Fix Readme
Abstract
This document lists APAR fixes included in IBM Business Automation Workflow on Containers 23.0.1
Content
| Fix list for: | IBM Business Automation Workflow on containers |
|---|---|
| Product Release: | 23.0.1 |
| Publication Date: | 23 June 2023 |
Contents
Install or update
To benefit from all the fixes listed in this document, install or update to IBM Business Automation Workflow on Containers 23.0.1. For more information, refer to the IBM Cloud Pak for Automation download documents.
List of Fixes
The following table lists APARs specific to Business Automation Workflow on Containers. Depending on what components and capabilities you installed and configured, more fix information can apply to you. See the "List of Fixes" in Fix list for Cloud Pak for Business Automation 23.0.1.
Fixes that involve correct security exposures are indicated with an 'X'.
| APAR/Known Issue | Title | Security | Behavior Change |
|---|---|---|---|
| DT213423 | [DT213423] Upgrade Angular Version used by Process Portal and Content Management Toolkit | X | |
| DT178855 | INCORRECT PASSWORD IS USED ON SERVER WHEN CONFIGURED IN IBM PROCESS ADMIN CONSOLE | ||
| DT174099 | In Workplace change iFrame title and icon aria-label to meaningful names. | ||
| DT197974 | Security vulnerability CVE-2023-24998 in commons-fileupload affects IBM Business Automation Workflow and Cloud Pak for Business Automation | X | |
| DT188641 | SECURITY - CVE-2023-24957 - Stored XSS vulnerability when performing a document upload using Responsive Document Explorer | X | |
| DT213297 | [DT213297] SECURITY - Case and case history event emitters are affected by Apache commons vulnerability | X | |
| DT208782 | SECURITY APAR - CVE-2022-1471 REPORTED FOR SNAKEYAML IN BPMEVENTEMITTER | X | |
| DT196140 | SECURITY - CVE-2022-34917 IN KAFKA-CLIENTS REPORTED FOR BAI-EVENTS-JAVA-SDK | X | |
| DT170061 | You get 'This service cannot be used in a 'Traditional or Container' target environment. Convert this service to a Deployment Service Flow' error when you import a Process portal (SYSRP) application. | ||
| DT189645 | TOOLKIT UPGRADE RESULTS IN NOCLASSDEFFOUNDERROR DURING THE UPDATE OF TEAMS | ||
| DT213491 | [DT213491] SECURITY APAR - VULNERABILITY PRISMA-2023-0067 REPORTED FOR JACKSON-CORE IN BPM EVENT EMITTERS | X | |
| DT178523 | After you upgrade it takes a very long time to open an activity task panel to edit preconditions when there are a large number of properties on a case type | ||
| DT180564 | SECURITY APAR CVE-2023-22860 - STORED XSS IN PROCESS ADMIN CONSOLE | X | |
| DT170014 | DOC: Business Automation Workflow on Container compatibility report contains incorrect information. | ||
| DT196319 | Business Automation Workflow API ops/std/bpm/containers?optional_parts=branches versions does not retrieve version | ||
| DT178901 | NOCLASSDEFFOUNDERROR OCCURS WHEN EXECUTING THE SCHEMAGENERATOR SCRIPT OF SAVED SEARCH ACCELERATION TOOLS IN LINUX OS | ||
| DT149297 | Business Object property values don't display correctly in Case Summary widget shows 'No items to display'. | ||
| DT173474 | Autotracked data in Subprocess is not captured in DEF event ACTIVITY_RESOURCE_ASSIGNED | ||
| DT179271 | NOCLASSDEFFOUNDERROR: ORACLE/SQLl/TIMESTAMP WHEN CALLING ORACLE STORED PROCEDURE USING SQL INTEGRATION | ||
| DT211505 | [DT211505] SECURITY APAR - CVE-2023-20863 IN SPRING EXPRESSIONS | X | |
| DT187952 | AN UNDEFINED WALKME ERROR CAUSES LOADING ICON TO BE DISPLAYED IN NAVIGATOR WORKPLACE | ||
