Resolved issues

Ticket ID Description


Reduced memory usage during certificate revocation list (CRL) parsing, which speeds up CRL retrieval and avoids memory exhaustion in the case of very large CRLs.


Resolved a potential security vulnerability that is described in security bulletin SECBL021.


Resolved a potential security vulnerability by updating Apache Log4j2 to version 2.17.1.


Fixed a case where the expiry period for SSO transaction state would not be enforced if the server was idle and no new transactions had been initiated since a transaction expired.


Resolved an issue that caused certificate revocation list (CRL) checks to return "issuer not found in trusted CAs store" even though the issuer certificate is present.