Softpedia >Mac >Development >WEB >Adobe ColdFusion >  Changelog

Adobe ColdFusion Changelog

What's new in Adobe ColdFusion 2018

Aug 14, 2018
  • New User Interface for ColdFusion Administrator:
  • ColdFusion Administrator now sports a cleaner, more intuitive User Interface. The interface is arranged in tabs for easy navigation. The search experience is also enhanced in this release. When you enter a search string, you can see recommendations for the search term.
  • Performance Monitoring Toolset:
  • The 2018 release of Adobe ColdFusion Enterprise and Standard editions now offer you the Performance Monitoring Toolset, an all-new solution that ensures that your applications are as optimized as the high-performing ColdFusion engine.
  • Server Auto-Lockdown:
  • Secure your ColdFusion server against vulnerabilities and other malicious attacks. Run the Auto-Lockdown tool and lock down ColdFusion instances.
  • Command Line Interface and REPL:
  • ColdFusion (2018 release) introduces Read-Eval-Print-Loop (REPL). REPL, a shell, is an interactive programming environment that takes single user inputs, evaluates them, and returns the result to the user.
  • REST Playground:
  • Try out your ColdFusion REST services in the new REST Playground. Use the REST Playground to test, develop, and document web services.
  • New caching engines:
  • Boost performance through caching with the newly added engines: Memcached, JCS, Redis, Custom cache plugin.
  • Changes in ColdFusion Builder:
  • Access codes from remote systems
  • Import code profiler data
  • Introduction of Cordova
  • Eclispse upgrade to Oxygen
  • Bug fixes:
  • CF-4202547: In earlier versions of ColdFusion, cfthrow could be used to send a custom REST response as JSON. In the 2018 release, this fails (returns HTML of error handler page).
  • CF-4202450: IsNumericDate() returns unexpected results.
  • CF-4202006: The SerializeJSON function loses type info from properties defined in the parent class when serializing a subclass.
  • CF-4201978: The evaluate() function must accept an array of expressions.
  • CF-4201686: If cfpdfform with the name attribute is used to populate a PDF object and passed to the user, the user will not be able to sign the form in Adobe Acrobat Reader DC.
  • CF-4201629: The getFunctionList() function must display Spreadsheet* instead of SpreadSheet*.
  • CF-4201481: The getMetadata() function throws an exception on an unsynchronized array.
  • CF-4201329: If you have a cfoutput tag with encodeFor specified, then it does not apply the encoding to nested cfoutput tags.
  • CF-4201173: If you run isValid("variableName") on an invalid variable name that has a period in it, you will get a true (is valid) response.
  • CF-4201015: There are exceptions when running any query in a sandboxed environment in Oracle, MySQL, DB2, and Sybase.
  • CF-4200994: If you have a CFC with no methods or properties, the metadata for this CFC does not contain a functions or a properties array.
  • CF-4200663: The data type XML is no longer supported in 2016 version of Query of Queries
  • CF-4200446: Indexed file locations do not update when moved from one location to other.
  • CF-4200186: Include member functions for numeric functions.
  • CF-4200066: Include support for systemd environments in addition to sysVinit, which is the current default for RHEL distributions.
  • CF-4200015: cfchart causes JavaScript to be prepended to requests, causing invalid json responses.
  • CF-4199974: The setMetadata() function is not chainable.
  • CF-4199973: Some string, struct, and array member function support must be added to XML variables.
  • CF-4199905: cfargument does not validate an array of components as expected.
  • CF-4199894: There must not be any underscores in an attribute in for example, isValid.
  • CF-4199859: Numeric data type needs member functions.
  • CF-4199855: A tag allows "." in typed array arg path, whereas a script does not.
  • CF-4199746: cfschedule returns unexpected exception message.
  • CF-4199640: Allow negative offsets for right() and left() functions.
  • CF-4199617: ColdFusion service does not start when cfclasses folder has 50K or 75K class files cached.
  • CF-4199484: The hbmxml files seem to be generated with an out of date DTD reference.
  • CF-4199482: A cfhttp call fails if there is a white space in the url.
  • CF-4199409: If you use comment based annotations and and spacing or tabs to align them, the parser will not trim the selections and the data is lost.
  • CF-4199255: Issues when allowing IP addresses in ColdFusion Administrator.
  • CF-4199232: The placement of a few icons in the Administrator must be aligned properly.
  • CF-4199061: There are issues when deleting a datasource using Admin APIs.
  • CF-4199029: Casting switch case values causes internal exceptions, which slows down execution.
  • CF-4198996: CFMAIL does not show body of an email message in iPad, iPhone email clients.
  • CF-4198981: If you create functions with metadata that contains either colons (:) or dashes (-), the execution fails.
  • CF-4198939: When setting the properties for a cache, the function cacheSetProperties ignores the property memoryevictionpolicy.
  • CF-4198866: The CFChart tag does not allow to specify a percentage-based width and height of a chart.
  • CF-4198864: If a query has the cachedWithin attribute, it does not appear to sort using the sort member method with a callback.
  • CF-4198848: cfftp's existsfile returnValue is True/False instead of YES/NO.
  • CF-4198847: cfftp's existsfile attribute treats populated directory as file.
  • CF-4198840: There is an error while trying to assign default value for function arguments using JavaDoc notation.
  • CF-4198821: Implicit accessor method is invoked from extending component when the accessor method is explicitly implemented.
  • CF-4198716: You are unable to set the default value of the attribute expires of the tag cfcookie.
  • CF-4198705: Generated accessors are not available to included CFM templates.
  • CF-4198661: The member function Date.compare does not work identical as the function dateCompare.
  • CF-4198611: Interfaces do not work as expected.
  • CF-4198587: You cannot change the path of Disk cache location in ColdFusion Administrator.
  • CF-4198586: Add support for != and == in .
  • CF-4198575: When a simple copy is performed on a remote AWS S3 file 6 MB or larger, the following exception occurs: java.io.IOException: Multipart upload failed.
  • CF-4198572: The higher order functions for sorting must return the sorted object, not simply "YES".
  • CF-4198548: Implicit array creation within a function throws a Null Pointer Exception.
  • CF-4198534: Repeated use of cfchart keeps increasing memory use until ColdFusion stops responding to requests.
  • CF-4198485: The OAuth response of Facebook is not formatted properly.
