Contact Us 1-800-596-4880

CloudHub 2.0 Runtime and Operating System Patch Update Release Notes

These release notes describe monthly date-patch updates to Mule runtime engine and security updates to the underlying operating system for CloudHub 2.0.

In addition to these release notes, see:

The release notes for an update are published in the same week in which the runtime patch is released for all Mule versions on CloudHub 2.0.

The following table shows the current schedule for monthly updates. These dates are subject to change.

Month Release Available Sandbox Environment Auto-Update Production Environment Auto-Update

July

July 4

July 17-21

July 22-23

June

June 6

June 19-23

June 24-25

May

May 2

May 15-19

May 20-21

The monthly patching updates for CloudHub 2.0 started in January, 2023.

May 2, 2023

What’s New

4.4.0 and 4.3.0 Runtime Updates

  • Updated to the latest version of the underlying operating system.

  • Fixed OS and Java security vulnerabilities.

Fixed Issues

4.4.0 Runtime Updates

Mule distribution ID that corresponds with these fixes: 4.4.0-20230417

Issue Resolution ID

Mule

Upgraded org.json:json from 20220924 to 20230227.

W-13012142

Added support for native library dependencies at Mule applications and domains.

W-11855052

Added a new method for CoreServiceClient.

W-12659177

This release displays the policy definition version.

W-12733032

DataWeave

Closing resources immediately after reading when using text/plain MIME type.

W-12398584

Incorrect trimming of whitespaces no longer occurs when reading XML content.

W-12528980

Fixed splitBy management of large strings so String and Regex options are consistent with each other.

W-12452407

4.3.0 Runtime Updates

Mule distribution ID that corresponds with these fixes: 4.3.0-20230417

Issue Resolution ID

Mule

Added a new method for CoreServiceClient.

W-12659177

This release displays the policy definition version.

W-12733032

April 4, 2023

What’s New

4.4.0 and 4.3.0 Runtime Updates

  • Updated to the latest version of the underlying operating system.

  • Fixed OS and Java security vulnerabilities.

Fixed Issues

4.4.0 Runtime Updates

Mule distribution ID that corresponds with these fixes: 4.4.0-20230320

Issue Resolution ID

Mule

Kryo Serializer now discards the microseconds value from a timestamp during the serialize and deserialize operation.

W-12516135

Second Scatter Gather router does not execute when it has a Try scope for each component that raises an error handler within.

W-10619784

First Successful router hangs with raise-error.

W-12552091

Batch Job no longer shuffles CSV column order in Mule 4.4.

W-12505969

Added Exception reached PS subscriber for error handler error on February 7, 2023 patch.

W-12535932

NullPointerException no longer occurs when adding a null value to the cookie header.

W-12666590

Added Groovy to the default allowed scripting languages for logging.

W-12708905

Scripts in logging configuration files are no longer supported by default.

W-12556954

This release fixes deadlock when redeploying with policies.

W-12622899

DataWeave

Added cache Java values evaluation to avoid consuming streams more than once.

W-12635909

4.3.0 Runtime Updates

Mule distribution ID that corresponds with these fixes: 4.3.0-20230320

Issue Resolution ID

Mule

Added Groovy to the default allowed scripting languages for logging.

W-12708905

Second Scatter Gather router does not execute when it has a Try scope for each component that raises an error handler within.

W-10619784

Parallel For Each gets stuck with global Error Handler operation.

W-12556497

Transactions in nested Try scope with global Error Handling.

W-12671732

Combinations of First Successful router and Raise Error component no longer causes executions to hang.

W-10619792 / MULE-19874

March 7, 2023

What’s New

4.4.0 and 4.3.0 Runtime Updates

  • Updated to the latest version of the underlying operating system.

  • Fixed OS and Java security vulnerabilities.

Fixed Issues

4.4.0 Runtime Updates

Mule distribution ID that corresponds with these fixes: 4.4.0-20230217

Issue Resolution ID

Mule

This release improves the behavior of chained subflows and XA Transactions that can lead to an application deadlock.

W-12128703

This release improves the handling of JDBC resources to prevent memory leaks on the redeployment of apps.

W-12460123

The with-correlation-id scope no longer modifies errors thrown by other components.

W-12439048

XML SDK modules now work as expected when using a raise-error inside of a subflow, which prevents an InitialisationException.

W-12377294

Log4j scripting now supports Nashorn languages by default.

W-12549148

Requests no longer fail with NullPointerException: value with applications referencing a global Error Handler.

W-12535932

The loggingVariables in batch job serialization now works as expected when upgrading Mule runtime version.

W-12411873

This release updates snakeyaml to version 1.33.

W-12429030

This release upgrades org.raml:raml-parser-2 to version 1.0.51.

W-11577522

This release updates org.json:json to version 20220924.

