TIBCO Managed File Transfer Command Center/Internet Server 8.5.2 hotfix HF-003 is now available

TIBCO Managed File Transfer Command Center/Internet Server 8.5.2 hotfix HF-003 is now available

book

Article ID: KB0137598

calendar_today

Updated On:

Products Versions
TIBCO Managed File Transfer Command Center 8.5.2
TIBCO Managed File Transfer Internet Server 8.5.2

Description

Hotfixes are cumulative. This is the third hotfix for TIBCO Managed File 
Transfer (MFT) Command Center 8.5.2 and TIBCO Managed File Transfer (MFT)
Internet Server 8.5.2.

Environment

All supported environments

Resolution

Hotfix TIB_mftccis_8.5.2_HF-003 can be downloaded from TIBCO Support Portal (https://support.tibco.com).  
 
You will need to provide your TIBCO Support Portal credentials.  Once logged in you can download the hotfix by selecting the “Downloads” -> “Hotfixes” option. Then go to “/AvailableDownloads/MFT/CommandCenter-InternetServer/8.5.2/hotfix-03” to download the hotfix.
 
The .zip file has the Readme file inside. Please unzip the file and review the Readme file for instructions on how to apply the hotfix.
 
================================================================================
Closed Issues in 8.5.2_HF-003 (This Release)
 
MFCC-9341
Unable to create PGP system keys in the FIPS mode.
 
MFCC-9266
The commons-vsf2-2.9.0.jar file is upgraded to commons-vfs2-2.10.0.jar.
 
MFCC-9263
The eddsa-0.3.0.jar file is removed because it is no longer used.
 
MFCC-9234
Users with ViewScheduler rights are able to view the list of scheduler jobs, but 
unable to access any specific job details. 
 
MFCC-9233
Alert description token remains empty.
 
MFCC-9229
FileShare dialog box displays access error when you select it.
 
MFCC-9217
When you configure to scan subdirectories from Google Cloud, only files in the 
root directory are returned.
 
MFCC-9212
When you add a PGP key using the link after adding a server, it results in an 
error.
 
MFCC-9018
JSON injection possible in the file transfer servlet.
 
MFCC-9015
When data is formatted incorrectly, REST calls return information about the 
library used.
 
MFCC-9012
In admin REST calls validation is occurring before authorization which can lead 
to data breach.
 
MFCC-9009
Rest calls are not checking rights properly.
 
MFCC-8963
Log4j tracing is not working.
 
MFCC-8855
Replace jetty JAR files with JDK connectors.
 
MFCC-8776
Tomcat is upgraded to version 9.0.102.
 
MFCC-8775
esapi JAR file is upgraded to version 2.6.0.0.
 
MFCC-8724
Struts is upgraded to version 6.7.0.
 
MFCC-8697
Apache Hadoop Common is upgraded to version 3.4.0.
 
MFCC-8696
Apache Commons IO is upgraded to version 2.15.0.
 
MFCC-8686
Error occurs due to inline styles and scripts in the Update User page for a 
Helpdesk user.
 
MFCC-8681
LDAP user logins can use the Bind User DN. 
 
MFCC-8676
When an automated LDAP Sync hangs due to a non-responsive LDAP Server, 
subsequent automated LDAP Sync requests hang until the MFT Server is restarted. 
 
MFCC-8674
Department users are not able to manage the public keys even when they are 
assigned rights.
 
MFCC-8671
Add Group ID associated with the User on page Partners > Users > Manage Users.
 
MFCC-8670
Need to add information about the new 'Log deleted Alert Audit, Login Audit and 
Admin change Records' parameters in the help section.
 
MFCC-8668
No target files are created when uploading zero byte files encrypted with PGP.
 
MFCC-8655
Intermittent issues with Drag-and-Drop File Transfers: Status Codes 302, 451, 
and Network Aborts.
 
MFCC-8523
web.xml parameter "SyncLDAPatLogon" will work for SFTP logins.
 
MFCC-8518
S3 server transfers fail after updating EC2 instance metadata config file to 
IMDSV2.
 
MFCC-8511
When collecting audit records from Platform Server using Collection service, 
ignore audit records with "TempError=Yes."
 
MFCC-8486
Though all traces are disabled on Command Center and Internet Server, app and 
comm traces are generated, while executing the transfer using the scheduler.
 
MFCC-8378
Update REST to add new server fields, FTP TLS resumption and email TLS version.
 
MFCC-8156
Add support for Google Workload Identify Federation integration with MFT.
 
MFCC-8145
When we use a user to connect to MFT Command Center via REST API, the Date Last 
Accessed field is not capturing the details.
 
MFCC-7758
Internet Server Active Transfers: Transfers by Client Protocol page PS protocol 
count show as "other" count and not as Platform Server.
 
MFCC-6845
Amazon S3 SDK is upgraded to version 2.20.69.
 
================================================================================
Closed Issues in 8.5.2_HF-002
 
MFCC-8567
When performing a transfer using Scheduler jobs, virtual alias to virtual alias
Internet Server transfers remain in the active transfer queue even after the
transfer completes.
 
