What's new and changed in Common core services

Common core services updates can include new features and fixes. Releases are listed in reverse chronological order so that the latest release is at the beginning of the topic.

You can see a list of the new features for the platform and all of the services at What's new in IBM Software Hub.

IBM Software Hub Version 5.1.3

A new version of Common core services was released in April 2025 with IBM® Software Hub 5.1.3.

Operand version: 10.3.0

This release includes the following changes:

Updates
The following updates were introduced in this release:
  • When you run SELECT statements for generic JDBC connections, you can now use the following table properties: column_name and column_label.
  • For Apache Impala connections, you can now use the random sampling option to generate sample data for the connection.
  • For FTP connections, you can now add an SSL certificate host to validate the connections.
Customer-reported issues fixed in this release
For a list of customer-reported issues that were fixed in this release, see the Fix List for IBM Cloud Pak® for Data on the IBM Support website.
Security issues fixed in this release
The following security issues were fixed in this release:

RHSA-2025:3631, RHSA-2025:1443, RHSA-2025:1350

CVE-2025-30204, CVE-2025-29923, CVE-2025-27516, CVE-2025-24813, CVE-2025-23085, CVE-2025-23083, CVE-2025-1094

CVE-2024-9287, CVE-2024-8088, CVE-2024-6345, CVE-2024-6232, CVE-2024-50602, CVE-2024-4741, CVE-2024-4603, CVE-2024-40635, CVE-2024-3596, CVE-2024-26462, CVE-2024-26461, CVE-2024-26458, CVE-2024-2236, CVE-2024-21538, CVE-2024-12797, CVE-2024-12085, CVE-2024-11187, CVE-2024-11168, CVE-2024-10979, CVE-2024-10978, CVE-2024-10977, CVE-2024-10976, CVE-2024-10963, CVE-2024-10041, CVE-2024-0450

CVE-2023-52977, CVE-2023-3640

CVE-2022-49043, CVE-2022-40897

CVE-2021-3903

CVE-2020-36386, CVE-2020-11023

CVE-2019-12900

IBM Software Hub Version 5.1.2

A new version of Common core services was released in March 2025 with IBM Software Hub 5.1.2.

Operand version: 10.2.0

This release includes the following changes:

Updates
The following updates were introduced in this release:
  • You can now set the Timezone parameter for the Time function in file-based connectors for the following formats:
    • Delimited
    • CSV
    • XML
    • JSON
    • Avro
  • You can now add a random sampling option to the sampling property for the following connectors:
    • Microsoft Azure SQL Database
    • Microsoft Azure Synapse Analytics
    • Microsoft SQL Server
  • You can now add the query timeout interaction property to the following connectors:
    • Amazon S3
    • Apache Hadoop Distributed File System
    • Box
    • Data Virtualization Manager connector cloud object storage
    • Dropbox
    • FTP (remote file system)
    • Generic S3
    • Google Cloud Storage
    • Microsoft Azure Blob Storage
    • Microsoft Azure Data Lake Storage
    • Microsoft Azure File Storage
    • MinIO
    • Presto
    • IBM Cloud Object Storage
    • SAP IQ
    • Storage volume
Issues fixed in this release
The following issues were fixed in this release:
Customer-reported issues fixed in this release
For a list of customer-reported issues that were fixed in this release, see the Fix List for IBM Cloud Pak for Data on the IBM Support website.
Security issues fixed in this release
The following security issues were fixed in this release:

CVE-2025-25290, CVE-2025-25289, CVE-2025-25288, CVE-2025-25285, CVE-2025-23184, CVE-2025-22866

CVE-2024-9143, CVE-2024-8096, CVE-2024-6501, CVE-2024-6387, CVE-2024-6197, CVE-2024-57699, CVE-2024-52798, CVE-2024-52531, CVE-2024-47535, CVE-2024-45490, CVE-2024-45341, CVE-2024-45338, CVE-2024-45336, CVE-2024-41172, CVE-2024-32021, CVE-2024-32020, CVE-2024-32007, CVE-2024-29736, CVE-2024-28182, CVE-2024-27316, CVE-2024-24791, CVE-2024-24790, CVE-2024-12797, CVE-2024-11831

