Readme file for: IBM® FileNet® P8 Content Platform Engine Container
Update name: 5.5.4.0-P8CPE-Container
Fix ID: 5.5.4.0-P8CPE-Container-IF005
Publication date: 16 July 2021
Last modified date: 16 July 2021
This Interim Fix deploys a new Content Platform Engine (CPE) 5.5.4 container or updates an existing container. It is a full release of the CPE container. This Interim Fix can be deployed on IBM Cloud Public, Red Hat OpenShift, or a certified Kubernetes managed container environment. The interim fix supports the rolling upgrade feature in Kubernetes which enables you to keep your environment up and running while upgrading each of the CPE servers in your configuration.
The following changes are introduced in this 5.5.4.0-P8CPE-Container-IF005 Interim Fix:
The following changes are introduced in this 5.5.4.0-P8CPE-Container-IF004 Interim Fix:
The following changes are introduced in this 5.5.4.0-P8CPE-Container-IF003 Interim Fix:
The following changes are introduced in this 5.5.4.0-P8CPE-Container-IF001 Interim Fix:
Following are some known problems and restrictions that are related to this Interim Fix:
You can access the container images in the IBM Docker registry with your IBMid (Option 1), or you can download images from Fix Central (Option 2).
Once expanded, the following file will be available: 5.5.4.0-P8CPE-Container-IF005.tgz The Content Platform Engine container image
Specify the two mandatory parameters in the command line.
For other certified Kubernetes platforms, see the vendor information for how to upload into the registry. scripts/loadimages.sh -p 5.5.4.0-P8CPE-Container-IF005.tgz -r $(oc registry info)/my-project Note: The project must have pull request privileges to the registry where the images are loaded. The project must also have pull request privileges to push the images into another namespace/project
Important: If you are using this Interim Fix as a part of a new deployment of the FileNet Content Manager containers, you must deploy the container as described in the Knowledge Center topic Deploying a new P8 domain by using containers. Additionally review the Interim Fix Update Readme file for other important information that may be required when installing the container deployment. Link to the Interim Fix Update Readme file provided below.
Important: If you are using this Interim Fix as a part of a upgrading an existing deployment, you must deploy the container as described in the Knowledge Center topic Upgrading container deployments. Additionally review the Interim Fix Update Readme file in the ibm-ecm/container-samples GitHub repository for other important information that may be required when upgrading the container deployment. Link to the Interim Fix Update Readme file provided below.
Update of a deployment to this Interim Fix consists of the following tasks:
To use this Interim Fix to update a deployment of the Content Platform Engine container, follow the procedures in the Interim Fix Update Readme file appropriate to your cloud platform:
After the operator processing completes, verify the Content Platform Engine deployment.
Updates to the Content Platform Engine client files must be installed as needed on the Content Platform Engine clients. See the Readme for the Content Platform Engine interim fix 5.5.4.0-P8CPE-IF005 for details.
Updates to the Content Platform Engine client tools must be installed as needed on the Content Platform Engine tools. See the Readme for the Content Platform Engine interim fix 5.5.4.0-P8CPE-IF005 for details.
The following table lists the product fixes included in this interim fix.
