RASP Java Agent Release Notes (25.8.0)
Overview
This release TODO
New Features / Improvements
- TODO
Bug Fixes
- TODO
Known Issues
- W4J-252 Additional filesystem read events are generated for certain Application and JDK folders the first time an ARMR
filesystemrule that contains theapi()directive triggers - W4J-435 ARMR Socket input specifier not working on some Java6 JDK
- W4J-1367 Payload extension of security event generated by XSS rule does not contan all of the payload characters in a specific case of a complex payload.
- W4J-1431 ARMR HTTP CSRF rule is not working correctly on a JSP page on Tomcat 10, 11 and JBossEAP8
- W4J-1432 ARMR HTTP XSS rule is not working correctly on JBoss EAP 8 and Wildfly 32
- W4J-1477 ARMR Patch for CVE-2016-5552 disables input() specifier on DNS/Socket rules on Windows
- REM-3126 Warning "OpenJDK 11 IllegalAccessError after JVMTI retransform/redefine" while onboarding to the Portal
Third Party / Open Source Dependencies
- ANTLR
- Log4j (version1) Library
- ASM Library
- OpenJDK JDK Source
- JASYPT