Fix Readme
Abstract
This document lists APAR fixes included in IBM Business Automation Workflow on Containers 22.0.2.
Content
| Fix list for: | IBM Business Automation Workflow on containers |
|---|---|
| Product Release: | 22.0.2 |
| Publication Date: | 16 December 2022 |
Contents
Install or update
To benefit from all the fixes listed in this document, install or update to IBM Business Automation Workflow on Containers 22.0.2. Refer to IBM Cloud Pak for Automation download documents for more information.
List of Fixes
The following table lists APARs specific to Business Automation Workflow on Containers. Depending on what components and capabilities you have installed and configured, more fix information can apply to you. See the "List of Fixes" in Fix list for Cloud Pak for Business Automation 22.0.2.
Fixes that involve correct security exposures are indicated with an 'X'.
| APAR/Known Issue | Title | Security | Behavior Change |
|---|---|---|---|
| DT145251 | SECURITY VULNERABILITY CVE-2014-3004 IN CASTOR LIBRARY | X | |
| DT149047 | SECURITY APAR - MULTIPLE VULNERABILITIES IN SNAKEYAML SHIPPED WITH BUSINESS AUTOMATION INSIGHTS EMITTERS | X | |
| DT160626 | SECURITY APAR - CVE-2022-41735 - CROSS SITE SCRIPTING IN PROCESS ADMIN CONSOLE | X | |
| DT160695 | SECURITY APAR - CVE-2022-34917 IN KAFKA-CLIENTS MAY AFFECT BAI EVENT EMITTERS | X | |
| DT160709 | SECURITY APAR CVE-2022-42435 - CROSS SITE REQUEST FORGERY IN PROCESS ADMIN CONSOLE | X | |
| DT170126 | SECURITY APAR CVE-2022-42003 AND CVE-2022-42004 IN LIBRARY USED BY EVENT EMITTER | X | |
| DT178158 | CVE-2022-25887 IN REPACKAGE NODE.JS MODULE SANITIZE-HTML AFFECT IBM WORKFLOW CENTER AND BUSINESS AUTOMATION STUDIO | X | |
| JR65004 | SECURITY APAR - CVE-2021-23450 AFFECTS DOJO VERSIONS USED BY CLIENT SIDE HUMAN SERVICE, COACHES AND IBM PROCESS PORTAL | X | |
| JR65035 | SECURITY APAR EXCESSIVE INFORMATION DISCLOSURE IN PROCESS ADMIN CONSOLE | X | |
| JR65036 | PROCESS FEDERATION SERVER VULNERABILITY CVE-2018-25031 | X | |
| JR65073 | MULTIPLE SECURITY VULNERABILITIES IN SWAGGER UI | X | |
| DT139460 | DT139460 - CVE-2022-35644 - PERSISTENT XSS VULNERABILITY IN PROCESS ADMIN CONSOLE | X | |
| DT141088 | YOU SEE AN ERROR WHEN YOU TRY TO SEARCH AGAINST THE CURRENT DATE FOR BUSINESS OBJECT DATETIME PROPERTY | ||
| DT141469 | COULDNOTSETPROPERTYEXCEPTION OCCURS WHEN MAPPING COMPLEX OBJECT TO ANY TYPE IN A CLIENT SIDE HUMAN SERVICE | ||
| DT141533 | ANY MIGHT APPEAR ON THE EXTERNAL SERVICE INTERFACE FOR A WEB SERVICE IF YOU DISCOVERED A WSDL WITH IMPORTS | ||
| DT141838 | THERE IS NO WAY TO DISABLE THE DEFAULT SETTING |
||
| DT141852 | IMPORTING A BPMN MODEL WITH NO PERFORMER INFORMATION PLACES ALL ACTIVITIES IN THE SAME LANE | ||
| DT141897 | YOU NOTICE THAT TW.LOCAL URL PARAMETERS CONTAINING TAGS ARE NOT PASSED TO A CLIENT SIDE HUMAN SERVICE CORRECTLY | ||
| DT142221 | THE JS API DOCUMENTATION FOR BPMEXT.UI.EXECUTEEVENTHANDLINGFUNCTION DOES NOT MATCH IMPLEMENTED BEHAVIOR | ||
| DT142447 | XA_RBDEADLOCK.ERRORCODE=-4203 DUE TO A DEADLOCK IN LSW_LOCK TABLE WHEN SAVING CASE PROPERTY CHANGES | ||
| DT143594 | PROCESS PORTAL NOT AUTOMATICALLY REFRESHED WHEN PROCESS INSTANCE PAUSED OR RESUMED | ||