CVE-2023-52425, CVE-2023-45853, CVE-2023-44487, CVE-2023-28320, CVE-2023-27538, CVE-2023-27536, CVE-2023-27535

CVE-2022-41903, CVE-2022-40897, CVE-2022-23521, CVE-2022-1271

CVE-2021-3200, CVE-2021-22923, CVE-2021-22922, CVE-2021-22918

CVE-2020-11023

CVE-2019-5436, CVE-2019-3823, CVE-2019-3822, CVE-2019-16163, CVE-2019-13118, CVE-2019-13117, CVE-2019-12900, CVE-2019-11068

CVE-2018-16890, CVE-2018-16842, CVE-2018-16840, CVE-2018-16839, CVE-2018-0737, CVE-2018-0732

CVE-2017-9050, CVE-2017-9048, CVE-2017-9047, CVE-2017-7375, CVE-2017-3732, CVE-2017-3731, CVE-2017-18258, CVE-2017-0663

CVE-2016-9318, CVE-2016-8625, CVE-2016-8624, CVE-2016-8623, CVE-2016-8622, CVE-2016-8621, CVE-2016-8619, CVE-2016-8618, CVE-2016-8617, CVE-2016-8616, CVE-2016-8615, CVE-2016-8610, CVE-2016-7141, CVE-2016-7056, CVE-2016-6306, CVE-2016-6302, CVE-2016-5420, CVE-2016-5419, CVE-2016-5131, CVE-2016-4658, CVE-2016-4472, CVE-2016-4449, CVE-2016-4448, CVE-2016-4447, CVE-2016-2842, CVE-2016-2178, CVE-2016-2109, CVE-2016-2108, CVE-2016-2107, CVE-2016-2106, CVE-2016-2105, CVE-2016-1840, CVE-2016-1839, CVE-2016-1838, CVE-2016-1837, CVE-2016-1836, CVE-2016-1835, CVE-2016-1834, CVE-2016-1833, CVE-2016-1762, CVE-2016-0800, CVE-2016-0799, CVE-2016-0797, CVE-2016-0705, CVE-2016-0704, CVE-2016-0703, CVE-2016-0702

CVE-2015-8241, CVE-2015-7942, CVE-2015-7941, CVE-2015-7497, CVE-2015-4000, CVE-2015-3216, CVE-2015-3196, CVE-2015-3195, CVE-2015-3194, CVE-2015-0293, CVE-2015-0209, CVE-2015-0206, CVE-2015-0205, CVE-2015-0204

IBM Software Hub Version 5.1.1

A new version of Common core services was released in February 2025 with IBM Software Hub 5.1.1.

Operand version: 10.1.0

This release includes the following changes:

Updates
The following updates were introduced in this release:
  • You can use the table actions append, create, and truncate for the IBM watsonx.data™ connector.
  • You can use IBM Storage Scale and Google Cloud Storage for the IBM watsonx.data connector.
  • You can use the HTTP Proxy option in the Google Cloud Storage and Google BigQuery connectors.
  • You can choose to secure communication for Microsoft Azure Data Lake Storage connectors.
  • You can use the API key authentication for the IBM Cognos® Analytics connector.
  • You can specify batch sizes for when the Microsoft Azure Databricks data source is the target.
  • You can specify the part size for both source and target for the following connectors:
    • Microsoft Azure Blob Storage
    • Microsoft Azure File Storage
    • MinIO
    • IBM Cloud Object Storage
    • Google Cloud Storage
    • Generic Amazon S3
  • You can now support sampling in the IBM Db2 Warehouse connector.
  • You can now add the random sampling option to the Db2 and Db2 Warehouse connectors.
Customer-reported issues fixed in this release
For a list of customer-reported issues that were fixed in this release, see the Fix List for IBM Cloud Pak for Data on the IBM Support website.
Security issues fixed in this release
The following security issues were fixed in this release:

