Skip to content

Release Notes

Host Access for the Cloud version 2.7.0.8 released January 2024. These release notes list the features, notable changes, and known issues in this release. Host Access for the Cloud provides terminal emulation for 3270, 5250, VT, ALC, UTS, and T27 host types, while requiring only an HTML 5-capable browser.

Note

The End User License Agreement (EULA) is available in English, Spanish, French, Italian, and German in the <install location>\licenses directory.

Management and Security Server

Host Access for the Cloud version 2.7.0.8 released with Management and Security Server version 12.8.0.8

What’s New

All releases are cumulative and contain the features introduced in earlier releases. For previous versions, see HACloud Documentation.

Features and fixes include

  • Security updates including Java and third party libraries (2.7.0.8)

  • Security updates including Java and third party libraries (2.7.0.7)

  • Apache Commons Text library updated to version 1.10.0 to mitigate CVE-2022-42889 (2.7.0.6)

  • Apache Shiro library updated to version 1.10.0 to mitigate CVE-2022-40664 (2.7.0.6)

  • Removed the JXPath library to mitigate CVE-2022-41852 (2.7.0.6)

  • Applied security updates to address multiple CVEs. (2.7.0.5)

  • Thymeleaf library updated to version 3.0.14 to mitigate CVE 2021-43466. (2.7.0.4)

  • Log4j library updated to version 2.17.1 to mitigate CVE 2021-44832. (2.7.0.3)

  • Log4j library updated to version 2.17.0 to mitigate CVE 2021-45105. (2.7.0.2)

  • Log4j library updated to version 2.16.0 to mitigate CVE-2021-44228 and CVE-2021-45046. (2.7.0.1)

  • Windows Authentication via Kerberos is now available for end users launching sessions via the session server (2.7)

  • Management and Security Server (MSS) has been made more secure by moving to HTTPS only. (2.7)

  • You can now easily reset the password to the metering service if forgotten. (2.7)

  • Communication from the Security Proxy to MSS when exporting settings has been upgraded to HTTPS. (2.7)

  • You now have the ability to add Subject Alternative Names to certificates while installing HACloud and MSS. (2.7)

  • TLS 1.3 is now supported and enabled. Clients that do not yet support TLS 1.3 will fall back to TLS 1.2. (2.6.1)

  • The ability to Cut text, similar to Copy and Paste, has been added to the HACloud Web Client. (2.6.1)

  • Support is now available for Plus AutoTab and TabOrder. These features provide greater control over cursor tabbing behavior on Plus decorated screens. (2.6.1)

  • A wait.forHostSettle method has been added to the Web Client macro API, Windows Connector API and the JavaScript API. (2.6.1, 2.7.0)

Changes in Behavior

  • MSS has moved to use HTTPS exclusively to increase security. HTTP has been disabled on all endpoints. In upgrades, where session servers had been configured to access MSS, Metering or the Terminal ID Manager (TIDM) over HTTP they will need to be updated to use the HTTPS port in container.properties. (2.7)

  • TLS 1.0, TLS 1.1 have been removed. Both TLS 1.3 and TLS 1.2 are now available. HACloud Sessions that were previous configured for "TLS 1.2 - TLS 1.0" (in Connection Settings) will be updated to "TLS 1.2" the next time they are updated by an administrator (2.7)

  • As a result of updated encryption libraries, customers who use headless server-based installations may experience system delays if system entropy is too low. Insufficient entropy may lead to the installation process hanging or degraded server performance. Some platforms already install and enable an entropy service by default, and the issue will not be noticed. If needed, a hardware or software solution can remedy the issue. See the Knowledge Base article, Ensuring Sufficient Entropy to Avoid System Delays. (2.6.2)

  • When launching an HACloud session from the Assigned Sessions List, a new session is now opened each time a session is selected, even if a session by that name is already open. (2.7)

Known Issues

Technical Support is always available to help you with any issues you may encounter in Host Access for the Cloud.

  • NTLM - Customers using Single Sign-on through Windows to authenticate to Host Access Management and Security Server (MSS) are subject to the Netlogon Elevation of Privilege Vulnerability (CVE 2020-1472). See the MSS Release Notes for more information. With the addition of Kerberos support, NTLMv2 support will be removed in an upcoming release.

Unresolved issues from previous releases are listed in Technical References.

Release Tracks

Host Access of the Cloud provides the following release tracks for you to choose from depending on your needs.

Long-Term Support Release

  • Recommended for all customers.

  • Only receives critical security updates. No new features.

  • Release cadence is approximately once per year.

  • Version numbering example: 2.7

Incremental Release

  • Recommended for customers interested in the latest features.

  • Contains major changes - new features and bug fixes.

  • No patches / updates will be provided.

  • Security updates are obtained by upgrading to the next Incremental or Long-Term Support Release.

  • Release cadence is approximately four to six times per year.

  • Each Incremental Release is a step toward the next Long-Term Support Release.

  • Version numbering example: 2.7.1

Contacting Open Text

For specific product issues, contact Technical Support.

Additional technical information or advice is available from several sources:

© 2024 Open Text

The only warranties for products and services of Open Text and its affiliates and licensors (“Open Text”) are as may be set forth in the express warranty statements accompanying such products and services. Nothing herein should be construed as constituting an additional warranty. Open Text shall not be liable for technical or editorial errors or omissions contained herein. The information contained herein is subject to change without notice.