| DT143691 | Add Case from case toolkit on Client-Side Human Service no longer work after you upgrade as it requires a new mandatory field 'caseClientTabID' | ||
| DT143887 | YOU NOTICE THAT THE TEXT AREA VIEW CONTENT IS MISSING WHEN PRINTING | ||
| DT143915 | JAVASCRIPT API TW.SYSTEM.FINDPROCESSINSTANCEBYID( |
||
| DT144217 | GBRKL0007E ERROR WHEN CREATING A DECISION TABLE IF THE BAL RULE LOCALE IS SET TO CHINESE OR BRAZILIAN PORTUGUESE | ||
| DT144219 | REST API "PROCESS INSTANCE ALL VARIABLES (BULK UPDATE)" CANNOT UPDATE PROCESS INSTANCE VARIABLES IN AN EVENT SUBPROCESS | ||
| DT144269 | DOC: Documentation lacks information on how to update the Business Automation Workflow deployment after an LDAP user password change | ||
| DT144503 | YOU NOTICE A PERFORMANCE ISSUE WHEN USING THE DATE TIME PICKER VIEW IN A TABLE | ||
| DT144693 | MODIFYING TASK DOES NOT EMIT MONITORING EVENT TO NOTIFY LISTENERS OF THE CHANGE | ||
| DT145103 | WEB PROCESS INSPECTOR OMITS LEADING SPACES OF INSTANCE DATA IN PROCESS ADMIN CONSOLE | ||
| DT145199 | A NullPointerException is logged when you try to set a null value to a case property using a script with setCasePropertyValues | ||
| DT145527 | PROCESS WORK ITEM DOES NOT APPEAR IN AN IN-BASKET AFTER THE NEW ACTIVITY HAS BEEN UPDATED PRIOR TO COMMIT OR DEPLOYMENT | ||
| DT145536 | ERROR CWTBG0535E OCCURS WHEN A SERVICE IS CALLED FROM A CLIENT SIDE HUMAN SERVICE WITH DATA CONTAINING THE MAP DATA TYPE | ||
| DT145567 | WEBPD TEAM EDITOR FILTER NOT AVAILABLE AFTER USER REGISTRY FAILURES | ||
| DT148968 | AVOID FULL RESETS OF USERINFOCACHE AND GROUPMEMBERCACHE WHEN ONLY FULLNAME OR DN OF A USER HAVE CHANGED | ||
| DT159968 | USING TWTASK.COMPLETE JAVASCRIPT API TO COMPLETE UNCLAIMED TASK THAT HAS AUTOFLOW ENABLED CAUSES AUTOFLOW FEATURE TO FAIL | ||
| DT160010 | Timeline visualizer widget doesn't display activity task comments | ||
| DT160431 | If Case emitter is enabled against a Content Platform Engine with Oracle database, you see FNRCE0066E IllegalArgumentException overflow error logged | ||
| DT160446 | PROCESS INSTANCE CANNOT BE DELETED IF THE ASSOCIATED PARENT CASE ID OR PARENT ACTIVITY ID IN CONTENT PLATFORM ENGINE WAS DELETED | ||
| DT160458 | Automated unnamed snapshots deletion is failing with a CWTBG0019E 'error in process callback' error | ||
| DT160624 | YOU ARE UNABLE TO PREVIEW A CASE DOCUMENT WITH DAEJA VIEWER IN CLIENT-SIDE HUMAN SERVICE. | ||
| DT168634 | A VIEW CONTAINED IN A TOOLTIP VIEW WORKS IMPROPERLY WITH VALIDATION ERROR | ||
| DT168635 | SEVERAL VIEWS FROM THE UI TOOLKIT DISAPPEAR WHEN CONTAINED IN A TOOLTIP VIEW AND HAVE A VALIDATION ERROR | ||
| DT168671 | Delete snapshot API /std/bpm/containers/{container}/versions doesn't document milliseconds can be use for $date-time type | ||
| DT168702 | A JAVA.LANG.NULLPOINTEREXCEPTION OCCURS WHEN CALLING A SERVICE FLOW FROM A CLIENT SIDE HUMAN SERVICE | ||
| DT168882 | DOC - REST INTERFACE TOPIC SHOULDN'T REFER TO IBM BUSINESS MONITOR | ||
| DT168911 | CVE-2022-34917, CVE-2022-42003, CVE-2022-42004 - Update Apache Kafka and jackson-databind library for Case Emitter | X | |
| DT169183 | Exporting solution from Business Automation Studio fails with FNRPA0935E in a CP4BA environment when IAM URL is secured behind SSO | ||