W-12450128

The log level for HTTP response stream was closed before being read but response streams must always be consumed was changed from WARNING to ERROR.

W-12245298

Cookie headers are now correctly aggregated during the redirect mechanism.

W-12161504

Requests no longer fail with NullPointerException with applications using invalid cookies.

W-12528819

DataWeave

Fixed IndexOutOfBoundsException that occurred when combining the usage of heap memory for internal buffering with a customized buffer size.

W-12247447

4.3.0 Runtime Updates

Mule distribution ID that corresponds with these fixes: 4.3.0-20230217

Issue Resolution ID

Mule

DB Connector’s prepareArray and preparaStruct functions now work as expected when using them inside of a Scatter-Gather.

W-11932094

Requests no longer fail with NullPointerException: value with applications referencing a global Error Handler.

W-12535932

Log4j scripting now supports Nashorn languages by default.

W-12549148

This release updates snakeyaml to version 1.33.

W-12429030

This release updates org.json:json to version 20220924.

W-12450128

February 23, 2023

What’s New

4.4.0 and 4.3.0 Runtime Updates

  • Updated to the latest version of the underlying operating system.

  • Fixed OS and Java security vulnerabilities.

Fixed Issues

4.4.0 Runtime Updates

Mule distribution ID that corresponds with these fixes: 4.4.0-20230223

Issue Resolution ID

Mule

Applications with an XML SDK connector now deploy correctly.

W-12362157

Concurrency errors no longer occur when a flow is called multiple times using the lookup function.

W-12206167

The Error Handler now returns the Event Id and Processor as expected.

W-12245760

This release upgrades the log4j dependency to version 2.19.

W-12353440

This release upgrades the com.hazelcast:hazelcast dependency to version 3.12.13.

W-12354026

This release upgrades the Jackson Databind library to version 2.13.4.2.

W-12219126

This release upgrades the org.apache.cxf:cxf-core dependency to version 3.5.5.

W-12354008

Cookie headers are now correctly aggregated during the redirect mechanism.

W-12161504

The log level for HTTP response stream was closed before being read but response streams must always be consumed was changed from WARNING to ERROR.

W-12245298

CloudHub applications no longer fail when using Global Error Handlers with a default configuration.

W-12218381

The insecure connection configuration in the TLS Configuration truststore now works as expected.

W-10822938

HTTP API status code 422 now shows the correct reason phrase.

W-12293483

WSC connector with an HTTP Requester configuration no longer fails when using a domain project.

W-12129696

The Error Handler now returns the Event Id and Processor as expected.

W-11983138

Flow reference validations no longer fail when using XML SDK components that declare inner sub-flows during lazy initialization.

W-11681056

DataWeave

dw::core::Dates::atBeginningOfWeek now works correctly when the input DateTime is Sunday.

W-11940166

The new com.mulesoft.dw.javaSqlDateToDate system property enables mapping java.sql.Date to Date instead of DateTime.

W-12043162

The Resource already closed exception no longer occurs when using the write function with a value bigger than 1.5MB with Avro format.

W-12067821

Cacheable overloaded functions, such as then, now dispatch to the correct function definition when called multiple times.

W-12073562

The default behavior now works correctly when having a null value coming from the Mule runtime.

W-12166609

High memory usage no longer occurs when using the dw::core::Arrays::divideBy function with an in-memory Array as input.

W-12167313

4.3.0 Runtime Updates

Mule distribution ID that corresponds with these fixes: 4.3.0-20230123

Issue Resolution ID

Mule

Applications with an XML SDK connector now deploy correctly.

W-12362157

The Error Handler now contains the Event Id and Processor when handling issues from an HTTP Requester.

W-12245765

WSC connector with an HTTP Requester configuration no longer fails when using a domain project.

W-12407839

This release upgrades the log4j dependency to version 2.19.

W-12353442

This release upgrades the org.apache.cxf:cxf-core library to version 3.5.5.

W-12354020

This release upgrades the`com.hazelcast:hazelcast` dependency to version 3.12.13.

W-12354026

CloudHub applications no longer fail when using Global Error Handlers with a default configuration.

W-12218381

The insecure connection configuration in the TLS Configuration truststore now works as expected.

W-10822938

You can now start Mule in FIPS mode using any security provider.

W-12060316

January 12, 2023

What’s New

4.4.0 Runtime Updates

  • Updated to the latest version of the underlying operating system.

Fixed Issues

4.4.0 Runtime Updates

MUnit distribution ID that corresponds with these fixes: 4.4.0-20230111

Issue Resolution ID

Change mule.enable.byteBuddy.objectCreation default value to false. If set to true, it will prevent race conditions during parallel deployments.

W-11920598

January 10, 2023

What’s New

4.4.0 and 4.3.0 Runtime Updates

  • Updated to the latest version of the underlying operating system.

