Release 10.11.3.1
Other
PAM-33506
Apama fix to update OpenSSL to resolve CVE-2022-0778.
In Docker images, the version of OpenSSL has been updated to resolve CVE-2022-0778. Customers with access to Software AG Update Manager (SUM) should install the latest "Common Libraries for OpenSSL" fix located in the Infrastructure > Libraries section of SUM.
PAM-33496
Vulnerable third-party spring-beans/spring-core needs to be upgraded to 5.3.18.
The version of the Cumulocity IoT SDK used by the Cumulocity IoT codec has been updated to resolve CVE-2022-22965. Customers who have access to Software AG Update Manager (SUM) should also install the latest Shared Bundles SpringFramework fix located under Shared Bundles in SUM.