APAR |
Description |
|---|---|
PJ46188 |
Content Search Services (CSS) Indexing/Search PDF document issues due to added spaces during text extraction. |
PJ46395 |
Administration Console for Content Platform Engine (ACCE) does not allow a domain administrator to delete a read-only Object Store. |
PJ46409 |
FileNet Deployment Manager (FDM) fails to reassign object store with error FNRCE0058E: E_REQUIRED_VALUE_ABSENT. |
PJ46414 |
Administration Console for Content Platform Engine (ACCE) Custom Property "RetentionPeriod" showing unexpected behavior. |
PJ46427 |
Enhancement: Content Engine (CE) .NET API must support mutual authentication. |
PJ46444 |
Administration Console for Content Platform Engine (ACCE) Search results save as functionally does not work with all browsers. |
PJ46463 |
PSIRT ADV0030051 (CVE-2021-20448): Administration Console for Content Platform Engine (ACCE) Cross Site Scripting (XSS) security vulnerability. See security bulletin 6438907. |
PJ46468 |
Content Engine (CE) client API TRANSPORT_WSI_DESERIALIZATION_ERROR occurs in custom bulk import utility. |
PJ46483 |
Administration Console for Content Platform Engine (ACCE) Localization issue with float property thousand separator when operating system language is not English. |
PJ46485 |
Content Search Services (CSS) Linux x86 Oracle Outside In Technology (OIT) Open SSL dependency starting with the January 2021 OIT Search/Image Export patch. See technote 6439533 |
PJ46490 |
Intermittently Content Search Services (CSS) is failing to index documents with large number of content elements. |
PJ46491 |
Content Engine Bulk Importer (CEBI) does not validate date values. |
PJ46492 |
Content Search Services (CSS) Content Based Retrieval (CBR) search "divide by zero" error and failure to truncate Oracle CBR temp table. |
PJ46503 |
Process Engine (PE) TCP connection is reset for each RPC calls with SSL. The connection expected to be reused instead. |
PJ46505 |
Content Platform Engine (CPE) REST API: Create object store sets compression on for database tables and index even if the underlying database server does not support compression, causing object store creation failure. |
PJ46522 |
Web Service GetContent by path call throws E_UNEXPECTED_EXCEPTION error. |
PJ46543 |
PSIRT ADV0032469 (CVE-2021-20492): WebSphere Liberty XML External Entity (XXE) Injection security vulnerability. See security bulletin 6456319. |
PJ46527 |
Administration Console for Content Platform Engine (ACCE) Search results export to file and multiple values in property. |
APAR |
Description |
|---|---|
PJ46298 |
Three PDF files create invalid thumbnail images - text displayed in the image is invalid. |
PJ46320 |
Administration Console for Content Platform Engine (ACCE) folders not showing the 'Containment Name' value in the 'Containment Name' column. |
PJ46324 |
Content Search Services (CSS) Content Base Retrieval (CBR) and Thumbnail generation: Some PDF documents have some areas inside that are missed by CBR extraction and Thumbnail generation. |
PJ46336 |
Enhancement: Allow sensitive information to (optionally) be removed from Content Platform Engine (CPE) ping page. |
PJ46337 |
Content Search Services (CSS) text extraction failed against Lotus 123 document with Oracle Outside In Technology (OIT) v8.5.5. |
PJ46338 |
S3 Advanced Storage Device authentication issue for some S3 vendors when JDK is not in an English Locale. |
PJ46351 |
Inefficient logic for looking up a GCD object by name. |
PJ46359 |
Administration Console for Content Platform Engine (ACCE) use of Marking Sets and Security Proxies prevent DISTINCT queries from working. |
PJ46370 |
Administration Console for Content Platform Engine (ACCE) issue with user created Component Queues. |
PJ46392 |
Administration Console for Content Platform Engine (ACCE) replaces white space with plus sign "+" when downloading content with accents. |
PJ46396 |
FileNet Deployment Manager (FDM): Object Store reassign fails when reassigning a CPE 5.2.0 Object Store with an isolated region to a CPE 5.5.x p8 domain. |
PJ46397 |
Administration Console for Content Platform Engine (ACCE) unable to edit security template. |
PJ46398 |
Administration Console for Content Platform Engine (ACCE) Object store search returns bad class id when class set to Documents and its Subclasses. |
PJ46399 |
Administration Console for Content Platform Engine (ACCE) issue with Saving Searches with Date/Time included in Search fields. |
APAR |
Description |
|---|---|
PJ46171 |