| DT179170 | PROCESS FEDERATION SERVER OPERATOR DOES NOT MONITOR MULTIPLE NAMESPACES | ||
| DT209212 | SECURITY APAR - CVE-2023-20861 IN BPM/LOMBARDI/LIB/SPRING-EXPRESSIONS.JAR | X | |
| DT188184 | DOC - 'processCenterInternalUrl' VARIABLE NO LONGER NEEDS TO BE SET WHEN CONFIGURING THE CONNECTION FROM WORKFLOW SERVER TO WORKFLOW CENTER | ||
| DT213219 | [DT213219] Upload page hangs when you add a document to a process instance in Process instance list dashboard. | ||
| DT203317 | Document name is automatically truncated to 50 characters when you upload a document using JavaScript API | ||
| DT215028 | Leading zeros might be removed during invocation of an external web service if input parameter uses an anonymous simple type | ||
| DT196587 | tw.system.retrieveTaskList throws an error if the Dashboards toolkit is not upgraded to the latest version (later than 22.0.2). | ||
| DT178578 | WORKFLOW SERVER PODS FREQUENTLY RESTARTING WHEN USING AUTOSCALING | ||
| DT188823 | JAVASCRIPT API JSON.STRINGIFY() DOES NOT RETURN THE CORRECT STRING VALUE AFTER UPGRADING TO IBM BUSINESS AUTOMATION WORKFLOW V22.0.2 | ||
| DT209774 | [DT209774] NO TIMEZONE SETTING CAN BE CONFIGURED FOR THE PROCESS FEDERATION SERVER PODS AND THE ELASTICSEARCH-STATEFULSET PODS. | ||
| DT189179 | Running Process Portal on Chrome version 109 shows an error on the browser console. | ||
| DT188690 | VULNERABLE VERSIONS OF JACKSON-DATABIND AND SNAKEYAML ARE PACKAGED WITH IBM BUSINESS AUTOMATION WORKFLOW | X | |
| DT196195 | IN THE BUSINESS AUTOMATION WORKFLOW PROCESS ADMIN CONSOLE CACHE RELATED INSTRUMENTATION IS NOT SHOWING UP | ||
| DT180142 | DOC - BPMDEACTIVATE COMMAND CAN BE USED FOR TOOLKIT ON BOTH WORKFLOW CENTER AND WORKFLOW SERVER | ||
| DT188009 | THE TOOLTIP VIEW DOES NOT REACT TO VARIABLE CHANGES FOR THE BEHAVIOR CONFIGURATION PROPERTY 'SHOW ON HOVER' | ||
| DT198694 | After you upgrade to IF017 you are unable to use Case client and a ClassNotFoundException: com.ibm.bpm.servlet.filters.GenericSecurityServletFilterUnable error is logged | ||
| DT198745 | Workplace cannot search for task or workflow names that contain Chinese characters. | ||
| DT198220 | A reflected cross-site scripting (XSS) security exposure is reported in IBM BAW 21.0.3. | X | |
| DT189649 | After upgrading to 22.0.2 attempting to retrieve documents fails with 'CWTBI0004E: The mandatory parameter 'Object type ID' is missing or empty' | ||
| DT188804 | WORK DASHBOARD IS NOT UPDATED WHEN EMPTY SEARCH RESULTS ARE RETURNED IN PROCESS PORTAL | ||
| DT189341 | THE WIDTH FROM TABLE VIEW'S COLUMNS CONFIGURATION PROPERTY IS NOT BEING REFLECTED WHEN THE COACH IS DISPLAYED | ||
| DT188420 | Value for a property not changed in a business rule is saved with a null value to the case which could result with incorrect trigger of an activity process precondition. | ||
| DT188198 | REASSSIGN TASK DOES NOT SHOW CORRECT USER OR TEAM IN INSTANCE DETAILS UI VIEW | ||
| DT213399 | [DT213399] BPMPROCESSINSTANCESPURGE COMMAND IS SLOW TO DELETE COMPLETED PROCESS INSTANCES | ||
| DT211757 | [DT211757] IBM Business Automation Workflow: Event Manager with External CPE - Jobs in Async queue is not removed after the task is completed | ||
| DT215888 | [DT215888] DOC - Navigation options for after service completion documentation contains incorrect information | ||
| DT196640 | YOU NOTICE THE DATE SELECTED IN THE DATE PICKER VIEW IS NOT CORRECT WHEN DAYLIGHT SAVING TIME BEGINS | ||
