TIBCO iWay® Service Manager 9.0.0 HF-001 is now available

TIBCO iWay® Service Manager 9.0.0 HF-001 is now available

book

Article ID: KB0071852

calendar_today

Updated On:

Products Versions
ibi iWay Service Manager 9.0.0

Description

================================================================================
Introduction

This hotfix addresses CVE-2022-42889, an Apache Commons Text vulnerability (Text4Shell) that
potentially enables a malicious actor to execute arbitrary code by taking advantage of string interpolation.

TIBCO iWay Service Manager does not use the vulnerable areas of commons-text but we provide these
instructions to replace it if you so choose.

This hotfix applies to TIBCO iWay Service Manager 9.0.0 and iWay Integration Tools 9.0.0.

================================================================================
Closed Issues in 9.0.0 HF-001
 
NINE-13
Instructions to upgrade commons-text to version 1.10.0.

================================================================================

Environment

Supported Platforms

Resolution

The hotfix can be downloaded from the TIBCO Support Customer Portal Web User Interface
(https://support.tibco.com).  You will need to provide your TIBCO Support Portal credentials.  
Once you are logged in, you can download the hotfix files by selecting Downloads ->
Hotfixes -> AvailableDownloads/ibi/iWay Service Manager/9.0.0/HF-001.

Please contact TIBCO Support if you have any problems finding or downloading the hotfix.

Issue/Introduction

TIBCO iWay® Service Manager 9.0.0 HF-001 is now available.

Attachments

TIBCO iWay® Service Manager 9.0.0 HF-001 is now available get_app