Release Notes for Engine Pack (EP) 9.4.5 Patches
Version 9.4.5.1007 Date 16-09-2022 |
|---|
RPG improvements to:
|
Version 9.4.5.1006 Date 05-09-2022 |
|---|
Improvements in the Go language support to prevent issues when scanning the source code. |
Several queries were improved to prevent False Positives:
|
Several queries were improved to prevent False Negatives:
|
Docker files are updated in the Linux engine (requires Docker version 20.10.10+). |
Version 9.4.5.1004 Date 03-08-2022 |
|---|
CxAudit has been improved to use the same environment variable as CxPortal that defines the Source folder. |
The query CPP_Buffer_Overflow.Buffer_Overflow_Unbounded_Format has been improved to prevent a StackOverflow error. |
Several queries were improved to prevent False Negatives:
|
Improvements in the confidence level calculation to display the proper value for scans triggered through the Linux engine. |
Version 9.4.5.1003 Date 11-07-2022 |
|---|
Improvements in Java parsing to prevent FP (false positive) results for the Reflected XSS All Client query. |
Improvements in JSP parsing to prevent FN results. |
Improved the React parsing to prevent errors from occurring when HTML elements included keywords. |
Improvements in MyBatis (Java) parsing to prevent DOM loss. |
Improvements in MyBatis (Java) parsing to prevent an issue that occurred when pre-processed files included single quotes. |
Fixed an issue that was causing scans to fail when scanning JavaScript code that included type predicates. |