| DT169189 | CVE-2022-25857, CVE-2022-42003, CVE-2022-42004 - Update snakeyaml and jackson-databind for Case History emitter | X | |
| DT169484 | Performing the reset test environment action for Cloud Pak for Business Automation environment fails with FNRPA0428E error | ||
| DT169573 | PROCESS INSTANCES CANNOT BE FOUND WHEN YOU TRY TO DISPLAY PROCESS INSTANCE DETAILS IN WEB PROCESS INSPECTOR | ||
| DT169666 | YOU NOTICE BUTTONS CONTAINED IN VIEWS CAN HAVE THEIR LABELS SET VIA THE COACH PROPERTIES IN A CLIENT SIDE HUMAN SERVICE | ||
| DT169750 | TRANSACTION WAITING FOR LOCK ON LSW_LOCK FOR TW_ALLUSERS | ||
| DT169837 | DOC - THE STEPS TO CHANGE WORKFLOW SERVER TIME ZONE IS MISSING IN IBM CLOUD PAK FOR BUSINESS AUTOMATION DOCUMENTATION | ||
| DT170053 | ATTEMPTING TO PREVIEW A BUSINESS APPLICATION FAILS WHEN TRACING IS ENABLED | ||
| DT170130 | YOU NOTICE THAT VIEWS FROM THE UI TOOLKIT HAVE THE DUTCH AND DANISH LANGUAGE FILE MIXED UP | ||
| DT170261 | YOU MAY SEE A CWLLG2229E ERROR WHEN RUNNING THE JAVASCRIPT API TWSEARCH WITH ENABLING SAVED SEARCH ACCEELERATION TOOLS | ||
| DT171744 | You are unable to save case properties in CSHS when a security proxy object is applied against the case type class definition | ||
| DT171803 | BAW TOOLKIT FOR DATA EXPORT DOES NOT WORK ON FIREFOX | ||
| DT172136 | The purge option in BPMUpdateSystemApp command doesn't work | ||
| DT172312 | XSD TYPE BASE64BINARY IS DISCOVERED AS INTEGER INSTEAD OF STRING WHEN DISCOVERING A WEB SERVICE IN IBM PROCESS DESIGNER | ||
| DT172538 | "UNIQUE CONSTRAINT (BPMDB.LSWC_LOCK) VIOLATED" ERROR HAPPENS WHEN SAVING TASK ACTIVITY MEASUREMENT WHEN TRAFFIC THROUGH A DISASTER RECOVERY SERVER | ||
| DT172895 | LARGE COACH HANGING ON INITIAL OPENING OF EDITOR | ||
| DT173143 | CP4BA PODS FAIL TO START WITH ΓÇ£CREATECONTAINERERRORΓÇ¥ | ||
| DT173169 | NOCLASSDEFFOUNDERROR OCCURS WHEN EXECUTING THE SCHEMAGENERATOR SCRIPT OF SAVED SEARCH ACCELERATION TOOLS | ||
| DT173446 | THE REST APIS BPM/PROCESSES AND BPM/USER-TASKS HAVE A LIMIT ON THE OFFSET PARAMETER VALUE | ||
| DT173655 | SOME TYPE OF START EVENTS IN EVENT SUBPROCESS CAUSE PROCESS INSTANCE FAILURE | ||
| DT173923 | THE ORDER OF VARIABLES IN EXPOSED PROCESS VALUES IS NOT PRESERVED IN THE PROCESS EDITOR | ||
| DT174091 | DT174091 - Prevent unique constraint violated for table LSW_USR_GRP_XREF when importing a Process Application | ||
| DT174399 | MISSING APPLICATION ENGINE URL IN CONFIGMAP CP4BA-ACCESS-INFO FOR BAW ON CONTAINERS MISSING APPLICATION ENGINE URL IN CONFIGMAP CP4BA-ACCESS-INFO FOR BAW ON CONTAINERS | ||
| DT174575 | You see noClassDefFoundError while attempting to export legacy Case Solutions using administration client | ||
| DT174579 | WORKFLOW AUTOMATION SERVICE INVOCATIONS FAIL AS SOON AS THERE ARE MORE THAN 127 WORKFLOW AUTOMATION SERVICES PER SINGLE WORKFLOW RUNTIME | ||
| JR64830 | UPDATE DOCUMENTATION FOR INSTALL API "/STD/BPM/CONTAINERS/INSTALL" REQUIRED BY JR64850 | ||
| JR64858 | SUPPORTED PARAMETER TYPES ARE NOT LISTED IN THE DOCUMENTATION FOR EXTERNAL JAVA SERVICES | ||
| JR64962 | A CLASSNOTFOUNDEXCEPTION MIGHT OCCUR DURING DISCOVERY OF A WSDL IN BUSINESS AUTOMATION STUDIO'S WORKFLOW DESIGNER | ||