Loading of Case Analyzer process task manager user interface is slow with lots of user defined fields. |
PJ46215 |
PSIRT ADV0026757 (CVE-2020-4759): Administration Console for Content Platform Engine (ACCE) result in csv is incorrectly separated after importing to Excel. See security bulletin 6336917. |
PJ46246 |
Content Engine (CE) Thumbnail ibmfnthb processes can be orphaned (not terminated) during CPE shutdown. |
PJ46249 |
Administration Console for Content Platform Engine (ACCE) Document name with Chinese/Arabic characters gets corrupted when download document name. |
PJ46297 |
FileNet Deployment Manager (FDM): E_ACCESS_DENIED error occurs when trying to import a document with the "Sharing Controller" property. |
PJ46302 |
Administration Console for Content Platform Engine (ACCE) search results issue when clicking column header to sort. |
PJ46303 |
PSIRT ADV0027095 (CVE-2020-4590): WebSphere Liberty denial of service security vulnerability. See security bulletin 6333599. |
APAR |
Description |
|---|---|
PJ46120 |
Administration Console for Content Platform Engine (ACCE) object store search now sets "Document" as the default class for new searches. |
PJ46127 |
Administration Console for Content Platform Engine (ACCE) error message when trying to import component operations. |
PJ46132 |
Problem with Content Search Services (CSS) Content Based Retrieval (CBR) indexing dispatcher stats logging and locale (German) decimal parsing. |
PJ46138 |
Administration Console for Content Platform Engine (ACCE) annoyance check-in external URL. |
PJ46141 |
PSIRT ADV0022946 (CVE-2020-4303, CVE-2020-4304): IBM WebSphere Application Server Network Deployment in CPE Container. See security bulletin 6203516. |
PJ46144 |
PSIRT Advisory ADV0023337 (CVE-2020-4447): Administration Console for Content Platform Engine (ACCE) Cross-site scripting security vulnerabilities. See security bulletin 6208453. |
PJ46150 |
PSIRT ADV0023727 (CVE-2020-4329): WebSphere Application Server security vulnerability. See security bulletin 6209707. |
PJ46153 |
Apache Commons FileUpload Resource Leak WS-2014-0034. |
PJ46159 |
PSIRT ADV0023806 (CVE-2020-4329): IBM WebSphere Application Server Network Deployment in CPE Container. See security bulletin 6209092. |
PJ46165 |
Centera FCP FPPool close causes crash in customer environment. |
PJ46166 |
Administration Console for Content Platform Engine (ACCE) FileNet Rounding float decimals. |
PJ46167 |
PSIRT ADV0023949 (CVE-2020-4421): IBM WebSphere Application Server Network Deployment in CPE Container. See security bulletin 6209095. |
PJ46176 |
Administration Console for Content Platform Engine (ACCE) shows wrong queue sweep items. |
PJ46179 |
Localization of Property templates in Administration Console for Content Platform Engine (ACCE) not loading. |
PJ46194 |
CONTENT_CA_SKIP_FAILED error occurs when retrieving files greater than 1 MB from an ICOS device using WSI. |
PJ46200 |
Administration Console for Content Platform Engine (ACCE) Not able to create Master domain with option CPEDomainType. |
PJ46201 |
Administration Console for Content Platform Engine (ACCE) enhancement to improve display of choice items for choice lists. |
PJ46202 |
Administration Console for Content Platform Engine (ACCE) Choice list Audit history without editing items, showing in update event Properties. |
PJ46203 |
WebSphere LTPA SSO fails from traditional WebSphere Application Server (tWAS) Content Platform Engine (CPE) client to CPE server on Liberty. |
PJ46206 |
A file handle and memory leak occurs when using Process Engine (PE) custom component queues in Apache Axix2. |
PJ46211 |
Administration Console for Content Platform Engine (ACCE) Legacy Workflow System's Adapter's Configure User Interface (UI) displays incorrect Object Store potentially. |
PJ46219 |
S3 Storage Configuration parameters are defined as static, might cause issues in certain situation. |
PJ46224 |
Administration Console for Content Platform Engine (ACCE) on WebSphere fails adding Property Template of type Object or integer into Document Class after upgrade. |
PJ46232 |
Process Engine (PE) Web Services (PEWS) Client Authentication Issue when using bearer token instead of username - method does not exist wsiAuthenticator error. |
APAR |
Description |
|---|---|
PJ45887 |
Administration Console for Content Platform Engine (ACCE) localization issue in string and integer Choicelists. |
PJ45961 |
Administration Console for Content Platform Engine (ACCE): Content Platform Engine(CPE) Security Policy does not save configuration of Security Template when using Roles. |
