Revision as of 11:29, February 2, 2024 by Xavier (talk | contribs) (RN Automation.)
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to: navigation, search

8.5.240.02

Genesys Mobile Services Release Notes

Release Date Release Type Restrictions AIX Linux Mac Solaris Windows
02/02/24 General X X


Helpful Links

Releases Info


Product Documentation

Genesys Mobile Services

Genesys Products

List of Release Notes

What's New

This release contains the following new features and enhancements:

  • In Review: RN statement not finalized (GMS-9247)
  • All SAML/SSO capabilities have been removed from GMS. (GMS-9052)



Resolved Issues

This release contains the following resolved issues:

Reviewed. No RN Required (GMS-9239)

Update Jetty from 9.4.51.v20230217 to 9.4.53.v20231009 to address vulnerability issue *CVE-2023-44487* (GMS-9238)

Upgrade the PSDK bundle used by GMS to version 9.0.010.06. (GMS-9229)

Reviewed. No RN Required (GMS-9105)

Update all io.netty packages from version 4.1.97.Final to version 4.1.100.Final to overcome BDSA-2018-4022 (GMS-9058)

Update protobuf-java from version 3.21.5 to version 3.24.2 to overcome BDSA-2022-3787 (CVE-2022-3509), BDSA-2022-3221 (CVE-2022-3510), BDSA-2022-2886 (CVE-2022-3171). (GMS-9029)

Update com.google.guava from version 31.1-jre to version 32.1.2-jre to overcome BDSA-2016-1748 (CVE-2023-2976). (GMS-9025)

Update all io.netty packages from version 4.1.67.Final to version 4.1.97.Final to overcome BDSA-2021-2831(CVE-2021-37137), BDSA-2022-3559(CVE-2022-41881), BDSA-2021-2832(CVE-2021-37136), BDSA-2023-1556(CVE-2023-34462), BDSA-2021-3741(CVE-2021-43797), BDSA-2022-1283(CVE-2022-24823), BDSA-2021-0311. (GMS-9023)

Update batik-bridge from version 1.16 to version 1.17 to overcome CVE-2022-44729, CVE-2022-44730. (GMS-9022)

Updating apache-mime4j from version 0.8.4 to 0.8.9 to overcome BDSA-2022-4164 (CVE-2022-45787). (GMS-9021)

Reviewed. No RN Required (GMS-9007)

Overwritable parameter for "_ors" in callback request is fixed in scheduled callback (GMS-8999)

RN together with [1]

Updated all io.netty packages from 4.1.100.final to version 4.1.104.final. (GMS-9262)

Updated ch.qos.logback from 1.2.10 to 1.3.14. (GMS-9261)

Updated Log4j from version 2.21.1 to 2.22.0 (GMS-9163)

RN together with [2]

Updated all io.netty packages from 4.1.100.final to version 4.1.104.final. (GMS-9125)

Update com.fasterxml.jackson.core:jackson-databind from 2.15.2 to 2.15.3 to overcome CVE BDSA-2023-1491 (CVE-2023-35116). (GMS-9082)

Update org.json:json from 20230227 to 20231013 to overcome CVE BDSA-2023-2760 (CVE-2023-5072). (GMS-9081)

Update org.xerial.snappy:snappy-java from 1.1.10.2 to 1.1.10.5 to overcome CVE BDSA-2023-2536 (CVE-2023-43642). (GMS-9080)

Updated log4j from version 2.17.2 to version 2.21.1 to overcome CVEs. (GMS-9066)

  • Reviewed. No RN Needed* (GMS-9059)

Moment.js is now ungraded to non vulnerable 2.29.4 version. (GMS-9012)

CWE-502 security vulnerability on Snake Yaml is address by removal of third party involved in deprecated SAML feature. (GMS-8913)

Reviewed. No RN needed (yet) (GMS-8877)



Upgrade Notes

No special procedure is required to upgrade to release 8.5.240.02.

Comments or questions about this documentation? Contact us for support!