  • CF-4198481: In ColdFusion 10 and earlier versions, a boolean value could be passed as a value for a numeric argument to a function. It stopped accepting boolean as args in ColdFusion 11.
  • CF-4198463: The ParseDateTime() functions with custom format produces incorrect results.
  • CF-4198442: You cannot have argument named default in a script function.
  • CF-4198427: The cfupdate tag requires the datasource parameter.
  • CF-4198412: The replacement with replaceNoCase does not return the correct value, if the string contains too many unicode characters.
  • CF-4198411: Calling restInitApplication with isDefault = true fails to reload.
  • CF-4198408: Deserialization of a string returns unexpected results.
  • CF-4198405: Invoking WSPublish causes the session scope to become inaccessible/undefined within any CFC methods that are called during the duration of the request.
  • CF-4198399: Chaining Elvis operators fails in ColdFusion 11.
  • CF-4198394: There are concurrency issues when writing to mappings returned from getApplicationMetadata() under load.
  • CF-4198393: There are issues using Cffile and BOM (Byte order mark) characters.
  • CF-4198378: The application.log file include a lot of entries with text "Detected Character encoding is UTF-8."
  • CF-4198364: Unexpected behavior when using cfloop query + ArrayAppend + ['column'] syntax.
  • CF-4198362: "Unable to reset the page encoding" with long comments in CFCs.
  • CF-4198354: Abort in callback triggers onError() instead of onAbort().
  • CF-4198322: Error in QueryExecute when parsing SQL including literal strings with colons.
  • CF-4198298: RestSetResponse() ignored if returntype is non-void.
  • CF-4198295: Every attempt to create an instance of ActiveMQ gateway in the Coldfusion Administrator of a Coldfusion instance fails.
  • CF-4198278: Issue with queryExecute when using params immediately followed by a semicolon in sql text.
  • CF-4198266: RequestTimeout has not been removed.
  • CF-4198260: Under a request with thousands of CFLDAP calls, the CFLDAP tag fails with this error message "An error has occurred while trying to execute query."
  • CF-4198218: IsBoolean returns true for invalid strings.
  • CF-4198217: cflock must serve on the basis of FIFO.
  • CF-4198194: Invalid cfsqltypes are ignored.
  • CF-4198174: PNG files are incorrectly named as GIF in ColdFusion Administrator.
  • CF-4198171: A border does not appear in pie charts.
  • CF-4198082: CFMAIL fails with IDN domains and German imlauts and other special characters.
  • CF-4197582: When using cfmailparam with a attachment that needs character encoding, the generated attachment header is not generated with the RFC 2231 standard.
  • CF-4197259: this.sameFormFieldsAsArray=true ignored when enctype="multipart/form-data".
  • CF-4195754: When adding a new application task, the task will generate an exception saying Error: Eventhandler MyEventHandler does not implement required interface if the component extends another component implementing CFIDE.scheduler.ITaskEventHandler.
  • CF-4194596: Passing a struct literal as the second operand to the Elvis operator returns the string "{" instead of an empty struct.
  • CF-4190744: Using a String Underlying Java Method for String impacts the performance of a web page processing if they are used.
  • CF-4190163: There are parse errors with += operator.
  • CF-4187503: String member functions do not cast values as expected.
  • CF-4185107: The callback for arrayFindNoCase do not work as expected.
  • CF-4184965: Variable ___IMPLICITARRYSTRUCTVAR2 is undefined.
  • CF-4184641: A few list member functions return incorrectly inside headless functions.
  • CF-4181591: URLs with /api/ Fails with 500.0 - Internal Server Error.
  • CF-4169991: Page response byte buffer cannot be Garbage Collected when storing CFC in a session.
  • CF-4165262: Null/blank CLOB value returned as reference cursor from select statement in Oracle causes No More Data Available To Read.
  • CF-4160098: Adobe must release ColdFusion Docker images.
  • CF-4152447: Sort member functions must return a useful value for chaining.
  • CF-4150938: When using isValid, with regex, to validate a string, the result returned is incorrect.
  • CF-4141282: You are unable to use Admin APIs with CLI.
  • CF-4138764: Incorrect casting in Query of Queries (QoQ).
  • CF-4126504: ColdFusion Administrator Coexistence With Earlier Administrators Session Issue
  • CF-4126455: The Enable/Disable Servlets Installer UI must include better description.
  • CF-4126449: Wrong Server Profile applied in the installation wizard (Japanese Ver.)
  • CF-4126423: Linux Installer does not allow you to specify builtin server port.
  • CF-4126385: WDDX produces unexpected results in ordered structs.
  • CF-4126132: ColdFusion Class Path disappears from GUI if path includes {application.home}
  • CF-4120127: Files with a .cfs extension would contain only CFScript, and would not require the tags.
  • CF-4118947: ColdFusion ships with two versions of Jetty.
  • CF-4118773: fileCopy fails to correctly copy meta data between resources on S3.
  • CF-4118462: The pdfg service does not get not installed when Solr is not selected to be installed on Linux.
  • CF-4117243: queryNew() does not honor column type.
  • CF-4110354: CFM templates do not parse == and/or != operators.
  • CF-4098395: isnull with argument struct["key"] causes an element is undefined error.
  • CF-4081499: When reading .png files using s3:// paths, imageRead(), and hangs the thread after the 20th read.
  • CF-4048126: When entering a value in a search field and filtering the grid data, the value of the field doesn't get passed to the cfc query for the grid as before.
  • CF-4019629: Numeric literals must be Double, not String.
  • CF-4010516: Introduce support for NULL.
  • CF-3992039: When installing Coldfusion 11 developer in with a silent install, there is an error.
  • CF-3928293: The option Use internal cache to store queries in ColdFusion Administrator must mention that a server restart is required.
  • CF-3863594: The function getHTTPRequestData() returns Null Pointer Exception for non Http requests.
  • CF-3859367: $VALUE$ , $ITEMLABEL$ and $SERIESLABEL$ for attribute URL of CFCHART only work with PNG/JPG and not FLASH/HTML.
  • CF-3849138: cfgrid with boolean groupfield doesn't show Yes/No and number of entries in group header.
  • CF-3842831: While installing ColdFusion, the Install disk space step checks the root file system, not the installation folder.
  • CF-3754578: Error messaging with cfloop() is not up to the mark.
  • CF-3712122: Member functions cannot be called on literals.
  • CF-3648781: Closures cannot be declared outside of cfscript.
  • CF-3498448: Log entries have CRLF stripped.
  • CF-3134331: Inconsistencies when casting to a date.
  • CF-3041724: You can click Stop on logs that are not stoppable.
  • Further information on this release is available at:
  • https://helpx.adobe.com/coldfusion/release-note/coldfusion-2018-release-notes.html

