Third-Party Update: Netty

Netty has been updated to version 4.1.63.Final to avoid security vulnerabilities of the previous versions.

(CMS-19257)

Third-Party Update: Jetty

Jetty has been updated to version 9.4.39.v20210325 to avoid security vulnerabilities of the previous version.

(CMS-19250)

Update of MongoDB Java Driver

The thirdparty dependencies org.mongodb:mongodb-driver-legacy, org.mongodb:mongodb-driver-core and org.mongodb:bson have been updated from version 4.1.0 to 4.2.2.

(CMS-19077)

Maven Plugin Versions

The versions of the maven-install-plugin and the maven-deploy-plugin have been consolidated to 3.0.0-M1 all throughout CMCC.

(CMS-18848)

Prefetch Configuration Fix

A bug in the lookup of content type specific prefetch configuration was fixed. The PrefetchConfigContentTypeDispatcher could have wrongly reported no content type specifc prefetch configuration due to parallel/unsynchronized access to PrefetchConfigContentTypeDispatcher#configuredContentTypes . With the fix, the lookup of prefetch settings now also uses more modern Settings API.

(CMS-18836)

Fixed bug that required exact case in LDAP user name for login

Fixed the bug that prevented LDAP users to log in with a user name that differed in case. It's now possible again to log in with a name that differs in case, if the LDAP user provider ignores case when returning a user for some name. Note, that the login for built-in users always requires exact case.

(CMS-18825)

Third-Party Update: Checker Framework

The Checker Framework has been updated to version 3.7.1.

The Checker Framework can be used to verify usage of personal data during compilation as described in the Blueprint Developer Manual, section "Handling Personal Data". The new version is required for this to work with Java 11 versions above 11.0.6.

(CMS-18794)