PJ45964 |
Administration Console for Content Platform Engine (ACCE) Choice lists have a null value added. |
PJ45992 |
NullPointerException occurs if a property with null value is included in an arithmetic clause in a filter expression. |
PJ46004 |
Apostrophe in the Process Engine (PE) in-basket filter search causes a syntax failure when configured for case insensitive Search. |
PJ46028 |
Administration Console for Content Platform Engine (ACCE) using greater than ">" or less than "<" in a sweep job filter expression throws syntax error "Bad filter expression". |
PJ46032 |
ACCE hangs or errors out with creation/navigation to Choice Lists, Audit Definition Tab when the object names contain non-English (accented) characters. |
PJ46033 |
Snaplock Fixed Content Device (FCD) update retention failure for NFS mount. |
PJ46034 |
Stand-alone Process designer error "java.lang.ClassNotFoundException: com.filenet.wcm.toolkit.client.ui.WcmDlgFactory". See technote 1171240. |
PJ46044 |
Administration Console for Content Platform Engine (ACCE) Opening subclass Annotation doesn't display the annotation in a new tab. |
PJ46049 |
External Share REST API: Allow user to enable share even if we cannot resolve email template resource bundle for a locale. |
PJ46050 |
PISRT ADV0020631 (CVE-2019-4679): IBM FileNet Content Manager security vulnerabilities in Administration Console for Content Platform Engine (ACCE) logon response header. See security bulletin 6251987. |
PJ46053 |
On some Content Platform Engine (CPE) client applications intermittent FIPSRuntimeExceptions may occur. |
PJ46054 |
FNRAM9018 exception returned creating Case History store after upgrading. |
PJ46059 |
On Administration Console for Content Platform Engine (ACCE) document properties page, the right panel is transparent. |
PJ46061 |
FNRAC1005E error occurs when trying to add Choice Item to a Choice List with 951 choice items. |
PJ46065 |
PISRT ADV0021947 (CVE-2019-4720), ADV0022013 (CVE-2020-4163): IBM WebSphere Application Server Network Deployment. See security bulletin 1581579. |
PJ46069 |
Case History - Handle update events on case comments. |
PJ46070 |
Content Engine Audit disposition code has a check against the bookmark which is inverted. |
PJ46075 |
BACSoC NullPointerException from PE when any Process Engine (PE) RCP's are performed after 72 hours from initial logon. |
PJ46224 |
Administration Console for Content Platform Engine (ACCE) on WebSphere fails adding Property Template of type Object or integer into Document Class after upgrade. |
This information was developed for products and services offered in the U.S.A.
IBM may not offer the products, services, or features discussed in this document in other countries. Consult your local IBM representative for information on the products and services currently available in your area. Any reference to an IBM product, program, or service is not intended to state or imply that only that IBM product, program, or service may be used. Any functionally equivalent product, program, or service that does not infringe any IBM intellectual property right may be used instead. However, it is the user's responsibility to evaluate and verify the operation of any non-IBM product, program, or service.
IBM may have patents or pending patent applications covering subject matter described in this document. The furnishing of this document does not grant you any license to these patents. You can send license inquiries, in writing, to:
IBM Director of Licensing IBM Corporation J74/G4 555 Bailey Avenue San Jose, CA 95141 U.S.A.
For license inquiries regarding double-byte (DBCS) information, contact the IBM Intellectual Property Department in your country or send inquiries, in writing, to:
Intellectual Property Licensing Legal and Intellectual Property Law IBM Japan, Ltd. 19-21, Nihonbashi-Hakozakicho, Chuo-ku Tokyo 103-8510, Japan
The following paragraph does not apply to the United Kingdom or any other country where such provisions are inconsistent with local law: INTERNATIONAL BUSINESS MACHINES CORPORATION PROVIDES THIS PUBLICATION "AS IS" WITHOUT WARRANTY OF ANY KIND, EITHER EXPRESS OR IMPLIED, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF NON-INFRINGEMENT, MERCHANTABILITY OR FITNESS FOR A PARTICULAR PURPOSE. Some states do not allow disclaimer of express or implied warranties in certain transactions, therefore, this statement may not apply to you.