Fixed Issues

4.4.0 Runtime Updates

Mule distribution ID that corresponds with these fixes: 4.4.0-20230102

Issue Resolution ID

Mule

Race conditions, which can make deployments fail, no longer occur when running parallel deployments.

W-11920598

The Scatter-Gather router no longer throws the exception UnsupportedOperationException when variables are set by Db::prepareArray or Db::prepareStruct.

W-11932094

Distributed locks are now released properly when a policy is disabled.

W-11929632

The error Can’t perform operation on 'Object_store'. ObjectStore not initialized no longer occurs when a redelivery policy that points to an object store is declared as a top level element.

W-11985583

An issue that prevented access to the SecureContext of a policy inside of a Batch component no longer occurs.

W-11493901

Setting a variable with a null value inside a Batch Aggregator component no longer fails with a NullPointerException.

W-11825409

The use of HTTP Insecure mode in a connector no longer fails with a NullPointerException.

W-12049036

Authorization of the OAuth dance no longer hangs when a custom object store uses a Redis cache.

W-11410770

The Idempotent Validation filter now cascades object store exceptions. Using the filter on Mule version 4.4 or earlier requires the property mule.rethrowExceptionsInIdempotentMessageValidator=true.

W-11529823

The XML SDK’s implicit configuration creation is disabled by default.

W-12113550

A fix to IllegalArgumentException handling prevents events from getting stuck in a For Each scope when an expression evaluates to a Map.

W-12234425

This release upgrades JSON to version 20220924.

W-11834878

This release upgrades the Tanuki wrapper version to 3.5.51.

W-12068528

In API Gateway, SLA deletion no longer generates an inconsistent contract status.

W-11898295

DataWeave

The function dw::core::Dates::atBeginningOfHour now works as expected when an hour is represented as a single digit.

W-11620156

Escaped quote characters now work as expected in CSV Module.

W-12128349

The FlatFile module now provides a reader property, retainEmptyStringFieldsOnParsing, for handling fields that lack values. When set to true, this property makes the reader retain these fields and set their values to an empty string. The default behavior of the reader is to remove those fields.

W-12036336

Data payloads without line breaks no longer work when using lenient as the recordParsing property. The other options to recordParsing support records that lack line breaks. noTerminator is preferred for fixed-length records that lack a line break.

W-12472890

4.3.0 Runtime Updates

Mule distribution ID that corresponds with these fixes: 4.3.0-20221212

Issue Resolution ID

Mule

Distributed locks are now released properly when a policy is disabled.

W-11929632

The error Can’t perform operation on 'Object_store'. ObjectStore not initialized no longer occurs when a redelivery policy that points to an object store is declared as a top level element.

W-11985583

Setting a variable with a null value inside a Batch Aggregator component no longer fails with a NullPointerException.

W-11825409

The use of HTTP Insecure mode in a connector no longer fails with a NullPointerException.

W-12049036

The Idempotent Validation filter now cascades object store exceptions. Using the filter on Mule version 4.4 or earlier requires the property mule.rethrowExceptionsInIdempotentMessageValidator=true.

W-11529823

The XML SDK’s implicit configuration creation is disabled by default.

W-12113550

The Tanuki wrapper is upgraded to 3.5.51.

W-12068528

DataWeave

The FlatFile module now provides a reader property, retainEmptyStringFieldsOnParsing, for handling fields that lack values. When set to true, this property makes the reader retain these fields and set their values to an empty string. The default behavior of the reader is to remove those fields.

W-12036336

Data payloads without line breaks no longer work when using lenient as the recordParsing property. The other options to recordParsing support records that lack line breaks. noTerminator is preferred for fixed-length records that lack a line break.

W-12472890

November 14, 2022

What’s New

4.4.0 and 4.3.0 Runtime Updates

  • Updated to the latest version of the underlying operating system.

  • Fixed OS and Java security vulnerabilities.

Fixed Issues

4.4.0 Runtime Updates

Mule distribution ID that corresponds with these fixes: 4.4.0-20221111

Issue Resolution ID

Using the insecure="true" attribute of the trust-store no longer throws NullPointerException.

W-12049036

4.3.0 Runtime Updates

Mule distribution ID that corresponds with these fixes: 4.3.0-20221111

Issue Resolution ID

Using the insecure="true" attribute of the trust-store no longer throws NullPointerException.

W-12049036

November 8, 2022

What’s New

4.3.0 and 4.4.0 Runtime Updates

  • Updated to the latest version of the underlying operating system.

Fixed Issues

4.4.0 Runtime Updates

Mule distribution ID that corresponds with these fixes: 4.4.0-20221026

Description Issue

Flow executions containing a First Successful and a Raise Error no longer stop responding.

