Code Fix: K2 identified an issue regarding insecure deserialization that affects all Endpoint SmartObject Service Types
KB003342
PRODUCTK2 Five 5.0 to 5.3
K2 blackpearl 4.7
K2 4.7 March 2018 Cumulative Update to K2 Five (5.2) May 2019 Cumulative Update
K2 4.7 March 2018 Cumulative Update Fix Pack 51 to K2 Five (5.0) September 2018 Cumulative Update Fix Pack 18
Issue Description
K2 identified an issue regarding insecure deserialization that affects all Endpoint SmartObject Service Types. For more information see KB003329 - Behavioral change in K2 Endpoint Service Types.
Resolution
The fix is available in the following K2 versions:
| K2 4.7 March 2018 Cumulative Update | K2 Five (5.0) September 2018 Cumulative Update | K2 Five (5.1) November 2018 Cumulative Update | K2 Five (5.2) May 2019 Cumulative Update | K2 Five (5.3) |
|---|---|---|---|---|
| Fix Pack 51 | Fix Pack 18 | Fix Pack 22 | Fix Pack 13 | Fix Pack 18 |
- Ensure you have the correct K2 version and/or Cumulative Update installed. See KB001893 to see what Fix Pack level you have installed.
- Download the latest Fix Pack using the links in the table above for the version you require.
- Install the Fix Pack to apply the fix.