| DT178720 | In Process Portal hide the 'Show more..(0)' link in the dashboard menu from the screen reader. | ||
| DT196158 | You see an error when you try to save activity properties for a case activity process that is using client-side human service. | ||
| DT208487 | SEARCHING FOR USERS IN BAW FAILS WHEN IAM IS CONFIGURED WITHOUT LDAP (OKTA AZURE AD) | ||
| DT197053 | REST API CALL OPS/STD/BPM/EVENT_MANAGER_TASKS RETURNS 'NOT IMPLEMENTED INTERNALSTATE' ERROR | ||
| DT195853 | You can't upload documents with an extension .msg or mime type application/vnd.ms-outlook to the document store using the BPM File Dropzone view | ||
| DT178926 | SAVED SEARCH RESULTS AND PROCESS INSTANCE CURRENT STATE REST API RETURNS USER SHORTNAME | ||
| DT212052 | [DT212052] DOC:The runtime property |
||
| DT211609 | [DT211609] Options defined against a field of type 'Other' is not applied with a CMIS query filter configured for ECM Document List | ||
| DT179527 | SECURITY - SEVERAL SECURITY VULNERABILITIES ARE PRESENT IN BOOTSTRAP-3.3.4.JS | X | |
| DT197423 | Using Workplace to open a document from a Client-Side Human Service Case view doesn't open the document in Content Navigator viewer | ||
| DT209447 | Buttons in Case folder tree view doesn't work correctly when there is more than one case folder tree view in the same client-side human service | ||
| DT196449 | YOU SEE NULLPOINTEREXCEPTION WHEN RUNNING A STAND-ALONE HUMAN SERVICE | ||
| DT208156 | START SERVICE REST API THROWS ILLEGALARGUMENTEXCEPTION IN CASE YOU PROVIDED PROJECT SHORTNAME AND SERVICE NAME BUT NOT SNAPSHOT ID | ||
| DT179174 | WHEN CALLING BTS TEAM SERVICE BUSINESS AUTOMATION WORKFLOW CACHES ACCESS TOKEN WITH WRONG EXPIRATION TIME | ||
| DT213210 | [DT213210] INVOKING REST API /OPS/STD/BPM/CONTAINERS/MIGRATE ENCOUNTERS NULLPOINTEREXCEPTION | ||
| DT180488 | ON CP4BA 22.0.2 CONNECT EXTERNAL WORKFLOW PROCESS SERVER TO WORKFLOW AUTHORING MAY FAIL | ||
| DT215795 | [DT215795] Unexpected heartbeat ConnectException is found in the workflow server FFDC logs | ||
| DT188313 | THE LOGS OF DATABASE INIT JOB ARE NOT PERSISTED AND THE TRACE SPECIFICATION CAN NOT BE SPECIFIED FOR THIS JOB | ||
| DT202863 | Some critical errors in the db-init-job still results in the job being marked as completed - IBM Cloud Pak for Business Automation | ||
| DT196682 | When you create a quick task set both an assigned user and a due date the email notification sent won't include due date information. | ||
| DT199419 | SLOW PERFORMANCE WHEN RUNNING BPMDELETEDURABLEMESSAGES COMMAND | ||
| DT197940 | You see only an icon instead of properties associated with objects in the Case information documents tab magazine view | ||
| DT209425 | Assignment tw.local.filteredTeam = tw.local.originalTeam; might result in empty Team Filter Service. | ||
| DT211846 | [DT211846] IBM BUSINESS AUTOMATION WORKFLOW TEST API RESPONDS WITH ERROR MESSAGES CONTAINING DETAILED INTERNAL ERRORS | ||
| DT214800 | [DT214800] When a failure occurs when indexing into Elasticsearch the failure message is not logged | ||
| DT178719 | In Process Portal hide the circle bullet in the user profile from the screen reader. | ||
| DT209317 | TYPE AHEAD TEXT VIEW DOES NOT UPDATE ITS DATA BINDING WHEN AN OPTION IS SELECTED FROM LIST AND TEXT FIELD IS CLEARED | ||
| DT208587 | You see a NullPointerException when you use case API and you share the same CaseType object for different threads to create new cases | ||