New in Adobe ColdFusion 2016.0.6.308055 (Apr 11, 2018)

  • Addresses the vulnerabilities mentioned in the security bulletin APSB18-14 (https://helpx.adobe.com/security/products/coldfusion/apsb18-14.html)
  • It also includes a Tomcat version upgrade to 8.5.28, OpenSSL upgrade to 1.0.2n and bug fixes in few other areas.
  • For the security fixes to take effect, ColdFusion should be on JDK 1.8.0_121 or higher. Post update the build number of ColdFusion 2016 should be 2016.0.06.308055.
  • For detailed installation instructions and the list of bugs fixed with this update, refer to technote available at:
  • https://helpx.adobe.com/coldfusion/kb/coldfusion-2016-update-6.html

New in Adobe ColdFusion 2016.0.5.303689 (Sep 13, 2017)

  • In addition to addressing the vulnerabilities in the security bulletin APSB17-30 this update includes 13 bug fixes in language, database and AJAX some other areas. For the installation instructions and details on the bugs fixed, refer to the technote at https://helpx.adobe.com/coldfusion/kb/coldfusion-2016-update-5.html.
  • Bug fixes:
  • CF-4198947: CFGrid scripting options do not work as expected.
  • CF-4198855: cfquery requests result in the following error message:Access denied ("java.io.FilePermission" "C:ColdFusion2016cfusionwwwrootWEB-INFclassesmacromediasqlserverutiluserDefaults.properties" "read")
  • CF-4198854: A piechart does not get displayed with only one item (100%).
  • CF-4198761: On a Linux OS, cfdocument does not generate chart in a pdf.
  • CF-4198817: cfquery returns cached results even when the cachedafter date is updated to be after the date of the original cached query date, but is still a past date.
  • CF-4198816: Changes to cached query results are persisted back into cache.
  • CF-4198764: When loading the template for the first time, the template displays the CFTOKEN, however, with the second refresh the token disappears.
  • CF-4198589: Method invocation through ajaxproxy fails even if the required arguments are passed.
  • CF-4198570: The datefield attribute in cfinput does not display the value of the attribute.
  • CF-4198559: The Elvis operator fails when used with argument scope.
  • CF-4198513: The cache does not get updated as expected.
  • CF-4195407: cfinput type="datefield" generates invalid HTML code.
  • CF-4182090: When Sandbox security is enabled, you are unable to connect to SQL Server.

New in Adobe ColdFusion 2016.0.4.302561 (May 2, 2017)

  • Upgrades Tomcat to version 8.5.11.0 and fixes 115 bugs (including 52 external bugs) in areas such as Security, Language, Charting and Performance.
  • This update also addresses vulnerabilities mentioned in the security bulletin APSB17-14.

New in Adobe ColdFusion 2016.0.0.299200 (Jun 14, 2016)

  • Fixes a security issue and some bugs related to language, API Manager, Security Analyzer, AJAX, Document Management, SharePoint and some other areas.

New in Adobe ColdFusion 2016.0.0.298513 (May 11, 2016)

  • Addresses issues on Security Code Analyzer and Performance.
  • Bug fixes:
  • 4130082: A mapped CFC Variable does not work when the line contains a var.
  • 4138268: File not found exception due to security_image.png file.
  • 4138072: In the 'Unscanned Files' view, you are unable to open a file in the file editor view.
  • 4135106: You can see a null pointer exception while running Security Analyzer repeatedly over the same file. -Security Code Analyzer
  • 4131907: ColdFusion Builder must display the files separately or in the same view with one more column describing if the file belongs to INVALIDFILE or CANNOTPARSE category.
  • 4131035: An incorrect alert message while running Security Analyzer on inbuilt server (Developer edition).
  • 4130058: Security Analyzer reports hard coded image paths.
  • 4130055: Security Analyzer times out and is unable to scan large directories.
  • 4121267: Include a progress bar to show the status of a security scan.
  • 4121222: Option to cancel a security scan.
  • 4121217: Disable multiple security scans.

New in Adobe ColdFusion 2016.0.0.298074 (Feb 27, 2016)

  • Language enhancements:
  • For safe navigation, “?.” operator has been introduced. Collections support for “ordered” has been introduced.
  • Command Line Interface (CLI):
  • In Adobe ColdFusion (2016 release), there is a Command Line Interface (CLI) for developers to run their cfm scripts without starting a ColdFusion server.
  • PDF enhancements:
  • Adobe ColdFusion (2016 release) provides new actions for tag, such as sanitization, import and export of metadata, import and export of comments, attaching files, annotation (stamp), and enhancement to PDF archival.
  • Security enhancements:
  • Security code analyzer is a new feature introduced in ColdFusion. It serves the purpose by integrating security analyzer into ColdFusion Builder so that developers can now avoid common security pitfalls/vulnerabilities while writing ColdFusion code.
  • External session storage:
  • All ColdFusion sessions are stored in memory. But the sessions cannot be shared across ColdFusion nodes. You can replicate sessions, but as the number of nodes increase in a cluster, the configuration and management of sessions become increasingly difficult and resource-intensive.
  • One way to solve this problem is to use an external session storage like Redis.
  • Swagger document generation:
  • Swagger is a project specification that is used to describe and document RESTful APIs. In ColdFusion (2016 release), you can create swagger doc automatically from REST CFC after it is implemented and registered in server. The Swagger version that is supported in ColdFusion is 1.2.
  • NTLM support:
  • There is support for NTLM (NT LAN Manager) for , , and tags, and CreateObject function. NTLM is a suite of Microsoft security protocols that provides authentication, integrity, and confidentiality to users.
  • New and changed functions/tags in ColdFusion (2016 release):
  • Adobe ColdFusion (2016 release) has gone through changes and enhancements in tags and functions.
  • API Manager:
  • API Manager is a new component introduced for the first time in Adobe ColdFusion (2016 release). It is a standalone server component that can run on its own, providing you all the capabilities of monitoring, measuring, securing, and, monetizing APIs.

