New features and enhancements in SDL Contenta 5.7

This section lists features and enhancements introduced in SDL Contenta 5.7.

Silent install and upgrade support

Support for silent installations and upgrades has been added for Contenta Server on Linux. All Contenta installation programs now support silent installations on all platforms.

Support for Java 64-bit

In this release, Contenta supports Java 64-bit to improve performance and eliminate security risks associated with the 32-bit version of Java for the following components.
  • Contenta Web
  • Crawler
  • Arbortext Editor extension
  • Contenta and Contenta S1000D Java API

This enhancement requires Java 64-bit and Apache Tomcat 64-bit. Upgrade customers must upgrade Java and Tomcat to their 64-bit versions before running the Contenta installation and upgrade programs.

Support for Perl 5.28

Contenta 5.7 delivers Strawberry Perl 5.28 (for Windows) and CPAN Perl 5.28 (for Linux). The Strawberry Perl delivered with Contenta has been modified to remove libraries with known security vulnerabilities.

Cross-site scripting (XSS) security enhancements

Methods and properties in Contenta Web have been enhanced to reduce XSS-related security vulnerabilities.

Unicode support enhancements

Support for Unicode (UTF-8) encoding has been extended to the following Contenta components.
  • FrameBook tools
  • Classic adapters
  • Dynamic Import

Security enhancements

Many of our third-party libraries were updated to recent versions to keep current and reduce security risks. In addition, as part of our Java security enhancements, our Java-based installers no longer leave a JRE on the file system. When running the uninstall program for some our products, you must have a JRE on the system path that meets Contenta 5.12 minimum requirements (refer to our ). This requirement applies to Contenta Web and Contenta Editor Extensions.

In addition, Contenta the CWCSRFPreventionFilter filter has been introduced to mitigate Cross-Site Request Forgery (CSRF) vulnerability on Contenta Web. By default, this filter is delivered turned off (commented) in every web.xml file. For information about activating this filter, refer to the Activating Cross-Site Request Forgery (CSRF) filtering topic under Configuring your Contenta Web system in the Contenta Web installation and upgrade section of the Contenta documentation.