| J2L028 |
| SAS Middle Tier 9.4_M7 |
| Issue(s) Addressed: | Introduced: |
| 66922 | SAS® 9.4 Logon Manager contains third-party libraries that have known vulnerabilities |
J2L001 |
| 67031 | Middle-tier configuration fails with errors during the "Load Content/Upload Content, Web Infrastructure Platform Configuration" step |
J2L002 |
| 66540 | SAS® Management Console and SAS® Data Integration Studio might return the message "table failed to update" when you use the Update Metadata tool |
J2L003 |
| 67069 | The Number of Records field in the Basic Properties pane of SAS® Data Integration Studio might contain an incorrect value |
J2L003 |
| 67171 | A job that contains a Model Scoring transformation fails with the message "ERROR: Invalid hexadecimal constant string..." |
J2L003 |
| 67177 | Deployment of a stored process as a SAS® BI Web Service fails with the error "com.ctc.wstx.exc.WstxUnexpectedCharException: Unexpected character..." |
J2L003 |
| 67188 | A "Compare Tables: java.lang.NullPointerException" error occurs when deploying a job that contains a Compare transformation using a hash lookup method |
J2L003 |
| 67800 * | The high availability feature is added to SAS® Job Flow Scheduler |
J2L004 |
| 67555 | SAS® Job Flow Scheduler is non-responsive and a null pointer exception occurs after scheduling a single flow |
J2L004 |
| 67742 | Performance degradation occurs when you open campaigns in SAS® Customer Intelligence Studio |
J2L005 |
| 68006 | The "Send Test Notification" action in SAS® Web Administration Console (in SAS® 9.4M7) fails for any template that is edited or modified |
J2L006 |
| 68162 | Preventing Cross-Site Request Forgery (CSRF) attacks for SAS® Comments Manager and other shared applications |
J2L006 |
| 67771 | SAS® LASR™ Analytic Server Loader ignores "Use runtime lookup for credentials for statements requiring credentials" in SAS® Data Integration Studio |
J2L007 |
| 68479 | The GemfireBasedTicketCache cache locator can fail with the error "ClassCastException" in a clustered SAS® 9.4 middle-tier environment |
J2L007 |
| 68521 | The export wizard in SAS® Data Integration Studio does not retain the expected column order in the composite index or composite primary key |
J2L007 |
| 68522 | SAS® Data Integration Studio 4.905 displays "Error writing metadata:Repository ABCDEFGH is not registered" when you add a new responsibility |
J2L007 |
| 68540 | SAS® Data Integration Studio jobs contain extraneous metadata content that might negatively impact metadata performance |
J2L007 |
| 68545 | The command-line batch deployment tool fails to include the Metadata Server and Port information in the job header comments |
J2L007 |
| 68546 | "...Multiple lengths were specified for the variable recreate by input data set(s). This may cause truncation..." occurs after you submit a job |
J2L007 |
| 68566 | A DeployJobs command with the REDEPLOY option creates a new job with the name of the original job, even though you entered a new Deployed Job Name |
J2L007 |
| 60769 | File events are not mapped correctly after importing a flow |
J2L010 |
| 68789 | SAS® Content Server contains a cross-site scripting vulnerability |
J2L010 |
| 68924 | SAS® Data Integration Studio jobs contain extraneous metadata content that might negatively impact metadata performance |
J2L010 |
| 68945 | The SAS® Stored Process Web Application contains a reflected cross-site scripting (XSS) vulnerability |
J2L011 |
| 69038 | "An error occurred when loading data" appears in the SAS® Analytical Data Set Builder Web Application |
J2L013 |
| 69136 | The HTML Commons component in SAS® 9.4 Web Infrastructure Platform contains a cross-site scripting vulnerability |
J2L014 |
| 69508 | CASLIB options that begin with numbers in SAS® Data Integration Studio 4.905 do not work |
J2L015 |
| 69855 | SAS® Workflow Services fail to recognize changes to the role memberships of a metadata group |
J2L017 |
| 58778 | The SAS® Object Spawner stops launching Java client-initiated workspace servers that are doubly redirected |
J2L018 |
| 70012 | Time-out errors occur even when the web application session is active |
J2L018 |
| 70142 | SAS® 9.4M7 (TS1M7) includes end-of-life Log4J version 1 libraries |
J2L019 |
| 70147 | SAS® 9.4M7 (TS1M7) contains an access control bypass vulnerability in the comment feature of SASWIPClientAccess 9.4 M7 |
J2L020 |
| 70252 | Issues defining SPDE libraries in SAS® Management Console |
J2L020 |
| 70265 | The SAS® Stored Process Web Application contains a cross-site scripting vulnerability |
J2L020 |
| 70208 | The SAS® Logon Manager contains a denial-of-service vulnerability |
J2L022 |
| 70674 | SAS® Stored Processes with certain UTF-8 characters might fail with an error after applying hot fixes for SAS® Middle Tier and SAS® Management Console |
J2L024 |
| 70103 | The SAS® Management Console Schedule Manager might take a long time to display a list of flows |
J2L028 |
| 70970 | Incorrect results can be generated with the Lookup Transformation when a column in a source table is renamed |
J2L028 |
| * Indicates that the fix for the issue described in this SAS Note does not apply to all Operating Systems. |
NOTE: The installation instructions for this hot fix contain a PRE-INSTALLATION section that must be reviewed before proceeding with the installation of this hot fix. This section includes a list of other hot fixes that must be applied. Please contact SAS Technical Support if you have questions.
NOTE:If you install this hot fix, you must also install hotfixes J7S004 and I9E024 to surface the fix documented in SAS Note 68924
NOTE:If you install this hot fix, you must also install hotfix I9U003 to surface the fix documented in SAS Note 69524
|
|
| D indicates that the Documentation has special pre-installation, post-installation or other unique instructions not commonly used for hot fix deployment. |
General Information about Hot Fixes