New in Adobe ColdFusion 11 Update 7 (Oct 23, 2015)

  • It includes support for Tomcat 7.0.64, Windows 10 and Mac 10.11 along with several bug fixes.
  • 3741324 cfgrid with a boolean type gridcolumn, displays AJAX dropdown listbox outside the confines of the grid control.
  • 4034570 Ehcache with CFQuery: not responsive and stops Caching caching after Query Cache Size reached
  • 3982337 cfinput is not working for some characters with CFForm HF5/HF 16
  • 3952949 ColdFusion 11 CFPrint not printing portion of PDF CFPRINT generated by Adobe Central (jetForms)
  • 3971083 cfstoredproc - Last OUTPUT parameter - Database ColdFusion 11 Update 5
  • 4043047 query of query WHERE filter no longer disregards Database filler spaces in fixed with data fields
  • 3822982 "Report Execution Times" is prohibitively slow on Debugging large apps
  • 4031773 PDFg services break with Update 5 Document Management
  • 3982713 Through Proxy authentication Hotfixes couldn't be Hot Fix Installer downloaded with update 15 and later/CF 11 also
  • 3490112 SEVERE: Error in getRealPathFromConn persists Installation/Config after Updating Coldfusion
  • 3536673 Problem with empty CGI variables/Windows Installation/Config authentication in CF10/IIS 7.5
  • 3982328 IIS not displaying content of OnMissingTemplate Installation/Config
  • 3980257 http proxy authentication fail Net Protocols
  • 3918758 System Probe Failing because of csrftoken Security
  • 3926238 [ANeff] Bug for: breaks Admin API access Security
  • 3941059 Incorrect behaviour of SerializeJSON() on strings Serialization that contain U+xxxx in CF10 Update 15
  • 4027176 unable to invoke / Register web services Web Services

New in Adobe ColdFusion 11 Update 6 (Aug 28, 2015)

  • This Update addresses a vulnerability mentioned in the security bulletin APSB15-21. This update is cumulative and includes fixes from previous ColdFusion 11 updates.
  • This hotfix includes an updated version of BlazeDS, which addresses an important vulnerability that could result in information disclosure. Adobe recommends users apply the hotfix using the instructions provided in the "Solution" section below.
  • This hotfix resolves an issue associated with the parsing of crafted XML external entities in BlazeDS that could lead to information disclosure (CVE-2015-3269).

New in Adobe ColdFusion 11 Update 5 (Feb 21, 2015)

