is greater than 1024 characters.

  • PDF snapshot generation no longer fails when there is a printable table control with min and max occurs both set to 0. Steps in affected workflow with an Activity Doc Action Email that includes the PDF snapshot no longer hang on the "Please wait" message.

  • When upgrading from v9 → v10.1, frevvo now connects to License Server over Proxy and the logs show the error "Error creating bean with name 'licenseMonitor'. . .".

  • PDF Snapshot no longer misaligns text past cell boundary when customjs is used to right-align text.

  • An application error shown when attempting to reject a step back to a prior step in the latest Chrome (v94) and Edge browsers has been resolved.

  • Internationalization: Guided Designer Navigation Bar is now translated on Forms and Rules editing modes; Quick Start cards now translated.

  • PDF Snapshot with many pages that takes too long to generate no longer gives the error "Could not generate PDF".

  • frevvo.quickstart.enabled=false property now removes Quick Start graphics on the My Projects page.

  • Users' Task Notification Preference changes’ are now saved for SAML Tenant (Discovery Mode).

  • A section control inside a repeat control that caused an error to display on debug console "Exception while processing AJAX callback: TypeError: Cannot set property 'innerHTML' of null", with controls inside the first repeating section non-functional, has been resolved.

  • Clicking Form Viewer control no longer displays an Application Error if there is an empty ComboBox in the form/workflow.

  • After upgrade to v10.1.8, an issue that prevented Azure SM login from functioning, and showing Application Error "Oops. Something went wrong. . ." has been resolved.

Back to Top

Globalscape

EFT

Version 8.0.7.4

December 04, 2021

Fixes

  • Features from EFT Express and EFT Enterprise have been merged into one EFT, with some features part of "EFT core" and others repackaged into new or existing modules. (For example, EFT Express ESM license activates the Advanced Authentication Modes module when upgrading to Continuum.) Refer to Feature Availability in the EFT online help for details. (If you are upgrading from an earlier EFT version, the features you had previously licensed continue to be available.)

  • A new Enterprise Actions Module (EAM) is used to activate previous Enterprise-only features, such as executing scripts, performing folder and file operations, compressing/decompressing files, subroutines, dataset actions, and REST invocation

  • You can now deregister licenses in EFT. This is used in the event that you are moving EFT to a new computer, the wrong serial number was used on the server, the module was not supposed to be registered on the server or node, or you are moving between perpetual licenses to subscription-based keys.

  • Added new ServerModule enums to activate modules

Enhancements

  • Updated EFT installer (EFT.exe/EFT-nodb.exe) (TFS 380907)

  • The Mobile Transfer Client (MTC) is now part of EFT core.

  • The Secrets functionality is now part of the Cloud Connector module (CCM)

  • The Upload forms feature (for gathering metadata) is now available in the Secure Forms Module (SFM)

  • Each protocol other than FTP requires a separate module (FTPS implicit/explicit is a separate module)

  • The features that were in the security modules (ESM/ASM) have been "repackaged" into the Advanced Authentication Modes Module (for CAC, RADIUS/RSA, SAML) and Regulatory Compliance Module (for GDPR and PCI DSS)

  • The Event Rules modules that were in EFT Express (CCM, FTC, FMM, PGP, TEM) are now modules in the merged EFT platform and provide the same actions and events as before

  • Multifactor authentication (2FA, SMS) has been moved to the HTTPS module

  • The Advanced Workflow Engine (AWE) has been renamed the Advanced Workflows Module (AWM)

Fixes

  • Fixed an issue where AWE 10 was no longer writing to individual csv logs (TFS 381793, Case 91337)

  • Fixed an issue where AWE 10 was unable to connect to SharePoint using TLS 1.0 (TFS 381795, Case 91542)

  • Fixed an issue where AWE 10 was logging to automatetasklist.txt (TFS 381794, Case 91337, 91542, 83445)

Back to Top

GoAnywhere

Version 6.8.6

December 16, 2021

  • Updated Apache Log4j from version 2.13.3 to 2.16.0.

GoAnywhere Agents

Version 1.6.5

December 26, 2021

  • Updated Apache Log4j from version 2.13.3 to 2.17.0.

GoAnywhere Gateway

Version 2.8.4

December 16, 2021

  • Updated Apache Log4j from version 2.14.0 to 2.16.0.

Back to Top

HelpSystems One

Version 1.1.2

December 22, 2021

  • Updated to log4j 2.17 to resolve vulnerabilities.

Version 1.1.1

December 16, 2021

  • Resolved Log4j2 CVE-2021-44228 vulnerability.

