Talend Remote Engine v2.13.9

Talend Remote Engine v2.13.9 is generally available.

New features

Feature	Description
Adaptive mode	Talend Remote Engine has adopted a dynamic JVM selection mode. This mode automatically ensures a more precise selection of compatible Java versions for Job or Microservice execution. See Adaptive mode: Configuring Remote Engine to dynamically select Java version.

Issues	Description
TMC-4661	The following engine dependencies have been upgraded: Updated Logback from 1.3.14 to 1.3.15 to address the following vulnerabilities: CVE-2024-12798: Arbitrary code execution through JaninoEventEvaluator. CVE-2024-12801: Server-Side Request Forgery (SSRF) in SaxEventRecorder. CXF: 3.6.4 to 3.6.5. Spring: 6.2.0 to 6.2.1. Guava: 33.3.1-jre to 33.4.0-jre. Apache Commons Text: 1.12.0 to 1.13.0. Reload4j: 1.2.25 to 1.2.26. Swagger v3: 2.2.26 to 2.2.27.

Issues

Description

TMC-4661

The following engine dependencies have been upgraded:

Updated Logback from 1.3.14 to 1.3.15 to address the following vulnerabilities:
- CVE-2024-12798: Arbitrary code execution through JaninoEventEvaluator.
- CVE-2024-12801: Server-Side Request Forgery (SSRF) in SaxEventRecorder.
CXF: 3.6.4 to 3.6.5.
Spring: 6.2.0 to 6.2.1.
Guava: 33.3.1-jre to 33.4.0-jre.
Apache Commons Text: 1.12.0 to 1.13.0.
Reload4j: 1.2.25 to 1.2.26.
Swagger v3: 2.2.26 to 2.2.27.

If you find any issues with this page or its content – a typo, a missing step, or a technical error – please let us know!