CVE-2025-24790, CVE-2025-24789

CVE-2024-9287, CVE-2024-8088, CVE-2024-7006, CVE-2024-6501, CVE-2024-6232, CVE-2024-56337, CVE-2024-56326, CVE-2024-56201, CVE-2024-55565, CVE-2024-54534, CVE-2024-54508, CVE-2024-54505, CVE-2024-54502, CVE-2024-54479, CVE-2024-53122, CVE-2024-52804, CVE-2024-52532, CVE-2024-52530, CVE-2024-51744, CVE-2024-50612, CVE-2024-50379, CVE-2024-50226, CVE-2024-50192, CVE-2024-50154, CVE-2024-50142, CVE-2024-50125, CVE-2024-50124, CVE-2024-50110, CVE-2024-50099, CVE-2024-49949, CVE-2024-48948, CVE-2024-47764, CVE-2024-47615, CVE-2024-47607, CVE-2024-47538, CVE-2024-4741, CVE-2024-47175, CVE-2024-46824, CVE-2024-46695, CVE-2024-4603, CVE-2024-45020, CVE-2024-45018, CVE-2024-44970, CVE-2024-44309, CVE-2024-44296, CVE-2024-44244, CVE-2024-44187, CVE-2024-44185, CVE-2024-43888, CVE-2024-43866, CVE-2024-43865, CVE-2024-43842, CVE-2024-42283, CVE-2024-42271, CVE-2024-42245, CVE-2024-42226, CVE-2024-42141, CVE-2024-42132, CVE-2024-41092, CVE-2024-41077, CVE-2024-41058, CVE-2024-41057, CVE-2024-40945, CVE-2024-40919, CVE-2024-40913, CVE-2024-40866, CVE-2024-39471, CVE-2024-39276, CVE-2024-38827, CVE-2024-38820, CVE-2024-38819, CVE-2024-38816, CVE-2024-38635, CVE-2024-38632, CVE-2024-38564, CVE-2024-38555, CVE-2024-36974, CVE-2024-36967, CVE-2024-36945, CVE-2024-36940, CVE-2024-36939, CVE-2024-36933, CVE-2024-36927, CVE-2024-36917, CVE-2024-36905, CVE-2024-36902, CVE-2024-36901, CVE-2024-36896, CVE-2024-36882, CVE-2024-36881, CVE-2024-3661, CVE-2024-36010, CVE-2024-36006, CVE-2024-35983, CVE-2024-35979, CVE-2024-3596, CVE-2024-35959, CVE-2024-35957, CVE-2024-35954, CVE-2024-35952, CVE-2024-35950, CVE-2024-35947, CVE-2024-35946, CVE-2024-35944, CVE-2024-35939, CVE-2024-35938, CVE-2024-35930, CVE-2024-35925, CVE-2024-35924, CVE-2024-35923, CVE-2024-35912, CVE-2024-35905, CVE-2024-35904, CVE-2024-35900, CVE-2024-35894, CVE-2024-35892, CVE-2024-35888, CVE-2024-35880, CVE-2024-35877, CVE-2024-35876, CVE-2024-35872, CVE-2024-35869, CVE-2024-35867, CVE-2024-35866, CVE-2024-35864, CVE-2024-35863, CVE-2024-35862, CVE-2024-35861, CVE-2024-35855, CVE-2024-35854, CVE-2024-35853, CVE-2024-35847, CVE-2024-35840, CVE-2024-35838, CVE-2024-35835, CVE-2024-35827, CVE-2024-35824, CVE-2024-35814, CVE-2024-35810, CVE-2024-35809, CVE-2024-35801, CVE-2024-35795, CVE-2024-35787, CVE-2024-32002, CVE-2024-28863, CVE-2024-27410, CVE-2024-27404, CVE-2024-27395, CVE-2024-27048, CVE-2024-27042, CVE-2024-27038, CVE-2024-27025, CVE-2024-27017, CVE-2024-27014, CVE-2024-27013, CVE-2024-27011, CVE-2024-27010, CVE-2024-26989, CVE-2024-26976, CVE-2024-26975, CVE-2024-26973, CVE-2024-26964, CVE-2024-26962, CVE-2024-26960, CVE-2024-26958, CVE-2024-26940, CVE-2024-26939, CVE-2024-26938, CVE-2024-26937, CVE-2024-26934, CVE-2024-26933, CVE-2024-26928, CVE-2024-26924, CVE-2024-26921, CVE-2024-26907, CVE-2024-26906, CVE-2024-26903, CVE-2024-26901, CVE-2024-26894, CVE-2024-26892, CVE-2024-26878, CVE-2024-26872, CVE-2024-26863, CVE-2024-26846, CVE-2024-26843, CVE-2024-26840, CVE-2024-26803, CVE-2024-26782, CVE-2024-26774, CVE-2024-26759, CVE-2024-26757, CVE-2024-26744, CVE-2024-26743, CVE-2024-26740, CVE-2024-26733, CVE-2024-26725, CVE-2024-26719, CVE-2024-26717, CVE-2024-26704, CVE-2024-26700, CVE-2024-26675, CVE-2024-26669, CVE-2024-26664, CVE-2024-26663, CVE-2024-26660, CVE-2024-26650, CVE-2024-26645, CVE-2024-26638, CVE-2024-26618, CVE-2024-26615, CVE-2024-26614, CVE-2024-26611, CVE-2024-26603, CVE-2024-26462, CVE-2024-26461, CVE-2024-26458, CVE-2024-25739, CVE-2024-24857, CVE-2024-23848, CVE-2024-23307, CVE-2024-21538, CVE-2024-21235, CVE-2024-21217, CVE-2024-11168, CVE-2024-0450, CVE-2024-0340