Back to Top

IBM Partnership

Backup, Recovery, and Media Services for IBM i (BRMS)

Version: PTF 7.4 SI77382, 7.3 SI77381

December 15, 2021

Enhancements

In version 7.3 and later:

  • Append volume selection selects volumes having the same media policy retention requested by the backup.

  • A SQL service that provides a view of the control group backup status is available for BRMS.

  • BRMS has been enhanced to manage BRMS SQL services during FlashCopy processing.

Fixes

In version 7.3 and later:

  • Issue where WRKMEDIBRM restores of library objects but may not create the requested restore *OUTFILE set in the recovery policy was fixed.

  • Fixed issue where BRMS parallel backups of an object list using more than 4 stand-alone parallel devices may fail with MSGSQL0100 and MSGCPF6708.

  • BRMS turnkey created virtual device descriptions now are refreshed by the command INZBRM OPTION(*DEVICE) even when they are no longer in use.

  • Email issue - notifications may not be sent when using the BRMS 'from address' function with installed national language versions other than English was fixed.

PowerHA SystemMirror for IBM i

Version 7.4 HA 4.6.1, PTF SI77788 (plus Language PTFs)
Included in PTF Group SF99666 740 High Availability for IBM i - level 8

December 8, 2021

New Features

  • New device type *IPA supports switching IP addresses with no associated independent auxiliary storage pool device within device CRGs.

  • Switchover progress monitoring:

    • Switchover progress monitoring now is integrated with the CHGCRGPRI command to automatically display progress during a switchover.

    • A new action required step indicates when a job queue is held or a subsystem is inactive.

  • SVC FlachCopy automation:

    • SVC FlashCopy automatically varies off the target ASPs when ending a FlashCopy session or performing an incremental FlashCopy.

    • SVC FlashCopy now uses named mappings on the storage device for simplified identification.

Enhancements

  • Additional simplified commands with F4 prompting, including:

    • Support for automatically generating an administrative domain name on the CRTCAD command with a new default value of *GEN for the administrative domain name.

    • A new ADMDMN parameter on the ADDCLUNODE command automatically adds a new cluster node to an existing administrative domain by default.

    • Prompting on the STRSVCSSN command for ASPCPY and CRG parameters.

    • Simplification of the DSPSVCSSN, CHGSVCSSN, and ENDSVCSSN commands including prompting for the SSN parameter.

    • Simplified CRG command handling of secondary IASPs. The configuration object online parameter is now ignored for secondary IASPs and automatically set to *PRIMARY.

    • The CFGGEOMIR command now shows a list of ASP devices when prompting on the command.

  • Performance improvements for SVC-based storage communication reduce the time required to perform operations.

  • Performance improvements related to temporary user spaces and user queues with up to a 48% decrease in CPU usage, and up to a 90% decrease in the number of user spaces created for certain PowerHA operations.

Fixes

  • SVC FlashCopy consistency improvements when at the target of the Metro Mirror or a non-cycling Global Mirror relationship. In these configurations, the replication is suspended briefly during the FlashCopy process.

  • SAVHAPCY and RSTHAPCY commands now consider no policies selected a success and returns a file with 0 records instead of an error.

  • DSPHAPCY now returns a successful message even if no policies are found.

  • Resolved an issue where a standard edition cluster received a licensing error for enterprise edition on the PowerHA GUI.

  • Simplified PowerHA license error messages with messages correctly indicating what option and if the error is related to a required option not being installed, over the usage limit, or an expired grace period.

  • Resolved an issue where suspend was shown as an available action for a session which was already suspended when using interactive change session screens.

  • Improved messages and logging from PowerHA automated health checks related to the replication state, including improved distinction when replication is reversed or detached.

  • Improved error message when attempting to perform a STRCRG with LUN-Level Switching that is incorrectly configured.

  • Resolved an issue that could cause performance problems during a RSTLICPGM.

NOTE: PTF update SI77788 requires one or more associated language PTFs. To determine if additional languages you have installed in your environment require a requisite MRI PTF, consult the table of language PTFs in the release cover letter at IBM Support.
Version 7.2/7.3 HA 3.8.0, PTF SI77845 (plus Language PTFs)
Included in PTF Groups:
  • SF99876 730 High Availability for IBM i - level 16
  • SF99776 720 High Availability for IBM i - level 19

December 8, 2021

New Features

  • SVC FlashCopy automation:

    • SVC FlashCopy automatically varies off the target ASPs when ending a FlashCopy session or performing an incremental FlashCopy.

    • SVC FlashCopy now uses named mappings on the storage device for simplified identification.

