TPS-5177 (cumulative patch) - 7.3

Version
7.3
Language
English
Product
Talend Big Data
Talend Big Data Platform
Talend Data Fabric
Talend Data Integration
Talend Data Management Platform
Talend Data Services Platform
Talend ESB
Talend MDM Platform
Talend Real-Time Big Data Platform
Module
Talend Identity and Access Management

TPS-5177 (cumulative patch)

Info Value
Patch Name Patch_20220407_TPS-5177_v1
Release Date 2022-04-07
Target Verson 20220407_1-V7.3.1
Product affected IAM

Introduction

This patch is cumulative. It includes all previous generally available patches for Talend IAM 7.3.1.

NOTE: For information on how to obtain this patch, reach out to your Support contact at Talend.

Fixed issues

This patch contains the following fixes:

  • TPS-4958: [7.3.1] Syncope with MySQL is not working (TPSVC-17939)
  • TPS-4814: [7.3.1] Wrong table name for on-premise cleaner in case of mysql usage (TPSVC-9276)
  • TPS-5055: [7.3.1] Patch log4j CVE in Syncope
  • TPS-5080: [7.3.1] Patch log4j to 2.17.1 in Syncope
  • TPS-5177: [7.3.1] Patch Spring4Shell CVE-2022-22965

Prerequisites

Consider the following requirements for your system:

  • Talend IAM 7.3.1 must be installed.

Installation

  1. Stop IAM
  2. Create a backup directory 
    $ mkdir -p <backup_dir>
  3. Copy original *.war files to the backup directory 
    $ cp <TALEND>/iam/apache-tomcat/webapps/idp.war <backup_dir>
$ cp <TALEND>/iam/apache-tomcat/webapps/oidc.war <backup_dir>
$ cp <TALEND>/iam/apache-tomcat/webapps/scim.war <backup_dir>
$ cp <TALEND>/iam/apache-tomcat/webapps/sts.war <backup_dir>
$ cp <TALEND>/iam/apache-tomcat/webapps/sts-tac.war <backup_dir>
$ cp <TALEND>/iam/apache-tomcat/webapps/syncope.war <backup_dir>
$ cp <TALEND>/iam/apache-tomcat/webapps/syncope-console.war <backup_dir>
$ cp <TALEND>/iam/apache-tomcat/webapps/syncope-enduser.war <backup_dir>
    Note: if you made any changes in extracted service app before don't forget to backup them too.
  4. Remove original webapp directories and files 
    $ rm -rf <TALEND>/iam/apache-tomcat/webapps/idp*
$ rm -rf <TALEND>/iam/apache-tomcat/webapps/oidc*
$ rm -rf <TALEND>/iam/apache-tomcat/webapps/scim*
$ rm -rf <TALEND>/iam/apache-tomcat/webapps/sts*
$ rm -rf <TALEND>/iam/apache-tomcat/webapps/syncope*
  5. Uzip the patch file: 
    $ unzip Patch_20220407_TPS-5177_v1.zip
  6. Copy patched war file to webapps directory replacing the original one 
    $ cp *.war <TALEND>/iam/apache-tomcat/webapps/
  7. Start IAM

Uninstallation

  1. Stop IAM
  2. Remove patched webapp directories and files 
    $ rm -rf <TALEND>/iam/apache-tomcat/webapps/idp*
$ rm -rf <TALEND>/iam/apache-tomcat/webapps/oidc*
$ rm -rf <TALEND>/iam/apache-tomcat/webapps/scim*
$ rm -rf <TALEND>/iam/apache-tomcat/webapps/sts*
$ rm -rf <TALEND>/iam/apache-tomcat/webapps/syncope*
  3. Copy saved *.war files from the backup directory 
    $ cp <backup_dir>/*.war <TALEND>/iam/apache-tomcat/webapps/
  4. Start IAM

Affected files for this patch

The following files are installed by this patch: - idp.war - oidc.war - scim.war - sts.war - sts-tac.war - syncope.war - syncope-console.war - syncope-enduser.war