Powered by Zoomin Software. For more details please contactZoomin

MarkLogic Bug Fixes

Table of Contents

Issues fixed in MarkLogic Server 11.3.1

Save PDF
Save selected topicSave selected topic and subtopicsSave all topics
Share
Share to emailCopy topic URL
Print
  • Last Updated: April 6, 2026
  • 2 minute read
    • MarkLogic Server
    • Documentation

Released: Nov 5, 2024

The following issues have been addressed in this release:

Bug ID

Description

MLE-17258

When using xdmp:jwt-decode(), the JSON properties that are past the first level are not shown. Other JSON types such as numbers, integers and booleans are incorrectly rendered as strings.

MLE-16349

Calling cts:values(()) or cts.values(null) causes MarkLogic 11.3.0 to segfault.

MLE-16304

cts:document-root-query(), cts:document-format-query(), and cts:document-permission-query() do not work with the Optic DSL when run against the v1/rows REST endpoint.

MLE-16148

There are several temporal update builtins

  • temporal:node-replace
  • temporal:node-delete
  • temporal:node-insert-before
  • temporal:node-insert-after
  • temporal:node-insert-child

that do not work with QBAC. Even though access to capabilities is granted through user/role queries on documents, users may still find that they cannot perform the above updates to temporal documents.

MLE-16059

In MarkLogic 11, submitting a database via the Manage REST API with "backup-encryption-key" causes error when it should not.

MLE-15912

The op:explain() and op.explain() functions do not process the "seed" argument correctly.

MLE-15528

An ENDPOINT_RESOLUTION_FAILURE error is thrown when using an S3 file path that points to an AWS Gov Cloud S3 bucket.

MLE-15184

The sec:create-external-security() function allows invalid LDAP security configurations to be created in some cases.

MLE-15180

When following the example code for sec:create-external-security() to configure LDAP, the following error is thrown:


[1.0-ml] SEC-OAUTHFLOWTYPEDEPRECATED: (err:FOER0000). The Authorization code and Client credentials OAuth 2.0 flow types are deprecated.


when it should not be.

MLE-15179

The sec:create-external-security() function can throw misleading error messages and create invalid external security configuration when certain arguments are omitted.

MLE-14284

On the default REST Server page landing page, all the links are absolute and so they do not work when setup behind a load balancer or reverse proxy with path-based routing.

CVEs Addressed

  • CVE-2014-3802
  • CVE-2015-5276
  • CVE-2015-6420
  • CVE-2015-9251
  • CVE-2016-10707
  • CVE-2018-12886
  • CVE-2019-10742
  • CVE-2019-11358
  • CVE-2019-15847
  • CVE-2019-5428
  • CVE-2020-11022
  • CVE-2020-11023
  • CVE-2020-23064
  • CVE-2020-28168
  • CVE-2020-28500
  • CVE-2020-8203
  • CVE-2021-23337
  • CVE-2021-37322
  • CVE-2021-3749
  • CVE-2023-33201
  • CVE-2023-33202
  • CVE-2023-35116
  • CVE-2023-45857
  • CVE-2024-21634
  • CVE-2024-25638
  • CVE-2024-29025
  • CVE-2024-29857
  • CVE-2024-30171
  • CVE-2024-47554
  • CVE-2024-47561
  • CVE-2024-7254
TitleResults for “How to create a CRG?”Also Available inAlert