This page lists all the recent hotfixes for Appian 23.3.
Note: Appian Cloud customers can refer to MyAppian to see your latest hotfix version.
For self-managed customers, all hotfixes are released as a downloadable package bimonthly, at the beginning and middle of the month. The most recent package is as of 11 Apr 2024.
The following issues have been recently resolved in Appian Cloud 23.3 as of the date indicated. These hotfixes will be available for self-managed customers in the next bi-monthly package.
Security Updates - High
AN-272222 - High
Improves the UI performance of the Reconcile Document Extraction task.
Security Updates - High
AN-270014 - Medium
Search Server (Elasticsearch) is now upgraded to version 7.17.19.
AN-266346 - Medium
Apache Kafka upgrade to 3.7.0
Self-managed customers can use the following links to download and install the hotfixes package. If you are managing Appian on Kubernetes, instead of using the links below, you'll need to upgrade to the latest Appian on Kubernetes images to apply the hotfixes.
This cumulative hotfix package includes all resolved issues listed below in a single download. This hotfix is required for any Appian 23.3 installations not currently up to date with the latest hotfixes. After installing, you will be running on Appian 23.3.875.0.
You can view your current self-managed Appian version by logging into your Appian environment as a designer or system administrator and clicking the navigation menu > About Appian.
The package resolves the following issues.
Security Updates - High
AN-265165 - Low
Fixed an issues where engine process metrics were not properly collected.
Security Updates - Medium
AN-261813 - High
Resolved an issue to prevent cloud database replication failure in the HA configuration by setting the value of the slave_parallel_mode variable to conservative.
Security Updates - Medium
AN-259860 - High
Updated grpc library
AN-259725 - High
Upgraded ion-java library
Security Updates - Medium
AN-259435 - High
Removal of special characters (non alpha numeric) from the exception REST API response
Security Updates - High
AN-264450 - High
Resolved an issue where phpMyAdmin failed to automatically log in users when a special character was set in the company.name site property.
AN-262624 - High
Performance optimization for development environments related to type and rule updates.
AN-244356 - High
Upgraded Jackson Core , Databind and Annotations in Dynamics and Sharepoint Connected Systems
AN-261897 - Medium
Fixed an issue which caused infrequent synced record type outages due to data service write failures.
AN-260985 - Medium
Fixed an issue where in rare cases file uploads would fail with a 401 error on embedded forms.
Security Updates - Critical
AN-258702 - Medium
Fixed an issue that caused embedded Appian to break for 1% of Google Chrome users, following a recent change by Google.
AN-257532 - Medium
Security Improvement
Security Updates - Critical
AN-263504 - High
Production release of AMP stratus log streaming migration
AN-248734 - Medium
This fixes the issue for the ability to save a salesforce integration with large payloads over> 200KB using a Salesforce Connected System
Security Updates - Medium
AN-261480 - Medium
Resolved an issue where the phpMyAdmin banner color was not properly displayed based on the configuration.
Security Updates - High
AN-259639 - Medium
Fixed a bug that prevented log in and password reset for SSO users.
AN-259099 - Medium
The ability to store and view attachments on a process was deprecated in the low-code platform version 16.3, and has now been removed from platform versions later than 21.4. This change fixes an issue hampering the opening of Portlet dialogs caused by this removal.
AN-259083 - Medium
Fixed an issue that caused record action submissions to lead to unresponsive user interfaces in rare scenarios.
AN-258199 - Medium
Fixed an issue which prevented certain deactivated users from being reactivated on sign in. Before this fix, deactivated users with rule based membership could not be reactivated through SAML automatically.
AN-255864 - Medium
Upgraded jackson libraries in salesforce-multi
AN-255863 - Medium
Upgraded jackson databind in blueprism connected system
AN-256587 - Low
The ability to store and view attachments on a process was deprecated in the low-code platform version 16.3, and has now been removed from platform versions later than 21.4.
Security Updates - High
AN-255692 - High
Updated grpc, google cloud, jackson databind, jackson annotations and jackson core libraries
AN-246050 - Medium
Fixed an issue where product areas supported in IE Mode 11 of Edge were not working
AN-245877 - Low
Set entity expansion limit to 100 for XML for import export functionality
Security Updates - Critical
AN-255285 - High
Added new debug logging to help troubleshoot an issue where a!queryRecordType() returned null when placed inside a!dataSubset().
AN-253349 - Medium
Improved throttling mechanism for parallel thread creation and associated observability
AN-255978 - Low
Fixed an issue where record view and action security rules using constants were not properly imported when the data model on the record type also changed. This caused the record views and actions to not properly display after import.
AN-252629 - Low
Fixed an issue that caused requests to the data service to timeout during recovery from component failure.
Security Updates - High
AN-255533 - High
Search Server (Elasticsearch) is now upgraded to version 7.17.15.
AN-255482 - Medium
Updated xmlsec library to version 2.2.6
Security Updates - High
AN-255429 - Medium
Robotic task executions that have been queued for over 5 hours now return results back to the process model node.
