Product Advisories

Section description:

LightWave Server: Dictionary import limited to 100 objects
SOAPam Server: SOAP response elements have namespace prefixes where previous versions did not
LightWave Server: Cancel & Install buttons are missing on Certificate installation dialogs
LightWave Server: Dictionary refresh objects are not pre-selected.
SOAPam Server: SOAPAM ABENDs after changing diagnostic log configuration
SOAPam Server: Control Panel jQuery update
LightWave Client: integer with scale values are serialized in exponential notation (1.0.4.2)
LightWave Client: integer with scale values are serialized in exponential notation
LightWave Client: memory leak occurs when using the azure-iot-hub signature method
LightWave Server: filesystem deadlock may occur during service redeploy.
LightWave Client: memory leak occurs on each request
LightWave Server: Digest authentication requires username in lower case
LightWave Server: API Method Test tool hangs on Internet Explorer 11
LightWave Server: A structure element in an array of structures is not serialized if the element is hidden in a previous structure in the array
LightWave Client: Diagnostic log may be corrupted when the request or response HTTP body contains multi-byte characters.
LightWave Client: large scaled integer values are not serialized correctly
SOAPam Server: SOAPAM process enters I/O retry loop when the TCPIP process returns a device down error (66)
LightWave Client: CLIENT may send an invalid Authorization header when a cached connection is reset by the web service provider
SOAPam Server: Certificate installation page returns HTTP 403 Forbidden error
SOAPam Server: SOAPAM abends when Access Control IP address list is longer than 1024 characters
LightWave Client: Multiple issues with null field handling
LightWave Server: JSON response is serialized incorrectly when multiple HTTP Response Body mappings are defined
LightWave Server: BLOB request returns HTTP error 415 - Unsupported Media Type
LightWave Server: Issue with dictionary caching causes excessive filesystem I/O
LightWave Server: Request returns 404 when a URI Path Component value contains the '.' or '*' character
Advisory on CVE-2021-44228 - Log4Shell vulnerability
Advisory on CVE-2021-4104 - JMSAppender in Log4j
LightWave Server: Dashboard always shows HTTP & Diagnostic logging disabled on TNS/E systems
Advisory on CVE-2022-0778: OpenSSL Denial of Service vulnerability

Information about known product issues and resolutions.

Advisory on CVE-2022-0778: OpenSSL Denial of Service vulnerability

Advisory Release Date Mar 21, 2022 Summary On March 15, 2022, the OpenSSL Project announced a Denial-of-Service vulnerability that affects all versions of OpenSSL. More information on this vulnerabil...
LightWave Server: Dashboard always shows HTTP & Diagnostic logging disabled on TNS/E systems

Advisory Release Date Jan 3, 2022 Summary On TNS/E systems (J-Series & H-Series) the LightWave Server Console Dashboard always shows HTTP & Diagnostic logging as disabled, regardless of the actual log...
Advisory on CVE-2021-4104 - JMSAppender in Log4j

Advisory Release Date Dec 20, 2021 Summary The CVE-2021-4104 vulnerability affects software applications that are Java based and use Apache Log4j 1.2. For more information on this vulnerability visit ...
Advisory on CVE-2021-44228 - Log4Shell vulnerability

Advisory Release Date Dec 11, 2021 Summary The CVE-2021-44228 vulnerability affects software applications that are Java based and use the Apache Log4j 2 utility. For more information on this vulnerabi...
LightWave Server: Request returns 404 when a URI Path Component value contains the '.' or '*' character

Summary When LightWave Server receives a request, if the API definition contains URI Path Component mappings, and the component value in the request URI contains the period (.) or asterisk (*) charact...
LightWave Server: Issue with dictionary caching causes excessive filesystem I/O

Summary An issue with the dictionary cache implementation can cause excessive I/O to the LightWave Filesystem. This can result in request processing delays due to read lock waits on the FS00 file. Adv...
LightWave Server: BLOB request returns HTTP error 415 - Unsupported Media Type

Summary When LightWave Server receives a request, and the the Content-Type header is not one of: application/json application/octet-stream application/x-www-form-urlencoded text/plain An HTTP 415 Uns...
LightWave Server: JSON response is serialized incorrectly when multiple HTTP Response Body mappings are defined

Summary When LightWave Server serializes a response, if the response is defined with multiple HTTP Response Body mappings, only the last mapping is serialized in the JSON response. This issue was intr...
LightWave Client: Multiple issues with null field handling

Summary Multiple issues exist with the handling of null fields when using the LightWave Client schema isNull / nillable features. These issues apply to both JSON & XML messages. The issues are: When t...
SOAPam Server: SOAPAM abends when Access Control IP address list is longer than 1024 characters

Summary An issue exists in SOAPam© Server that causes the SOAPAM process to abend when the user attempts to modify the Control Panel Access Control Settings and the IP address list is longer than 102...