  • Unhandled error in CFAdmin Error in AdminAPI
  • Error when deploying a ColdFusion application as J2EE Archive on JBOSS Application server (7.1.1)
  • CF System Probe: unable to set the file overwrite check option to false.
  • Issue while creating instances of ColdFusion using startInstance API
  • Install CF 11 on Mac, and click updates under Server Update in CF Administrator
  • Conditions:Empty input in CFINPUT, causes the CFLAYAOUTAREA to duplicate itself.
  • Tool-tip does not appear on the first click.
  • bind field is updated
  • Incorrect Serialization of dates
  • CFContent tag working differently in CF 11
  • properties with default values not accessible outside init function
  • contains comma
  • Exchange 2010: unable to set the task status to "Completed" with cfexchangetask action="modify".
  • Exchange 2010: The organizer is not correctly set in cfexchangecalendar Event struct.
  • (Exchange 2010/2013) cfexchangetask action="modify" : setting the percentcompleted to 100 or DateCompleted to a past date, does not change the task status to Completed.
  • cfinput onChange event not firering
  • [ANeff] Bug for: cfform vs form wrt default action at SES URL
  • CFChartSeries Attribute "Colorlist" No Longer Works CFChart : provide value to legend attribute when showlegend="no" shows legend box
  • $VALUE$ , $ITEMLABEL$ and $SERIESLABEL$ for attribute URL of CFCHART only work with PNG/JPG and not FLASH/HTML
  • With ENABLECFOUTPUTONLY turned on, CFCHART
  • in Flash or HTML format do not render, only PNG/JPG
  • 3859531 CFChart style attribute errors when passing json string 3860808 Flash/HTML format CFCHARTs will generate
  • unexpected URLs if attribute "URL" is set to "" or " " 3554224 Amazon S3 Support with DirectoryList
  • 3634391 null pointer exception thrown every now and then 3801082 Email validation using IsValid
  • 3849152 [ANeff] Bug for: CF sessions vs J2EE sessions (session
  • loss) when using urlSessionFormat()
  • 3916188 Updater 15 changes/breaks behavior of deleting
  • cookie.cfid/cftoken
  • 3512854 Error connecting to Oracle servers using Oracle
  • Advanced Security
  • 3818587 Incorrect cast when iterating over an array of elements
  • containing values from a query object.
  • 3849591 Issue while creating application-specific data source
  • using lowercase alphabet only in format.
  • 3851961 [ANeff] Bug for: abort throws exception within iteration
  • member function UDFs
  • array, one must specify the row/column values 3158250 CFSPREADSHEET .spreadSheetFormatRow not re-
  • setting bold and italic to no/false
  • but saves all worksheets when writing.
  • 3821299 Proxy Attributes on CFDocument Tag are ignored... formatting attributes are not interpreted correctly.
  • 3846110 cfhtmltopdfitem errors when inside CFLOOP
  • 3858416 Error occurred while generating PDF using cfhtmltopdf
  • 3923995 spreadsheetAddRows: When passing arrays (without passing the row/col attribs) the order of the array elements is not correctly written in the spreadsheet.
  • back to server
  • 3043111 Content-Type is not set appropriately when writing to S3 3043657 Cannot merge multiple PDFs from ram:// to ram:// 3114274 file uploaded by CFFILE action "upload" inherits
  • ColdFusion Temp Directory permission, instead of upload destination directory permission CFFILE action "write" doesn't have this problem
  • 3148657 fileUpload() not ignoring empty string for filefield 3226380 StoreGetMetadata - Amazon S3 Metadata Caching
  • Problem / Requires Restart (CF 9.0.1 and CF10) 3695879 The accept attribute of cffile doesn't work with Microsoft
  • Word DOCX files
  • 3739708 Coldfusion 10 / Windows 2012 R2 server and large file
  • upload into a network directory
  • 3829498 FileOpen/fileWrite functions fails when filename
  • contains a % character
  • 3848011 [ANeff] Bug for: does not recurse
  • 3720764 Error message with cfindex not detailed enough. 3818732 setDomainCookies="true" does not set domain cookies
  • in websites like... http://example.com
  • 3320414 Un-installer unable to remove Hotfix from all the
  • Instances onto which it was applied
  • 3358792 WSConfig does not back up all the config files it
  • changes
  • 3742083 CGI.PATH_INFO not null when default documents are
  • served on IIS
  • 3758070 CGI.HTTP_URL Missing when using IIS
  • successfully completed
  • 3853490 error when using the cfcompile.bat
  • 3923565 J2EE Session Vars Break ColdFusion on Win 2012 EC2 3776450 reloadOnChange causes issue with classPath
  • 3863517 [Escalation] Generated EAR through J2EE Archive giving error on accessing settings summary and scheduled tasks