| DT208978 | USER SCRIPTABLE (JAVASCRIPT API TWUSER OBJECT) THROWS SERIALIZATION ERROR WHEN ENABLING TRACE | ||
| DT211990 | [DT211990] In Workplace workflow search customize view UI is distorted when more search filters are added | ||
| DT195977 | ACTIVITY PROCESS FAILS TO START WITH CLASSLOADER EXCEPTIONS | ||
| DT210863 | [DT210863] A misspelling of 'lenght' error is found in operator ansible logs for IBM Cloud Pak for Business Automation version 22.0.2-IF002 | ||
| DT206904 | [DT206904] IBM Business Automation Workflow documentation misses information on supported types for SQL integration | ||
| DT210959 | [DT210959] Entries with TASK_ID=NULL are never removed from the PFS_BPD_CHANGE_LOG TABLE if process instance indexing is not enabled for the federated system | ||
| DT172428 | Documents stored in the document store for a process instance are not deleted when the process instance is deleted | ||
| DT215163 | DT215163: RR Pods Failed to Start After Upgrading to CP4BA 22.0.2 IF004 | ||
| DT213432 | [DT213432] You see repeated CaseActivySweep processJSONData Exception errors in Content Platform Engine logs | ||
| DT208418 | BPMMIGRATEINSTANCES COMMAND FAILS WHEN |
||
| DT189146 | YOU MIGHT SEE OBJECTNOTFOUNDEXCEPTION:SNAPSHOT XXX ERROR AFTER INSTANCE MIGRATION WITH 'DEFER-EC' SET TO TRUE | ||
| DT215209 | [DT215209] CP4BA: Allow modifying SELinux security settings for CP4BA pods in the CR | ||
| DT211430 | [DT211430] DOC - An example code snippet in the Binding data and configuration options documentation contains an error | ||
| DT197378 | THE VERSION IDS OF THE UI TOOLKIT'S INTERNAL PERSISTENT OBJECTS CAUSE CONFLICTS WITH THE EXISTING SPARK UI TOOLKIT SNAPSHOTS DURING UPGRADE | ||
| DT212660 | [DT212660] DOC - CLARIFY THE LAST USER PROCESS ACTIVITY ASSIGNMENT DISTRIBUTION OPTION BEHAVIOR | ||
| DT208621 | DISCOVERING AN OPENAPI DEFINITION THAT HAS AN OPERATIONID LONGER THAN 63 CHARACTERS MIGHT LEAD TO AN INCORRECT EXTERNAL SERVICE INTERFACE | ||
| DT196535 | DURING EXTERNAL REST SERVICE INVOCATION CONTENT-LENGTH HEADER NOT SET IN CASE OF EMPTY PAYLOAD | ||
| DT209283 | Extra messages are logged in the application server SystemOut logs | ||
| DT214551 | [DT214551] TASK NARRATIVE SECTION IN EMAIL NOTIFICATION IS EMPTY IN PROCESS PORTAL | ||
| DT213312 | [DT213312] YOU SEE SOME PROCESS INSTANCES ARE NOT LOADED AFTER UPGRADING TO BUSINESS AUTOMATION WORKFLOW V22.0.2 | ||
| DT197302 | When the Team Performance dashboard opens in a new tab the view instance link fails. | ||
| DT208579 | SECURITY - CVE-2022-1471 - Case History emitter is affected by snakeyaml vulnerability | X | |
| DT197942 | DOC - STEP FOR SETTING AUTOFLOW TIMEOUT TO MORE THAN 10 SECONDS ARE MISSING | ||
| DT211120 | [DT211120] DOCUMENTATION EXAMPLES DO NOT SHOW CORRECT YAML SYNTAX TO UPDATE THE ENVIRONMENT_CONFIG PARAMETERS | ||
| DT188910 | COMETD THROWS EXCEPTIONS FOR THE ADHOC GROUP CHANNEL ID AND GROUP THAT INCLUDES SPECIAL CHARACTERS | ||
| DT195919 | SECURITY - CVE-2023-25194 - Update Apache Kafka for Case and Case History Emitters | X | |
| DT203361 | BUSINESS AUTOMATION WORKFLOW WEB PROCESS INSPECTOR CRASHES WHEN TRYING TO RENDER A RECURSIVE VARIABLE | ||
| DT195750 | UPGRADE FAILS WITH NOCLASSDEFFOUNDERROR RELATED TO SCIM DURING DB-INIT JOB WHEN IMPORTING SNAPSHOTS | ||
| DT209662 | [DT209662] DOC - MOVING OR DELETING TOKEN FROM EVENT GATEWAY IS NOT SUPPORTED DURING PROCESS INSTANCE MIGRATION OR USING REST API | ||
