Patch 2025.2.7
Two vulnerabilities CVE-2026-42498 and CVE-2025-41284 have been disclosed, affecting the Tomcat Web Application Server.
A version of Tomcat is included in the INFOMOTION Data Management Center package and used for the containerized and standalone deployment options. We are now releasing an updated version 2025.2.7 of Data Management Center that includes a patched version of Apache Tomcat.
Please note that this patch only secures containerized or standalone DMC deployments. When deployed within a custom Tomcat installation, that installation should be patched as well.
Bugfixes
-
Fixed duplicate column name error caused by stale state in the create-table form
-
Fixed JSON parse exception in Snowflake environments when updating data permissions
(since 2025.2.6)
Container Image: infomotiondmc.azurecr.io/dmc@sha256:2c1426feea2bd6c14ecfa20d364256b6052b76c67f51132a92af7a83e8c8d7c6
WAR File : https://dmcwiki.blob.core.windows.net/dmc-releases/2025.2.7/dmc.war (sha256: c56a4e10ddb2ca36eb797f06bc5c126da79aa0584e95f85199ae27b60bc9635a)