W-10619792

The insecure="true" attribute of the trust-store config is now honored when additional properties are defined. Use the system property mule.honour.insecure.tls.configuration=true to apply this behavior in Mule 4.4 or earlier.

W-10822938

Applications that depend on a domain to load resources no longer fail with a "Couldn’t find resource: neither on classpath or in file system" error.

W-11625237

Error mapping is no longer executed when an error occurs inside of an operation policy.

W-11861168

Applications with global functions no longer fail on startup with a ClassCastException error.

W-11603893

Transactions now honor the Transaction Timeout configured in the Try scope.

W-11741912

To avoid XML SDK implicit configuration creation, this release adds the system property mule.disableXmlSdkImplicitConfigurationCreation=true.

W-10634129

Fixed OS and Java security vulnerabilities.

N/A

4.3.0 Runtime Updates

Mule distribution ID that corresponds with these fixes: 4.3.0-20221024

Description Issue

Flow executions containing a First Successful and a Raise Error no longer stop responding.

W-10619792

The insecure="true" attribute of the trust-store config is now honored when additional properties are defined. Use the system property mule.honour.insecure.tls.configuration=true to apply this behavior in Mule 4.4 or earlier.

W-10822938

Applications that depend on a domain to load resources no longer fail with a "Couldn’t find resource: neither on classpath or in file system" error.

W-11625237

Error mapping is no longer executed when an error occurs inside of an operation policy.

W-11861168

Applications with global functions no longer fail on startup with a ClassCastException error.

W-11603893

Transactions now honor the Transaction Timeout configured in the Try scope.

W-11741912

To avoid XML SDK implicit configuration creation, this release adds the system property mule.disableXmlSdkImplicitConfigurationCreation=true.

W-10634129

Fixed OS and Java security vulnerabilities.

N/A

October 4, 2022

What’s New

4.3.0 and 4.4.0 Runtime Updates

  • Updated to the latest version of the underlying operating system.

  • Fixed OS and Java security vulnerabilities.

Fixed Issues

4.4.0 Runtime Updates

MUnit distribution ID that corresponds with these fixes: 4.4.0-20220922

Description Issue

Improved memory consumption when using a global error handler.

W-11503016

HTTP connections no longer have a leak that prevents new connections from opening.

W-11622837

TransactionTimeout is now set correctly on XA Transactions, preventing stale connections.

W-11741912

Improved the compatibility of Microsoft SQL Server when using XA Transactions with Bitronix.

W-11228596

Improved the performance of the execution of source events.

W-11676440

This release adds a feature flag that disables the error suppression feature. Error suppression prevents components such as the Web Service Consumer connector and the Until Successful scope from reporting errors outside their namespaces. Use the system property mule.suppress.mule.exceptions=false to apply this change.

W-11308645

The "Listener successfully reconnected" message no longer appears when the application starts.

W-10983306

HTTP wire logging now provides the complete context of the request and response for 413 and 414 scenarios.

W-11410315

4.3.0 Runtime Updates

MUnit distribution ID that corresponds with these fixes: 4.3.0-20220922

Description Issue

Mule

Improved memory consumption when using global error handler.

W-11503016

HTTP connections no longer have a leak that prevents new connections from opening.

W-11622837

TransactionTimeout is now set correctly on XA Transactions, preventing stale connections.

W-11741912

Improved the compatibility of SQLServer when using XA Transactions with Bitronix.

W-11228596

DataWeave

The Could not read from file store caused by Negative seek offset error no longer occurs when transforming big XML files.

W-11620006

September 7, 2022

What’s New

4.3.0 and 4.4.0 Runtime Updates

  • Updated to the latest operating system security patches.

Fixed Issues

4.4.0 Runtime Updates

MUnit distribution ID that corresponds with these fixes: 4.4.0-20220824

Description Issue

Mule

Applications using the latest Open JDK 11 version no longer produce invalid JVM vendor errors.

W-11265408

Tanuki wrapper upgraded from 3.5.45 to 3.5.50 to support M1 (ARM) architecture.

W-11242363

Applications no longer fail to start with a Prefix URI must be not blank error.

W-11627710

DataWeave

Visual Studio Code extension no longer breaks with binary input format in the test scenario inputs directory.

W-11507190

Namespace is now added on elements when previously used at a deeper structure level.

W-11349764

4.3.0 Runtime Updates

MUnit distribution ID that corresponds with these fixes: 4.3.0-20220824

Description Issue

Tanuki wrapper upgraded from 3.5.45 to 3.5.50 to support M1 (ARM) architecture.

W-11242363

Applications no longer fail to start with a Prefix URI must be not blank error.

W-11627710

XML SDK modules now support implicit configurations.

W-10634129

Log levels for successful source reconnections are now set to INFO.

W-11437305

Expired access tokens now refresh on connectors using OAuth2.

W-11535924