Skip to content

DOC-3035: Added bug fixes for version 4.1.4 #881

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Open
wants to merge 1 commit into
base: 4.1
Choose a base branch
from
Open

DOC-3035: Added bug fixes for version 4.1.4 #881

Changes from all commits
Commits
Show all changes
1 commit
Select commit
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
29 changes: 29 additions & 0 deletions modules/release-notes/pages/index.adoc
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -257,6 +257,35 @@ Permit users having the new prilivege `APP_ACCESS_LOG` (included in the `globald

== Fixed issues

=== Fixed and Improved in 4.1.4

==== Functionality

* Fixed issue where GSQL occasionally failed to start during upgrade due to invalid or corrupted library files (GLE-11223).
* Fixed issue where GraphStudio became inaccessible in certain areas of the Admin Portal, including the Proxy Group tab under *All Users* (APPS-3973).
* Fixed issue where JWT token generation could become unresponsive during schema change operations caused by an unnecessary lock (GLE-11726).
* Fixed issue where legacy token validation occasionally failed with a `NoSuchElementException` error (GLE-11714).
* Fixed issue where engine logs displayed lower-than-actual CPU utilization in Docker and Kubernetes environments (CORE-5320).

==== Improvements

* Fixed issue that caused false alerts for exceeding license limits due to incorrect vertex count reporting (CORE-5116).
* Improved accessibility in GraphStudio for screen readers and keyboard navigation (APPS-4078).
* Improved overall accessibility in GraphStudio, addressing issues with Logout/Menu buttons, color contrast, and navigation consistency (APPS-4076).
* Added support for configuring file permissions when exporting query results with `PRINT TO_CSV`, instead of using hardcoded defaults (GLE-11320).
* Improved upgrade logs with a clearer message: Installation of new TigerGraph version (TP-8428).

==== Security

* Eliminated the potential exposure of personally identifiable information (PII) in loading job summary files by replacing detailed data with line numbers for invalid entries (TP-8627).
* Eliminated a security vulnerability that allowed AWS credentials to be read in plain text using the gadmin config get command. These values are now masked (TP-8532).
* Fixed unauthorized exposure of graph name and creator information via the `/auth/simple` and `/internal/info` APIs (GLE-10745).
* Fixed a GPE crash caused by removing a cluster node or when a Disaster Recovery cluster has fewer replicas than the primary cluster (CORE-4966).
* Fixed the MaxFlow algorithm to return correct results, consistent with documented examples (GLE-10736).
* Fixed the following security vulnerabilities:
CVE-2023-7008, CVE-2024-6763, CVE-2025-0913, CVE-2025-11226, CVE-2025-22233, CVE-2025-22871, CVE-2025-22874, CVE-2025-27817, CVE-2025-27818, CVE-2025-27819, CVE-2025-41234, CVE-2025-41242, CVE-2025-41249, CVE-2025-4673, CVE-2025-46701, CVE-2025-47907, CVE-2025-48734, CVE-2025-48924, CVE-2025-48988, CVE-2025-48989, CVE-2025-49125, CVE-2025-49146, CVE-2025-52520, CVE-2025-53506, CVE-2025-55163, CVE-2025-58056, CVE-2025-58057, and CVE-2025-58457.


=== Fixed and Improved in 4.1.3

==== Functionality
Expand Down