Enhancements

  • Additional simplified commands with F4 prompting, including:

    • Support for automatically generating an administrative domain name on the CRTCAD command with a new default value of *GEN for the administrative domain name.

    • A new ADMDMN parameter on the ADDCLUNODE command automatically adds a new cluster node to an existing administrative domain by default.

    • Prompting on the STRSVCSSN command for ASPCPY and CRG parameters.

    • Simplification of the DSPSVCSSN, CHGSVCSSN, and ENDSVCSSN commands including prompting for the SSN parameter.

    • Simplified CRG command handling of secondary IASPs. The configuration object online parameter is now ignored for secondary IASPs and automatically set to *PRIMARY.

    • The CFGGEOMIR command now shows a list of ASP devices when prompting on the command.

  • Performance improvements for SVC-based storage communication reduce the time required to perform operations.

  • Performance improvements related to temporary user spaces and user queues with up to a 48% decrease in CPU usage, and up to a 90% decrease in the number of user spaces created for certain PowerHA operations.

Fixes

  • SVC FlashCopy consistency improvements when at the target of the Metro Mirror or a non-cycling Global Mirror relationship. In these configurations, the replication is suspended briefly during the FlashCopy process.

  • SAVHAPCY and RSTHAPCY commands now consider no policies selected a success and returns a file with 0 records instead of an error.

  • DSPHAPCY now returns a successful message even if no policies are found.

  • Resolved an issue where a standard edition cluster received a licensing error for enterprise edition on the PowerHA GUI.

  • Simplified PowerHA license error messages with messages correctly indicating what option and if the error is related to a required option not being installed, over the usage limit, or an expired grace period.

  • Resolved an issue where suspend was shown as an available action for a session which was already suspended when using interactive change session screens.

  • Improved messages and logging from PowerHA automated health checks related to the replication state, including improved distinction when replication is reversed or detached.

  • Improved error message when attempting to perform a STRCRG with LUN-Level Switching that is incorrectly configured.

  • Resolved an issue that could cause performance problems during a RSTLICPGM.

NOTE: PTF update SI77845 requires one or more associated language PTFs. To determine if additional languages you have installed in your environment require a requisite MRI PTF, consult the table of language PTFs in the release cover letter at IBM Support.

There are currently no updates.

Back to Top

Insite

Version 3.06

December 21, 2021

  • Updated to log4j 2.17 to resolve vulnerabilities.

Version 3.05.03

December 14, 2021

  • Resolved Log4j2 CVE-2021-44228 vulnerability.

  • Improved performance.

  • Fixed issue with Robot Report not saving to PC due to invalid characters in name.

Back to Top

Powertech

BoKS Control Center

Version 8.0.0.3

December 22, 2021

  • Updated Jetty dependency (CVE-2021-28169, CVE-2021-34429).

  • Updated Apache Wicket dependency (CVE-2021-23937).

Version 7.2.0.2

December 17, 2021

  • Removed unused Log4j2 dependency (CVE-2021-44228, CVE-2021-45046).

  • Updated Jetty dependency (CVE-2021-28169, CVE-2021-34429).

  • Updated Apache Wicket dependency (CVE-2021-23937).

BoKS Web Services Interface

Version 7.2.0.5

December 22, 2021

  • Updated Jetty dependency (CVE-2021-28165, CVE-2020-27223, CVE-2021-28169).

Version 6.7.0.2

December 22, 2021

  • Updated Jetty dependency (CVE-2021-28165, CVE-2020-27223, CVE-2021-28169).

Version 8.0.0.4

December 17, 2021

  • Removed unused Log4j2 dependency (CVE-2021-44228, CVE-2021-45046).

  • Updated Jetty dependency (CVE-2021-28165, CVE-2020-27223, CVE-2021-28169).

BoKS Reporting Services

Version 8.1.0.1

December 15, 2021

  • Updated Log4j2 dependency to version 2.16.0 (CVE-2021-44228, CVE-2021-45046).

  • Updated Jetty dependency to version 9.4.44 (CVE-2021-28165).

  • Updated Thymeleaf dependency to 3.0.14 (CVE-2021-43466).

Version 8.0.0.6

December 15, 2021

  • Updated Log4j2 dependency to version 2.16.0 (CVE-2021-44228, CVE-2021-45046).

  • Updated Jetty dependency to version 9.4.44 (CVE-2021-28165).

  • Updated Thymeleaf dependency to 3.0.14 (CVE-2021-43466).

Version 7.2.0.7

December 15, 2021

  • Updated Log4j2 dependency to version 2.16.0 (CVE-2021-44228, CVE-2021-45046).

  • Updated Jetty dependency to version 9.4.44 (CVE-2021-28165).