Security Updates - Critical
AN-255175 - Critical
Fixed issue where sync failed with error 'specified branch timed out' during sync operations.
AN-251917 - Critical
Updated ActiveMq library
CN-25284 - High
Fixed and issue with session management for Appian Cloud.
AN-255270 - High
Updated Jetty library to version 9.4.53.v20231009.
AN-252551 - High
Appian Designer no longer hangs if the AI Skill service returns a bad response.
AN-252472 - Medium
Fixed an issue where Health Check would time out for large customers.
AN-254105 - Low
Timestamps in the Operations Console now correctly display in user's timezone.
AN-254029 - Low
Security Improvements
AN-253495 - Low
Fixed an issue that prevented users from changing the application for documents created from the site object.
Security Updates - Critical
AN-251762 - High
Reduces the volume of logs generated by certain long-running evaluations.
AN-251203 - Medium
Added two custom properties which control retry behavior in the event the underlying database update or insert statement encounters a deadlock as part of a Write Records transaction.
AN-249920 - Medium
Fixed an issue that prevented the slow log of the cloud database from being persisted on disk when restarting a site.
Security Updates - Critical
AN-250737 - High
Updates to google cloud, google cloud storage, jackson-databind, and grpc libraries within the Google Cloud Connected Systems
AN-249650 - Medium
Updated support for checkpoint script to be initiated from any node, not just the primary node.
AN-247653 - Medium
Fixed a Bug in xpathsnippet and xpathdocument function causing xpath issues when parsing xmls which have same namespace prefix pointing to different URIs.In 23.2 fixed issues to support the local-name xpath function.
Security Updates - High
AN-245003 - High
Fixed an issue that prevented some documents from being rendered properly in the reconciliation task when opening the task from a record action or the process modeler debug view.
AN-249578 - Medium
Fixed an issue that caused a migration in the execution engine to fail due to certain work items, preventing the upgrade to Appian 22.4 and later versions.
Security Updates - Critical
AN-251116 - High
Fixed an issues where logs were not rotating.
AN-250045 - High
Fixed display of HTML elements as text in rich text editor for Send-Email body node in Process Model
AN-243892 - Low
Fixed an issue that was causing users to encounter error code 500 when trying to access the cloud database through phpMyAdmin.
Security Updates - High
AN-249274 - Medium
Fixed an issue with defining the maximum checkpoint limit for Service Manager.
AN-249103 - Medium
Fixed an issue that caused unnecessary processing time for some synced records queries that use Record-Level Security or apply filters within a logical expression using the "OR" operator.
AN-247910 - Medium
Fixed an issue that where a process would return an incorrect response instead of abort.
Security Updates - High
AN-248721 - High
Fixed issue where process models could not be saved if HTML decoding in the message Body of the Send Email node occurred
AN-248677 - High
Fixed an issue where the validation for sequence increment values failed when the primary key of an Oracle Data Store was configured to automatically increment a sequence value greater than one. This issue pertains to customers who are upgrading to version 22.4 or later. You have the option to enable conf.data.hibernate.sequence.ignoreIncrement.enabled site property in the custom.properties to bypass this validation.
AN-248874 - Medium
Robotic tasks and robot pools are now able to run on VPN-only environments.
AN-247518 - Medium
Fixed issue where process node evaluation could trigger the Memory Circuit Breaker
AN-248145 - Low
The memory limit applied to user interfaces throughout Appian is now configurable by Appian Support and will be persisted after a site restart.
Security Updates - High
AN-248369 - Critical
Fixed an issue where HTTP integrations using Google Service Account authentication didn't respect the HTTP proxy configuration
AN-246311 - High
Updated third party libraries
AN-247428 - Medium
Fixed an issue to ensure that users accessing a page within a page group from a mobile app could access the link to open the page in their mobile browser.
AN-243743 - Medium
A maximum statement timeout of 12 hours is applied to all select queries executed through the Enhanced Data Pipeline (EDP) to prevent Appian Cloud database restart issues caused by long innodb_history_list_length.
Security Updates - Critical
AN-245611 - High
Security Improvement
AN-246001 - Medium
Fixed an issue that prevented upgrading to RHEL 7.x by reverting Holy Build Box version to 2.2.0
AN-245502 - Low
Fixed an issue that caused occasional Kafka errors when restarting the data service.
AN-242849 - Low
TLS 1.1 has been disabled for Enhanced Data Pipeline due to various security issues. Refer to your tool’s documentation for instructions on connecting to an external database using TLS 1.2 or TLS 1.3. Alternatively, you can try adding the properties enabledSslProtocolSuites=TLSv1.2 and useSsl=true to your database connection string.
Security Updates - High
AN-245148 - High
Fixed an issue that could cause performance degradation or errors when using Compare & Deploy to deploy to target environments.
AN-245754 - Medium
Fixed an issue that caused an incorrect inspection error to display when deploying robotic tasks that reference new groups.