This information could include technical inaccuracies or typographical errors. Changes are periodically made to the information herein; these changes will be incorporated in new editions of the publication. IBM may make improvements and/or changes in the product(s) and/or the program(s) described in this publication at any time without notice.
Any references in this information to non-IBM Web sites are provided for convenience only and do not in any manner serve as an endorsement of those Web sites. The materials at those Web sites are not part of the materials for this IBM product and use of those Web sites is at your own risk.
IBM may use or distribute any of the information you supply in any way it believes appropriate without incurring any obligation to you.
Licensees of this program who wish to have information about it for the purpose of enabling: (i) the exchange of information between independently created programs and other programs (including this one) and (ii) the mutual use of the information which has been exchanged, should contact:
IBM Corporation J46A/G4 555 Bailey Avenue San Jose, CA 95141-1003 U.S.A.
Such information may be available, subject to appropriate terms and conditions, including in some cases, payment of a fee.
The licensed program described in this document and all licensed material available for it are provided by IBM under terms of the IBM Customer Agreement, IBM International Program License Agreement or any equivalent agreement between us.
Any performance data contained herein was determined in a controlled environment. Therefore, the results obtained in other operating environments may vary significantly. Some measurements may have been made on development-level systems and there is no guarantee that these measurements will be the same on generally available systems. Furthermore, some measurements may have been estimated through extrapolation. Actual results may vary. Users of this document should verify the applicable data for their specific environment.
Information concerning non-IBM products was obtained from the suppliers of those products, their published announcements or other publicly available sources. IBM has not tested those products and cannot confirm the accuracy of performance, compatibility or any other claims related to non-IBM products. Questions on the capabilities of non-IBM products should be addressed to the suppliers of those products.
All statements regarding IBM's future direction or intent are subject to change or withdrawal without notice and represent goals and objectives only.
This information contains examples of data and reports used in daily business operations. To illustrate them as completely as possible, the examples include the names of individuals, companies, brands and products. All of these names are fictitious and any similarity to the names and addresses used by an actual business enterprise is entirely coincidental.
COPYRIGHT LICENSE:
This information contains sample application programs in source language, which illustrate programming techniques on various operating platforms. You may copy, modify and distribute these sample programs in any form without payment to IBM, for the purposes of developing, using, marketing or distributing application programs conforming to the application programming interface for the operating platform for which the sample programs are written. These examples have not been thoroughly tested under all conditions. IBM, therefore, cannot guarantee or imply reliability, serviceability, or function of these programs. The sample programs are provided "AS IS", without warranty of any kind. IBM shall not be liable for any damages arising out of your use of the sample programs.
IBM, the IBM logo and ibm.com are trademarks or registered trademarks of International Business Machines Corp., registered in many jurisdictions worldwide. Other product and service names might be trademarks of IBM or other companies. A current list of IBM trademarks is available on the Web at "Copyright and trademark information" at www.ibm.com/legal/copytrade.shtml.
Intel, Intel logo, Intel Inside, Intel Inside logo, Intel Centrino, Intel Centrino logo, Celeron, Intel Xeon, Intel SpeedStep, Itanium and Pentium are trademarks or registered trademarks of Intel Corporation or its subsidiaries in the United States and other countries.
Linux is a registered trademark of Linus Torvalds in the United States, other countries, or both.
Microsoft, Windows, Windows NT and the Windows logo are trademarks of Microsoft Corporation in the United States, other countries, or both.
UNIX is a registered trademark of The Open Group in the United States and other countries.
Java and all Java-based trademarks and logos are trademarks or registered trademarks of Oracle and/or its affiliates.
Other product and service names might be trademarks of IBM or other companies.
| Date |
Description |
|---|---|
| 16 July 2021 |
Initial interim fix release. |