  • 3041684 The "includeEmptyValues" of listRest() appears not to work
  • 3700163 The function gethttpRequestData() fails when form posted with encType="multipart/form-data"
  • 3750733 listFilter() doesn't correctly handle multi-char delimiters 3765527 for loop var not available in struct literal for arrayAppend
  • if not wrapped in { }
  • 3774074 Mixed-in functions cannot access SUPER "scope" on
  • first hit to a function
  • 3791747 each() does not support ordered arguments 3792283 Calling Randomize() with the SHA1PRNG does not
  • create "repeatable number patterns".
  • arrayFilter() /filter() callback needs to be passed element, index and array
  • 3818767 Serialization of query does not respect case
  • incorrect value
  • 3836820 queryExecute in a thread is broken
  • 3840570 null coalescing operator sometimes incorrectly returns
  • the second operand
  • 3842326 encrypt() key passed as a string vs. as a variable
  • renders a different result
  • 3845979 form scope can't be emptied by calling structClear 3851982 [ANeff] Bug for: structFilter/struct.filter() UDF arguments
  • missing struct
  • function accepts 1 parameters."
  • 3854303 Bug for: isValid() inconsistent handling of NULL for
  • eurodate and USdate
  • integer
  • 3861371 Start time and endTime in cfloop prints 12.00 AM
  • always
  • 3861391 CFClient support for arraysort() as member funtion 3909694 The function gethttpRequestData() fails when form
  • posted with encType="application/octet-stream" 3926197 "includeEmptyValues" of listRest() when passed with a
  • list containing a single element is not returning an empty
  • string which is the expected behaviour.
  • 3846187 [ANeff] Bug for: writeLog/cflog does not log application
  • name when called within onApplicationEnd()
  • 3401939 [cfclient] refind - multiple line mode not supported from
  • string in regular expressions in javascript like it is
  • supported in java
  • 3731533 [Regression] : CFCLIENT: Date : diff: returns month
  • difference as 1 when difference is less than a month 3732088 String : Wrap : Functions gives unexpected output in
  • one scenario
  • 3737513 Functions: cJustify : second parameter when given
  • decimal value is ceil
  • 3737514 Functions : Function ljustify, rjustify gives error when
  • number is passed as a first argument
  • 3737517 datastructure: functions: ReFind : Using ReFind for
  • regex having groups gives unexpected output 3738552 structure: copy : get copy of struct(having array as
  • element) through StructCopy and modifying the array inthe copied struct is reflecting the array of copy struct 3738564 Data structure: structFindValue : structFindValue
  • functions returns an array of struct, path value of this
  • struct shows array index of 2 when it should be 3 3738742 data structures: struct : structget : Using array inside the
  • structget method does not create it
  • 3739355 dateFormat : format does not work when used without
  • any delimited in between
  • 3740223 reReplace : function does not work as expected 3859184 [Regression] Series of cfm references in cfclient code
  • does not get converted to "html" during packaging, single reference does
  • cfclient device file APIs do not work for packaged
  • application
  • 3043375 When doing a chttp POST with a ~ (tilde) in the URL,
  • the ~ always gets URLENCODED 3369472 CFMAIL Keep sessions alive
  • 3673298 Cfftp action putfile failing after processing for secure FTP server
  • 3847737 [ANeff] Bug for: cfimap action=getall removes brackets from attachment names
  • 3041790 In ORMExecuteQuery() method when you pass the queryOption argument, the unique argument is ignored 3044064 IsValid("url", ...) and IsValid("email", ...) do not correctly
  • validate values that use IPv6-based addresses 3858866 Rendering report using cfreport throws
  • MalformedReportException on Mac platform
  • 3858955 [ANeff] Bug for: REST CFC function names must be 3+
  • characters
  • 3151872 exception.log not updated when eventhandler=""
  • attribute is specified and task throws exception 3854891 SerializeJSON on a Java object causes service restart 3702938 ColdFusion instances not showing up in Windows
  • Performance Monitor
  • 3534348 Typographical errors in $cfroot/cfusion/bin/cf-init.sh
  • 3853535 cfcontent sends corrupt binary data when query string is present with CF11s isapi_redirect.dll
  • 3910257 Instances in a cluster do not start after updating to 11.0.3
  • 3695114 AXIS Version 1 WSDL Generation Very Slow using JRE 1.7
  • 3832635 WSDL auto-generation seems in-correct
  • WebService display name is already used

