Zum Hauptinhalt springen

2 Posts getaggt mit "2026.1"

Alle Tags anzeigen

Patch 2026.1.1 / CVEs

CVE Jackson-Databind

Two vulnerabilities CVE-2026-54512 and CVE-2026-54513 have been disclosed affecting jackson-databind, which is used by the INFOMOTION Data Management Center (DMC). The DMC package ships with Jackson components that are used across all deployment options.

We are therefore releasing an updated version 2026.1.1 of Data Management Center that includes a patched version of jackson-databind.

(since 2026.1.0)

Container Image: infomotiondmc.azurecr.io/dmc@sha256:d186e02db3a748e0bab4521b3df1a93879275b3742756b61883a5d412ffd48d3

WAR File : https://dmcwiki.blob.core.windows.net/dmc-releases/2026.1.1/dmc.war (sha256: cfa1e5079af802ff2fc4d679b2e168bcd3a0483d960e8fee45bc4eddd1451475)

Release 2026.1

Major Improvements to Data Quality engine

We've made a number of improvements to the Data Quality engine, centered around caching the results of the latest DQ checks in the DMC backend database.

  • Violations detected during the latest execution of each DQ rule are cached in the dmc_dq_rule_violation_cache table.

  • Users now see only the DQ violations for rows they are allowed to see based on row-level permission. This extends even to the DQ dashboard view.

    info

    Note that Commands with a DQ violation policy still check all records, regardless of row-level permissions

  • Performance of showing rows filtered by DQ status has been greatly improved.

  • Table viewer performance has also been improved for large tables by fetching only violations for records on the current page.

  • Rule executions are logged in the table dmc_dq_rule_executions. Automatic cleanup of old entries can be configured, see Variables

  • DQ rules can now be configured for delta refresh: when enabled, only rows changed since the last successful run are checked instead of a full sweep over all active data. See Manage DQ-Rules for details.

  • Configuration variables have been re-named from "DMC_QS_..." to "DMC_DQ_..."

Other Improvements

  • Increase table and column name length limit to 60 chars
  • Disable invalid domainValues - show tooltip instead
  • Show tooltip with reason why domain value is invalid
  • Consistently disable required/writable for PK columns
  • Table Viewer: improve performance by making inline editor load lazily
  • Make search more responsive by decreasing debounce time
  • Allow entering seconds in Date/Time input controls
  • Improved display of import errors during DeploymentSet import
  • Update included libraries/frameworks to recent major/minor versions

Bugfixes

  • Fix potential SQL injection by Table Admins via data permission filters

  • Datetime & Date domains did not work properly

  • Domain values of type Date/Time are badly formatted in filters

  • Fix Domain-Suggestions for Dates/Datetimes

  • Fix initial value for "Suggestion" values

  • Invalid state after first DQ rule execution

  • Normalize global search term for in-memory and db-based tables

  • Sidebar was not refreshed on table information change

  • Frontend did not display datatype 'flag' values correctly (1: true, 0: false, null -> null)

(since 2025.2.9)

Container Image: infomotiondmc.azurecr.io/dmc@sha256:531a479b3f0c43bef88633f5686382234218f7490eff014eae711d43591c1628

WAR File : https://dmcwiki.blob.core.windows.net/dmc-releases/2026.1.0/dmc.war (sha256: f42674c338b9369a64ef5d868686be235dda1251fc6dc1557416463dc95c11d9)