AN-245631 - Medium
Fixed an issue where the horizontal scrollbar in the process model was hidden by the site wide banner.
AN-244680 - Medium
Updated guava library in the salesforce connected system
AN-243030 - Medium
Fixed an issue where transactions executed in an Execute Stored Procedure Smart Service or function weren't getting rolled back when auto-commit was set to false after encountering an exception.
AN-240370 - Medium
Updated Bouncy Castle library
AN-244685 - Low
Fixed an issue where the entire header bar of a single page Helium style site was clickable.
Security Updates - High
AN-244313 - High
Security Improvement
AN-241658 - High
Fixed an issue where in some cases xpathsnippet() would return an error
AN-238159 - High
Updates to Netty library
AN-244402 - Medium
Fixed an issue where using Content APIs did not overwrite an existing document.
AN-244149 - Medium
Fixed an issue to ensure consistent error handling behavior between platform versions when using the @Version annotation in a CDT XSD to prevent lost update anomalies.
AN-244525 - Low
Security Improvement
AN-234229 - Low
Security Improvement
AN-207776 - Low
Updating time picker placeholder text for 24hr-based locales.
Security Updates - High
AN-244869 - Critical
Delay the Primary Key Enforcement feature roll-out for new cloud sites using MariaDB as the business data source to a future release.
AN-241110 - High
Updated spring security library
AN-237829 - High
Updated the guava, jackson databind, jackson core, and jackson annotations libraries.
AN-219753 - Medium
Fixed an issue that allowed open redirects from being caught by validation.
AN-241206 - Low
Adding additional logging for Kafka transaction writing for troubleshooting.
AN-156340 - Low
Adding additional engine logging for troubleshooting
Security Updates - Critical
AN-243290 - High
Security Improvements
CN-23112 - Medium
Kakfa performance tuning
AN-242767 - Medium
Removed support for the Portals Publishing Manager application. All portals must be created and managed using Appian Designer.
AN-242736 - Medium
The data service query request size limit is now set to 5MB.
AN-240325 - Medium
Security Improvements
AN-236122 - Medium
Updated Google Cloud Libraries
AN-242915 - Low
Resolved a Kafka startup issue for Windows users.
Security Updates - Low
AN-240325 - Medium
Security Improvements
AN-242915 - Low
Resolved a Kafka startup issue for Windows users.
Security Updates - High
AN-242024 - High
Fixed an issue where intermittent failures in database connections resulted in the indefinite locking of the database type cache.
AN-241578 - High
Fixed an issue where an error message was shown to users when loading some UIs due to an incorrect calculation of memory utilization.
AN-242676 - Low
Updated translations for the Appian product
Security Updates - Critical
AN-240073 - High
Fixed issue that prevented some portals from being published when they had precedents using Record Map type.
Security Updates - Critical
AN-240255 - High
Updated Guava Library in the Blueprism Connected System
AN-235533 - High
Fixed a site startup issue.
AN-235986 - Medium
Fixed an issue where the search response content length exceeded the default limit of 100MB. The maximum query response content length on search server client calls is now configurable through conf.ia.QUERY_RESPONSE_LIMIT_IN_BYTES property.
AN-234601 - Low
Fixed an issue with the webapp gracefully stopping.
Security Updates - Critical
AN-225107 - Critical
Updated Snakeyaml Library
AN-240085 - High
Updating or deploying a portal now causes it to reflect the correct subdomain if the environment's subdomain was changed since the portal was first published.
AN-239359 - High
Fixed an issue where an incompatible plug-in upgrade could be deployed via the Admin Console.
AN-235860 - High
Updating Admin Console Plug-ins page logic for Appian Cloud users to show all AppMarket plug-ins, but block unsupported ones from being deployed.
AN-235128 - High
Introduced disk safeguards for heap dump creation.
AN-228346 - High
Updated Google Cloud Translate and Protobuf Libraries
AN-217955 - High
Updated Mozilla Rhino version
AN-240432 - Medium
Fixed an issue which caused slowness while building interface in the Edit tab when using column layouts.
AN-239554 - Medium
Performance improvements for Portals load times.
AN-237908 - Medium
Updates to bouncycastle in Docusign connected system
AN-236738 - Medium
Fixed an issue related to import circular dependencies for record events, where importing a record type with record events would fail due to failed references to the event record type, even though the event record type was in the package.
Perform the following steps to apply the hotfix:
<APPIAN_HOME> directory.
<APPIAN_HOME> directory.
<APPIAN_HOME> directory.Windows
<APPIAN_HOME>/deployment/web.war to the folder where the Web server is getting the static resources. See Copy Static Resources to the Web Server for more information.To determine if the Appian 23.3 Hotfix is deployed, open the build.info file located in <APPIAN_HOME>/conf/. The contents of this file should match the following code sample:
build.revision=a6e7f307f3eea74d435fa03cccc974af4dd9b9e1 build.version=23.3.875.0
