This hotfix addresses CVE-2022-42889, an Apache Commons Text vulnerability (Text4Shell) that potentially enables a malicious actor to execute arbitrary code by taking advantage of string interpolation.
This hotfix applies to TIBCO Omni-Gen DQ Edition, TIBCO Omni-Gen MDM Edition, and TIBCO Omni-HealthData Edition Release 4.1.1.
=============================================================================== Closed Issues in 4.1.1 HF-004
OG-8684 Hotfix to upgrade commons-text to version 1.10.0.
TIBCO Omni-Gen® DQ, TIBCO Omni-Gen® MDM, and TIBCO Omni-HealthData® 4.1.1 HF-004 are now available.
Environment
Supported Platforms
Resolution
The hotfix can be downloaded from the TIBCO Support Customer Portal Web User Interface (https://support.tibco.com). You will need to provide your TIBCO Support Portal credentials. Once you are logged in, you can download the hotfix by selecting Downloads -> Hotfixes -> AvailableDownloads -> ibi.