MFCC-8490
Collector Service and Server Status Service REST calls do not check user 
permissions to start, stop, or get the status.
 
MFCC-8436
The "SocketConnectTimeout" web.xml parameter is added to define the TCP socket
connection timeout for all protocols.
 
MFCC-8423
The "InternetServerTransferThreadPoolSize" web.xml parameter is added to limit
the number of simultaneous transfers initiated by a Scheduler job.
 
MFCC-8420
When a virtual alias to virtual alias directory transfer contains a large
number of files, the Database connections time out and close. 
 
MFCC-8419
S3 SAML authentication fails when the bucket is shared by more than one server.
 
MFCC-8408
Maverick SSH Client and Server is upgraded to version 1.7.60.
 
MFCC-8406
The protobuf-java library is upgraded to version 3.25.5.
 
MFCC-8402
When you enter an invalid date in the advanced search section of the mailbox, 
the message ID is shown instead of the message.
 
MFCC-8399
In SharePoint, when a secret key expires, the error message does not specify
the exact cause.
 
MFCC-8390
The collection timeout is increased from 2 minutes to 10 minutes.
 
MFCC-8389
Tomcat version 9.0.91 fails to shut down when using Java version 21.
 
MFCC-8371
Bootstrap is removed from the MFT distribution.
 
MFCC-8361
When the "Server Type" is set to "FileShare", User folders do not appear at the
"Add/Update Transfers" page.
 
MFCC-8144
Connections to SSH servers might fail with the following error: "Strict KEX mode 
encountered a message that is not permitted at this time generated an error".
 
MFCC-8047
TLS version for SMTP TLS connections is configurable.
 
MFCC-8044
Bouncy Castle is upgraded to version 1.78.1.
 
MFCC-8038
Mailbox client is migrated from Angular to ReactJs.
 
MFCC-8037
Browser client is migrated from AngularJS to ReactJS.
 
MFCC-7986
Performance of the Scheduler Purge DB job is improved when deleting records 
from database tables.
 
MFCC-7844
Fileshare client is migrated from AngularJS to React.
 
MFCC-7795
Populate the "FrontEndCipherInfo" column of the "Audits" table when performing
a delete transfer using the SFTP protocol.
 
MFCC-7716
"ViewTransferServiceRight" and "ViewCCServiceRight" rights are added to view the
status of Services like JMS.
 
================================================================================
Closed Issues in 8.5.2_HF-001
 
MFCC-8130
When using Oracle, installing Internet Server or Command Center using Connection
Manager fails.
 
MFCC-8123
After upgrading to Tomcat 9.0.91, Command Center and Internet Server do not 
shutdown.
 
MFCC-8113
okHttp3 is upgraded to version 4.9.3.
 
MFCC-8111
Platform Server initiated uploads get intermittent network errors after sending
the entire file to Internet Server.
Note: Added web.xml parameter "PSWaitBeforeCloseMiliSec" to implement this fix.
If you encounter this issue, set the parameter to 250.
 
MFCC-8108
Users with "View" rights cannot click the tabs on server definitions.
 
MFCC-8100
Added support for FTPS TLS Session Resumption.
Note: When MFT acts as an FTPS Server and accepts requests from FTPS Clients,
use the PASV mode among the supported PORT and PASV modes.  
When MFT acts as an FTPS Client and initiates requests to FTPS Servers, only the
PASV mode is supported, the PORT mode is not supported.
 
MFCC-8097
When a multi-factor authentication registration email is sent, the QR code is 
not displayed on the email.
 
MFCC-8095
When Command Center updates a DNI template containing a special character
(for example, é), the template file is corrupted.
 
MFCC-8082
bctls-fips is upgraded to version 1.0.19.
 
MFCC-8080
The scheduler job "Purge DB Tables" for "Internet Server Audit" and "Platform 
Server Audit" records is slow and can time-out when run on Oracle.
 
MFCC-8079
Alerts are executed twice.
 
MFCC-8070
When logins fail due to the User definition "Restrict IP Address" parameter, 
users can still execute Admin and Transfer functions.
 
MFCC-8058
xmlsec is upgraded to version 3.0.4.
 
MFCC-8054
commons-configurations is upgraded to version 2.10.1.
 
MFCC-8053
Downloads from the Azure BLOB may fail with either HTTP code 500 or 
HTTP code 503 and no retry is attempted.
 
MFCC-8052
taglibs-standard-jstlel is upgraded to version 1.2.5.
 
MFCC-8050
nimbus-jose-jwt is upgraded to version 9.37.3.
 
MFCC-8049
batik is upgraded to version 1.17.
 
MFCC-8048
jetty-http is upgraded to version 9.4.54.
 
MFCC-8036 
Tomcat is upgraded to version 9.0.91.
 
MFCC-8032
Spring Beans and Spring Core are upgraded to version 5.3.33.
 
MFCC-8022
When a partner PGP encrypts a file using the RSA PGP Public Key "Master Key",
PGP decryption fails with the error: "secret key for message not found".
 
================================================================================

Issue/Introduction

TIBCO Managed File Transfer Command Center/Internet Server 8.5.2 hotfix HF-003 is now available