Skip to main content Skip to complementary content

Notable fixes and Known issues in Talend Remote Engine R2024-03

Security enhancements

Issue Description
TMC-27002 The following engine dependencies have been upgraded:
  • Karaf: 4.4.4 to 4.4.5
  • Camel: 3.21.2 to 3.22.1
  • Jackson: 2.15.2 to 2.16.1
  • 5.13.0 to 5.14.0
  • org.bouncycastle: 1.75 to 1.77
  • commons-codec: 1.15 to 1.16.1
  • commons-io: 2.13.0 to 2.15.1
  • commons-lang3: 3.13.0 to 3.14.0
  • guava: 32.1.3-jre to 33.0.0-jre
  • oshi: 6.4.1 to 6.4.13
  • aws-sdk: 1.12.261 to 1.12.655
  • jose4j: 0.9.3 to 0.9.6
TMC-27003 The Spring Web version has been upgraded to 6.0.14, mitigating the following vulnerabilities:
  • CVE-2016-1000027 - Remote Code Execution (RCE)
  • CVE-2024-22243 - Spring Framework URL Parsing with Host Validation
TMC-27323 The Apache Commons Compress version has been upgraded to 1.26.0 to repair the following medium severity issues:
  • CVE-2024-25710 - Denial Of Service (DoS)
  • CVE-2024-26308 - Denial Of Service (DoS)
TPOPS-7214 The Logback dependencies have been upgraded to 1.3.14 to address a high severity vulnerability:
  • CVE-2023-6378 - Denial Of Service (DoS)

Notable fixes

Issue Description
TMC-27045 This ticket addressed a missing log issue for some executions.
TMC-27095 A random connection issue to Talend Management Console has been fixed.
TMC-27259 When a task execution starts too close to an engine restart, the task can remain stuck in its Running status, instead of being correctly labeled as Failed. The new engine version introduces a new mechanism to prevent this issue.
TINSTL-2679 This ticket repairs the following issue when installing Talend Remote Engine as a service on Rocky Linux 9 or Red Hat Enterprise Linux 9:
Error running systemctl enable talend-remote-engine.service -f: Failed to enable 
unit: File talend-remote-engine: Invalid cross-device link
TINSTL-2703 Talend Remote Engine installation as a service fails when a relative path is used. This ticket ensures a relative path is correctly taken into account.
When wrong credentials are used to connect Talend Remote Engine to Talend Runtime, this error is not logged. A warning message has been added to alert you to these errors.
Undeployment of a data service task fails silently because of connection issues, leading to the failure of the deployment of the new task version.

With this fix, deployment or undeployment resumes from the failed state.

This ticket addresses the issue of OSGi bundles being inadvertently deleted when Talend Remote Engine and Talend Runtime are restarted at the same time, or nearly at the same time. Specifically, Talend Remote Engine erroneously empties the OSGi folder of the Data Service Runner.

Did this page help you?

If you find any issues with this page or its content – a typo, a missing step, or a technical error – let us know how we can improve!