Program
BIOVIA ENOVIA QUMAS EDMS
Operating System
All supported operating systems
Description
We are providing this Technical Note to inform you about the release of BIOVIA ENOVIA QUMAS EDMS 2022 Refresh 1 Hotfix 1 which includes the following enhancements and fixed defects:
Enhancements
This release BIOVIA ENOVIA QUMAS EDMS includes no new Enhancements for this release.
Fixed Defects
This release of BIOVIA ENOVIA QUMAS EDMS includes the following fixed defects.
| Defect | Description |
|---|---|
| DOC-6575 | The UserObjectCache FindEntry implementation has been changed to avoid race condition. |
| DOC-6618 | The SQL injection in the Queue Management is no longer possible. |
| DOC-6630 | The UserObjectCache FindEntry implementation has been changed to avoid race condition. |
| MYQ-8984 | A stored XSS via Folder Name has been fixed. |
| MYQ-8985 | An XSS was reported on the report grid. This issue is now resolved. |
| DOC-6617 | Any reports related direct method in MyQumas will fail if called under a user without the "View Reports" system permission. This was achieved by adding a permission check to the COM+ call which generates an access token for the reports integration. The token will only be generated for users with the "View Reports" permission. The error returned for unprivileged users is "A valid security token could not be created for the credentials specified". |
| DOC-6619 | The cookie header is now only added to the response if the login attempt was successful. The repository name used as the value of the cookie is now extracted from the response XML of the OpenRepository COM+ call, the selDocBase parameter value is no longer used for that. Also, the repository name is validated and the cookie header is not added if the value contains characters with ASCII code lower than 32. |
| DOC-6620 | A SQL injection was resolved in the Hardcopy Management document type filter. |
| DOC-6621 | The installer of DocCompliance, MyQUMAS, SDK will now only allow the GET, POST, PUT Verbs on the IIS Site level. |
| DOC-6624 | MSSQL errors will be now raised from the OLEDB provider to DocCompliance code and therefore will be properly handled. This is important for proper error handling to avoid possible data inconsistencies. Only the MSSQL provider is affected. |
| DOC-6631 | Fixed the issue where the time stamp for read and understood records are rounded to the nearest second when the time stamp is copied from the review copy to hierarchy document. |
| DOC-6632 | When read and understood is assigned using R&U groups in the authorized status, the tasks are now assigned. |
| DOC-6633 | The QS_RUUpdates service now processes the tasks in the order in which they were created. If a group is removed from the R&U list of a document and immediately added back, the R&U tasks for individual group members will be created correctly. |
| DOC-6645 | The user cache was fixed - if queried for an empty key, or an object ID, that doesn't exist in the database, it no longer throws an exception. Instead it returns "false" indicating, that the key was not found. That will prevent the issues with both reports and printing. |
| MYQ-8980 | The XSS issue is fixed in the document properties screen. |
| MYQ-8981 | The XSS issue is fixed in the workflow screen. |
| MYQ-8982 | An XSS issue was resolved in EDMS Admin. |
| MYQ-8983 | An XSS in export collection window has been fixed. |
| MYQ-8986 | Fixed the XSS issue where an attack is possible through the content of the document. |
| MYQ-8987 | Fixed the XSS issue where an attack is possible through the HTML content of the document. |
| MYQ-8989 | An XSS issue was resolved in EDMS Admin. |
| MYQ-8990 | The collaborative review icon is now displayed when multiple documents are added to a review. Dynamic attribute created now, as a consequence the icon is displayed |
| MYQ-8991 | User is now able to delete a collaborative review without error. |
| MYQ-8993 | There was an issue where users were removed from groups but the changes were not maintained. This issue is now resolved. |
| MYQ-8994 | Deletion of groups across multiple pages does not remember the groups selected. This issue is resolved groups can now be selected across pages. MyQumas will now remember selection across pages. |
| MYQ-8995 | There was an issue removing users from roles. When the user was removed form the selected list via the arrow, the change was not reflected in the list of selected users after saving. The issue is now resolved and there is no issue removing users from roles. |
| MYQ-8997 | An XSS issue was reported in the document associations screen. This is now resolved. |
| MYQ-8998 | The issue is now resolved. When users are selected to be added to a group, all users will be added. |
| MYQ-8999 | The "Bulk Add" feature for picklist items was reworked. New items are now added to the grid in a more efficient way and adding a large number of items is no longer an issue. |
| MYQ-9000 | An XSS issue was reported in the document associations screen. This is now resolved. |
| MYQ-9005 | When a large number of users were selected to perform the Connect As function it resulted in an error. This is resolved. The Connect As feature will now perform without an error when there are a large number of users in the 'Connect As' Tab. The fix affects any multiple selection picker across the admin module. |
| MYQ-9006 | It was reported that EDMS Admin Picklist management was unresponsive for large lists with mappings. This has been resolved. Paging has been implemented in the Picklist editing screen in order to prevent the system from becoming unresponsive when dealing with large Picklists with mappings. |
| MYQ-9008 | The new template version dialog will now download the original content type instead of the PDF |
| MYQ-9009 | MyQUMAS no longer reports a message that document is in a Collaborative Review when it is not. |
| MYQ-9010 | When adding a new picklist mapping the pre-existing mappings are no longer removed when saving the changes. |
| MYQ-9011 | Logout from TalentSuite no longer logs the user out of MyQUMAS. |
| MYQ-9012 | When adding a new document to an existing collaborative review the version number displays correctly. |
| DOC-6622 | The X-Powered-By and the Server HTTP header will no longer be returned by the DocCompliance web application. |
| DOC-6623 | The HideProviderExceptionMsg will now be set to true by default. During the migration from 4.11 or before to 4.12 the HideProviderExceptionMsg will be set to true by the installer. |
| DOC-6634 | Version information has been updated in the Help dialog. |
| MYQ-8988 | An XSS issue was resolved in the change category event in the audit trail. |
| MYQ-9003 | Exporting files with Czech file names to a single ZIP file during bulk export of documents now contains the correct file names. File names inside the ZIP file are now encoded in UTF-8. |
| MYQ-9007 | The review owner will now display correctly in the workflow properties screen. Previously it displayed as the logged in user and not the actual collaborative owner. |
| MYQ-9015 | Version information has been updated in the help about dialog. |
| DOC-6629 | Duplicate R&U notification will no longer be sent when a user is added into a group or role for a document at authorized or pending release. |
| MYQ-8992 | The collaborative review icon is now displayed when a document is in a workflow. |
| MYQ-9004 | If the "Edit Attributes" option is not selected for a particular step on the workflow type, the user should not be able to edit extended attributes of a workflow in that step. MyQUMAS now correctly disables controls in the workflow wizard that should not be editable based on the "Edit Attributes" setting on the workflow type for the particular workflow step. The fix impacts Extended Attributes, Notes, Associated Workflows, Changes and Reasons. |
Resolution
BIOVIA ENOVIA QUMAS EDMS 2022 Refresh 1 Hotfix 1 was released in 10-May-2024 and is available for download at https://software.3ds.com under BIOVIA products:
Product line: Lab, Scientific and Content Solutions
Release: QUMAS R2022x
Level: QUMAS R2022x Refresh 1
Fixes for this level: QUMAS R2022x Refresh 1 HF1
How to contact BIOVIA Support
If you have any questions, please contact BIOVIA Support
Need Assistance?
Our support team is here to help you make the most of our software. Whether you have a question, encounter an issue, or need guidance, we've got your back.