  • Updated Thymeleaf dependency to 3.0.14 (CVE-2021-43466).

BoKS Manager

Version: 8.1 (version update)

December 2, 2021

New Features
  • Support is added for Debian 11 (Server Agent only).

  • BoKS 8.1 has been qualified to run as a Master, Replica or Server Agent on Amazon Linux 2 (RPM package only: the RPM for Red Hat 7 must be used).

Fixes

  • The legacy authentication protocol for RSA SecurID is deprecated and may not be included in future versions.

Powertech Antivirus

Version 6.01

December 21, 2021

  • The Apache Log4j JNDI vulnerability has been addressed by updating to 2.16.0.

Back to Top

Robot

Robot Console

Version 7.08

December 2, 2021

  • Fixed console-module.jar build issue.

Robot HA

Version 13.04

December 1, 2021

  • New Synchronization Attributes Report provides list of synchronization attributes and system information.

  • Up to a 20% reduction in CPU utilization and 49% reduction of IO for the target system remote journal apply jobs.

  • Fixed issue with directory sync errors caused by lack of authority.

  • Fixed issue with syncing authority lists in directory.

  • Authority errors now correctly removed when object no longer exists.

  • Improved format for output of CHKLIBRSF command.

  • Fixed issue with Group Apply job is not getting restarted when the sequence number is reset.

  • CHKATTRSF command processing now handles library attributes with multiple sets properly.

  • CHKLIBRSF now identifies setup issues when an object is not journaled correctly.

Back to Top

 

Skybot (to avoid a missing link error)

Titus

Titus Classification Suite for Windows 2021.3

Version 2021.3

December 2021

New Features

  • Support for Titus Client Extension for Data Detection Engine on-premises - The Data Detection Engine (DDE) is executed by a Titus-defined Policy which returns properties, such as Score and Sensitivity, that can you use to apply to a Custom X-Header or to classify documents and email messages. The Data Detection Engine provides a rating based on the severity of the detected information. It uses artificial intelligence to detect Personally Identifiable Information (PII), Personally Identifiable Financial Information (PIFI) and Protected Health Information (PHI) in messages and documents.

Enhancements

  • Removed SQL Express installation option - SQL Express 2019 has a minimum platform version of Windows 10\Win Server 2016. TCS for Windows still supports older server platforms, so the option to install SQL Express as part of TCS Administration Console installation was removed from the product.

  • Improved support for usage of dots (.) and underscores (_) in Dynamic Functions.

Fixes

  • Titus Classification for Office add-in caused issues when saving text files within a macro.

  • Titus Classification client – Portion Marking dialog is missing text.

  • Titus Classification client – Existing favorites were removed during configuration update if host applications were running

    NOTE:

    • Changes made to configuration name, field display names, schema fields or values enabled/disabled, are not dynamically displayed if the application is open when the new configuration is consumed. These changes are displayed when the host application is reloaded.

    • Changes made to fields, values, and conditionality may impact existing Favorites rendering them invalid

  • Titus Classification for Office Add-in would affect the current document returned during macro execution when using application.customizationcontext.

  • Titus Classification for Office – usage parameters when adding Custom properties were affected by a previous fix. The fix was reverted. See details for Custom property usage in the Titus Policy Authoring Guide.

Illuminate 2021.2

Version 2021.2

December 2021

New Features
  • Support for Titus Client Extension for Data Detection Engine on-premises - The Data Detection Engine (DDE) is executed by a Titus-defined Policy which returns properties, such as Score and Sensitivity, that can you use to apply to a Custom X-Header or to classify documents and email messages. The Data Detection Engine provides a rating based on the severity of the detected information. It uses artificial intelligence to detect Personally Identifiable Information (PII), Personally Identifiable Financial Information (PIFI) and Protected Health Information (PHI) in messages and documents.
Enhancements

  • Changes to Dropbox API and SDKs have been implemented in Illuminate so that applications can generate and refresh tokens more easily The Dropbox API now supports more granular permission scopes.

Fixes

  • Add SharePoint (OnPrem) Metadata not working for Illuminate.

  • Custom properties not working in Illuminate.

  • On SharePoint, file was modified by changes to the service account used to scan.

Back to Top

Vera

Version 3.18.3

December 2021

Updates

  • Updated Apache Log4j2 version to 2.17.0 (NVD-CVE-2021-44228 and CVE-2021-45105 (nist.gov)).

Version 3.18.2

December 2021

Fixes

  • Added fixes to the Vera Infrastructure to address the zero-day vulnerability related to Apache Log4j2 (NVD - CVE-2021-44228 (nist.gov)).

Back to Top