New in Adobe ColdFusion 11 Update 4 (Feb 19, 2015)

  • Introduces a new jvm flag (-Dcoldfusion.ignoredbvarname) which can be used to disable the dbvarname attribute in the cfprocparam tag. This attribute was deprecated with ColdFusion MX and subsequently reintroduced with ColdFusion 11 Update 3. Refer Bug #3919479 for further details.
  • Bugs Fixed:
  • 3337394 - Language - SerializeJSON() converts name "No" to false in JSON output.
  • 3759721 - Imaging - Image functions result in an error on OS X (Mavericks).
  • 3865461 - WebScoket - Websockets do not work when configured with SSL.
  • 3865484 - Charting - Issue using legend property when specified in a json file.
  • 3910529 - Language - Issue with Elvis operator after applying Update 3.
  • 3919479 - Database - Provide an option to disable dbvarname attribute in cfstoredproc tag.
  • 3942257 - General - Server Monitor on Jetty and content generated by cfhtmltopdf not accessible on Solaris.

New in Adobe ColdFusion 11 Update 2 (Oct 16, 2014)

  • Addresses a vulnerability mentioned in the security bulletin APSB14-23. This update is cumulative and includes fixes from previous ColdFusion 11 update.
  • Adobe has released security hotfixes for ColdFusion versions 11, 10, 9.0.2, 9.0.1 and 9.0 for all platforms. These hotfixes address a security permissions issue that could be exploited by an unauthenticated local user to bypass IP address access control restrictions applied to the ColdFusion Administrator. Cross-site scripting and cross-site request forgery vulnerabilities are also addressed in the hotfixes.
  • These hotfixes resolve a cross-site request forgery vulnerability (CVE-2014-0570).
  • These hotfixes resolve a cross-site scripting vulnerability (CVE-2014-0571).
  • These hotfixes resolve a security permissions issue that could be exploited by an unauthenticated local user to bypass IP address access control restrictions (CVE-2014-0572).

New in Adobe ColdFusion 11 Update 1 (Sep 23, 2014)

  • ColdFusion 11 Update 1 (release date September 22, 2014) includes important bug fixes for Connector, Installation, Database and ORM:
  • 3777189: IIS worker process hangs when IIS website configuration is changed. (Connector)
  • 3758172: First request slow on IIS8 (Windows 8 and Server 2012). (Connector)
  • 3772978: In certain scenarios, when ColdFusion server is hosted behind a firewall, ColdFusion application service does not start. (Installation)
  • 3785178: CFSTOREDPROC is slow when returning many null values. (Database)
  • 3759846: ODBC Socket Data Source cannot be added on Windows. (Database
  • 3217374: Geography/Geometry/HierarchyID data types are not supported. (Database)
  • 3518916: Assigning null to boolean property throws an error while saving the object. (ORM)

New in Adobe ColdFusion 11 (Apr 30, 2014)