| JR64244 | YOU CAN'T ADD A CASE SOLUTION PROJECT TO ANOTHER PROJECT AREA FROM WORKFLOW CENTER | ||
| DT391230 | Suomi Scandinavian language not displaying umlaut characters correctly |
Applies to Business on containers standalone only
| APAR/Known Issue | Title | Security | Behavior Change |
|---|---|---|---|
| DT215349 | [DT215349] IBM Process Federation Server throws SqlSyntaxErrorException stating 'LSW_BPD_INSTANCE_VARIABLES.BPD_INSTANCE_ID' is not valid | ||
| DT213407 | [DT213407] You notice the input data mappings for a call service activity of a heritage human service does not get saved when edited in IBM Process Designer | ||
| DT213846 | [DT213846] The table view columns are the incorrect size when it is configured to be scroll-able (i.e. height is set) and there are hidden columns | ||
| DT198327 | [DT198327] Jackson-Databind Version Upgrade | X | |
| DT214288 | DT214288 DOC: Sample property for 'saved-search-hide-everyone' should be changed | ||
| DT212094 | [DT212094] The NGINX container of the Elasticsearch pod reports a read-only file system error | ||
| DT189179 | [DT189179] Running Process Portal on Chrome version 109 and later shows an error on the browser console | ||
| DT213689 | [DT213689] Heritage human service editor diagram is not displaying stand-alone error event correctly | ||
| DT214198 | [DT214198] You see a FNRCE0066E error the RosterName is not valid logged when you try to delete a Case | ||
| DT211574 | [DT211574] SHARED BUSINESS OBJECT LOAD METHOD THROWS EXCEPTION WHEN HUMAN TASK IS RESUMED AFTER POSTPONE EVENT IN CLIENT SIDE HUMAN SERVICE | ||
| DT211600 | [DT211600] Heritage human services can be renamed to the same name as existing client side human services |
Applies to Cloud Pak for Business Automation only
| APAR/Known Issue | Title | Security | Behavior Change |
|---|---|---|---|
| DT208139 | [DT208139] IBM Process Federation Server indexers not reprocessing tasks and instances updates after a communication exception with Elasticsearch | ||
| DT197560 | [DT197560] Elasticsearch pod fails to start when you use an existing PVC for elasticsearch snapshot storage | ||
| DT197965 | [DT197965] INCORRECT IMAGE IS USED FOR IBM BUSINESS AUTOMATION WORKFLOW RUNTIME WHEN THE APP_DESIGNER COMPONENT IS ENABLED |
Document change history
- 23 June 2023: Initial publish.
Related Information
Fix list for Cloud Pak for Business Automation 23.0.1
Fix list for IBM Business Automation Workflow on containers 22.0.2
Fix list for Cloud Pak for Business Automation 22.0.2
Fix list for IBM Business Automation Workflow on containers 22.0.1
Fix list for Cloud Pak for Business Automation 22.0.1
Fix list for IBM Business Automation Workflow on containers 21.0.3
Fix list for Cloud Pak for Business Automation 21.0.3
Fix list for IBM Business Automation Workflow on containers 21.0.2
Fix list for Cloud Pak for Business Automation 21.0.2
Fix list for IBM Business Automation Workflow on containers 20.0.0.2
[{"Type":"MASTER","Line of Business":{"code":"LOB10","label":"Data and AI"},"Business Unit":{"code":"BU048","label":"IBM Software"},"Product":{"code":"SS8JB4","label":"IBM Business Automation Workflow"},"ARM Category":[{"code":"a8m50000000Cca0AAC","label":"Upgrade and Migration"}],"ARM Case Number":"","Platform":[{"code":"PF016","label":"Linux"}],"Version":"23.0.1"}]
Was this topic helpful?
Document Information
Modified date:
12 July 2024
UID
ibm17003011