| JR64982 | UNUSED COM.LOMBARDI.JSEDITOR.JAR IS INSTALLED WITH CLOUD PAK FOR AUTOMATION | ||
| JR64986 | UNABLE TO DEPLOY CASE SOLUTION ON CP4BA ENTERPRISE PATTERN ENVIRONMENT USING SWAGGER UI | ||
| JR65006 | UPDATE BUSINESS AUTOMATION WORKFLOW TO A NEWER VERSION OF THE SPRING FRAMEWORK | ||
| JR65009 | PROPERTIES PANEL SHOWS EMPTY IN WEB PROCESS DESIGNER | ||
| JR65020 | AN OBJECTNOTFOUNDEXCEPTION IS ENCOUNTERED WHILE RUNNING THE BPMUPDATESYSTEMAPP COMMAND DURING UPGRADE | ||
| JR65025 | AN INTERMEDIATE TRACKING EVENT TYPE IS LABELED AS TRACKING (DEPRECATED) IN THE PROCESS EDITOR | ||
| JR65032 | A BLANK SPACE IS APPENDED TO THE DOCUMENT ID IN THE XML RESPONSE OF THE CREATE DOCUMENT AJAX CALL | ||
| JR65042 | THE SUPPORT OF CONTENT OBJECTS IN VIEW IS DIFFERENT THAN COACH | ||
| JR65043 | VULNERABILITY CVE-2021-41973 IS REPORTED FOR MINA-CORE-2.0.1-IBM.JAR | X | |
| JR65044 | ENTERPRISE CONTENT MANAGEMENT FILE LIST VIEW NO LONGER DISPLAYS CORRECT COLUMNS FROM A CUSTOM QUERY AFTER YOU UPGRADE | ||
| JR65052 | COPY AND PASTE OF A USER TASK ACTIVITY IN A PROCESS FAILS IF THE ACTIVITY ASSIGNMENT IS SET TO CUSTOM OR PROCESS STARTER | ||
| JR65055 | THE DOCUMENTATION STATES THE OPPOSITE OF WHAT THE BEHAVIOR OF TASKLISTPROPERTIES.COLLAPSEDRISKSTATES IS | ||
| JR65060 | YOU ARE UNABLE TO UPDATE USER PERMISSION FOR A SOLUTION WHEN YOU USE CASE ADMINISTRATION CLIENT | ||
| JR65063 | UNABLE TO SAVE ENVIRONMENT VARIABLES IN PROCESS ADMIN CONSOLE | ||
| JR65067 | DOC - REMOVE USE-GADGET FROM THE EMAIL NOTIFICATION CONFIGURATION DOCUMENTATION | ||
| JR65071 | CHANGING CASE PROPERTIES USING PRE-ASSIGNMENT IS NOT BEING REFLECTED IN ACCE CASE PROPERTIES | ||
| JR65087 | TOKEN OF THE ATTACHED INTERMEDIATE EVENT CANNOT BE DELETED | ||
| JR65102 | YOU CAN'T UPLOAD A DOCUMENT OF TYPE IBM_BPM_DOCUMENT WHEN USER_NAME_ATTRIBUTE IN CP4BA IS CONFIGURED WITH EMAILADDRESS OR UID | ||
| PJ46763 | INVALID VALUE ICON AND MESSAGE IS NOT DISPLAYED ON A PROPERTY WHEN A CUSTOM VALIDATION ERROR IS RETURNED FROM EDS | ||
| PJ46791 | WHEN TABBED LAYOUT IS USED IN THE PROPERTY WIDGET, THE PAGE SCROLLS TO THE TOP WHEN A HIDDEN ATTRIBUTE ON A PROPERTY IS CHANGED |
Document change history
- 26 January 2023: Added DT160709 to fix list table.
- 16 December 2022: Publication date.
Related Information
Fix list for Cloud Pak for Business Automation 22.0.2
Fix list for IBM Business Automation Workflow on containers 22.0.1
Fix list for Cloud Pak for Business Automation 22.0.1
Fix list for IBM Business Automation Workflow on containers 21.0.3
Fix list for Cloud Pak for Business Automation 21.0.3
Fix list for IBM Business Automation Workflow on containers 21.0.2
Fix list for Cloud Pak for Business Automation 21.0.2
Fix list for IBM Business Automation Workflow on containers 20.0.0.2
[{"Type":"MASTER","Line of Business":{"code":"LOB45","label":"Automation"},"Business Unit":{"code":"BU059","label":"IBM Software w\/o TPS"},"Product":{"code":"SS8JB4","label":"IBM Business Automation Workflow"},"ARM Category":[{"code":"a8m50000000Cca0AAC","label":"Upgrade and Migration"}],"ARM Case Number":"","Platform":[{"code":"PF016","label":"Linux"}],"Version":"22.0.1"}]
Was this topic helpful?
Document Information
Modified date:
13 February 2023
UID
ibm16847251