CVE-2023-52878, CVE-2023-52859, CVE-2023-52840, CVE-2023-52837, CVE-2023-52834, CVE-2023-52833, CVE-2023-52817, CVE-2023-52814, CVE-2023-52813, CVE-2023-52791, CVE-2023-52788, CVE-2023-52784, CVE-2023-52762, CVE-2023-52758, CVE-2023-52757, CVE-2023-52756, CVE-2023-52751, CVE-2023-52749, CVE-2023-52730, CVE-2023-52703, CVE-2023-52698, CVE-2023-52686, CVE-2023-52683, CVE-2023-52679, CVE-2023-52664, CVE-2023-52663, CVE-2023-52662, CVE-2023-52659, CVE-2023-52656, CVE-2023-52650, CVE-2023-52649, CVE-2023-52648, CVE-2023-52643, CVE-2023-52637, CVE-2023-52622, CVE-2023-52615, CVE-2023-52614, CVE-2023-52606, CVE-2023-52595, CVE-2023-52594, CVE-2023-52565, CVE-2023-52560, CVE-2023-52528, CVE-2023-52520, CVE-2023-52513, CVE-2023-52501, CVE-2023-52498, CVE-2023-52492, CVE-2023-52482, CVE-2023-52477, CVE-2023-52475, CVE-2023-52451, CVE-2023-52445

CVE-2022-48703, CVE-2022-48669

CVE-2021-47505, CVE-2021-47497, CVE-2021-47495, CVE-2021-47454, CVE-2021-47432, CVE-2021-47185, CVE-2021-47101, CVE-2021-47098

CVE-2019-25162

IBM Software Hub Version 5.1.0

A new version of Common core services was released in December 2024 with IBM Software Hub 5.1.0.

Operand version: 10.0.0

This release includes the following changes:

New features
This release of Common core services includes the following features:
Access more data with new connectors
  • Denodo
  • IBM watsonx.data Milvus
  • Microsoft Azure PostgreSQL
Integrated service connections
You can now add new connections using the information from existing service instances. This means that parameter values for the new connection can be automatically filled in from the existing instance.
Multi-node writing from the watsonx.data Presto connector
You can now write data from the watsonx.data Presto connector to DataStage using multiple nodes for parallel writes.
New engine connections for the watsonx.data Presto data source
You can now use the Presto (C++) engine with the watsonx.data Presto data source, giving you more options for querying your data.

To read more about these features, see What's new and changed in Common core services in the IBM Cloud Pak for Data documentation.

Customer-reported issues fixed in this release
For a list of customer-reported issues that were fixed in this release, see the Fix List for IBM Cloud Pak for Data on the IBM Support website.
Security issues fixed in this release
The following security issues were fixed in this release:

CVE-2024-9902, CVE-2024-9341, CVE-2024-8775, CVE-2024-7885, CVE-2024-7254, CVE-2024-6923, CVE-2024-6119, CVE-2024-5971, CVE-2024-5569, CVE-2024-48948, CVE-2024-47764, CVE-2024-45590, CVE-2024-4558, CVE-2024-45492, CVE-2024-45490, CVE-2024-45296, CVE-2024-44187, CVE-2024-43799, CVE-2024-43796, CVE-2024-40897, CVE-2024-40866, CVE-2024-40789, CVE-2024-40782, CVE-2024-40780, CVE-2024-40779, CVE-2024-40776, CVE-2024-37371, CVE-2024-37370, CVE-2024-3653, CVE-2024-34397, CVE-2024-27851, CVE-2024-27838, CVE-2024-27833, CVE-2024-27820, CVE-2024-27808, CVE-2024-23271, CVE-2024-23222, CVE-2024-22017, CVE-2024-21235, CVE-2024-21217, CVE-2024-21210, CVE-2024-21208

CVE-2023-45143, CVE-2023-42956, CVE-2023-42950, CVE-2023-42917, CVE-2023-42852, CVE-2023-42843, CVE-2023-40397, CVE-2023-39804, CVE-2023-38552

CVE-2022-32885, CVE-2022-0530, CVE-2022-0529

CVE-2021-4217

CVE-2005-2541