  • Mobile Application Development Workflow:
  • ColdFusion 11 along with ColdFusion Builder 3 gives you a unique end-to-end workflow for mobile application development addressing the challenges associated with building, testing, debugging and deploying enterprise class mobile applications - both web based as well as installed mobile apps.
  • Language Enhancements:
  • While there are a range of enhancements made to the language, some of the features that can be called out are full CFSCRIPT support, support for Member Functions and JSON enhancements.
  • PDF Functionality:
  • ColdFusion 11 now leverages a new engine for HTML to PDF conversion that does an almost perfect job of converting most HTML/CSS to its corresponding PDFs pixel-to-pixel. Along with the new engine, CFPDF has additional functionality to support digital signatures and archiving PDFs.
  • Security:
  • ColdFusion 11 has a built-in mechanism to prevent access of Administrator or its components from external access. ColdFusion 11 has additional built-in functions to prevent XSS, thus allowing concurrent logins through CFLOGIN. ColdFusion also supports mail encryption through CFMAIL.
  • ColdFusion Builder 3 bundled with ColdFusion 11:
  • ColdFusion 11 Standard and ColdFusion 11 Enterprise is bundled with copy (ies) of ColdFusion Builder 3. With one copy of ColdFusion Standard, you get one license of ColdFusion Builder 3 and with one copy of ColdFusion Enterprise, you get three copies of ColdFusion Builder 3.
  • Java 7 Update 55:
  • As you may be aware, Java has come up with an update (Java 7 Update 55) with critical security fixes. This update was released on 15th of April. ColdFusion 11, ColdFusion 10 and ColdFusion 9 have already been certified on Java 7 Update 55.
  • For ColdFusion 11, all attempts were made to include this update as part of the final CF11 installers though this was very close to our launch date. We ran into an issue with the installer with a third-party platform used by ColdFusion, on Java 7 Update 55. We have escalated this issue with the vendor and are working with them for a fix. For now, the Java version bundled with the final installers of ColdFusion 11 is Java 7 Update 51.
  • But we fully understand the importance of Java 7 Update 55 and want to assure the ColdFusion community that we are committed to fixing this issue. We are also planning to replace all the ColdFusion 11 installers to include Java 7 Update 55 as soon as we are able to obtain a fix from the vendor.
  • However, as always you can use Java 7 Update 55 with ColdFusion 11, ColdFusion 10 and ColdFusion 9 by pointing to an external Java location.

New in Adobe ColdFusion 11 Beta (Feb 20, 2014)

  • Leverage your existing CFML skills to develop mobile apps and use built-in integration with Adobe Phonegap to build easily and quickly deliver them as installed apps that run on iOS and Android™ devices.
  • Use unique on-device debugging capabilities to identify and fix errors in both installed apps as well as browser-based mobile applications.
  • Security enhancements to limit the attack surface by restricting default remote access to the admin portal.
  • Develop applications faster and more easily since every functionality of ColdFusion Project Splendor can be accessed using CFSCRIPT.
  • Use the improved conversion engine from Adobe to generate superior quality PDFs from HTML pages.
  • Allow your end users to access your web application with their existing social media accounts.
  • Maintain and modify existing code faster and more easily with member functions on ColdFusion objects.
  • Secure your PDFs using electronic signatures and manipulate them using full DDX support.

New in Adobe ColdFusion 10 Build 281485 Beta (Feb 21, 2012)

  • Replacement of JRun with Tomcat
  • Security enhancements
  • ColdFusion WebSocket
  • Language enhancements
  • ColdFusion closures
  • Enhanced Java integration
  • ColdFusion ORM search
  • Solr enhancements
  • Scheduler enhancements
  • Integration with Microsoft Exchange Server 2010
  • Lazy loading across client and server
  • Web service enhancements
  • RESTful Web Services in ColdFusion
  • Media Player enhancements
  • Displaying geolocation
  • Client-side charting
  • Caching enhancements
  • Server update using ColdFusion Administrator

New in Adobe ColdFusion 9.0.0 Build 241018 Beta (Jul 13, 2009)

  • Office file interoperability to easily read, write and update spreadsheets.
  • Server Manager to centrally manage multiple ColdFusion servers, simplifying administration of your environment across clusters.
  • ColdFusion as a Service to access ColdFusion services through AMF and SOAP without writing CFCs.
  • Built in Adobe AIR Local/Remote Database Synchronization.
  • Object Relational Mapping to build database independent applications without writing SQL.
  • New AJAX controls including multimedia, mapping and more.
  • Enhanced Caching to improve performance of your ColdFusion applications.

New in Adobe ColdFusion 8.0.1 (Apr 4, 2008)

  • ColdFusion 8 Update 1 provides full 64-bit support for several new platforms including versions of Windows, Mac OS X, and Linux, in addition to Solaris (which was added with the initial ColdFusion 8 release).
  • We have also improved functionality in several areas including AJAX functions, CFPDF, and CFIMAGE.
  • We have also updated several software libraries.