WPM 2023.4.1 release notes
Release date: November 9, 2023
These release notes were updated on November 14, 2023.
Web Performance Monitor 2023.4.1 is a service release providing bug and security fixes for release 2023.4. In conjunction with fixes in this release, WPM 2023.4.1 system requirements have also been updated.
For information about the WPM 2023.4 release, including EOL notices and upgrade information, see Web Performance Monitor 2023.4 Release Notes. For information about the SolarWinds Platform 2023.4 release, including EOL notices and upgrade information, see SolarWinds Platform 2023.4 Release Notes.
Fixes
Web Performance Monitor 2023.4.1 includes the fixes in version 2023.4.1 of the SolarWinds Platform.
For information about new features and fixes in the SolarWinds Platform, see the SolarWinds Platform 2023.4.1 Release Notes.
| Case number | Description |
|---|---|
| 01376506, 01424936 | Requests for started_date_time are no longer duplicated. Duplicate requests caused recording playback to fail with the error TypeError: can only concatenate str (not "float") to str. |
|
01130826, |
Probe no longer returns intermittently negative duration time for click actions that trigger navigation in a new tab. |
CVEs
SolarWinds would like to thank our Security Researchers below for reporting on the issue in a responsible manner and working with our security, product, and engineering teams to fix the vulnerability.
Third-party CVEs
| CVE-ID | Vulnerability Title | Description | Severity | Credit |
|---|---|---|---|---|
| 2023-4863 | Google Chromium WebP Heap-Based Buffer Overflow Vulnerability* | Heap buffer overflow in libwebp in Google Chrome prior to 116.0.5845.187 and libwebp 1.3.2 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page. | High | N/A |
*SolarWinds does not support the use of WebP images on our website, and is not affected by this Google Chromium WebP Heap-Based Buffer Overflow vulnerability. SolarWinds has updated this library out of an abundance of caution since the vulnerability is a serious one.
Legal notices
© 2023 SolarWinds Worldwide, LLC. All rights reserved.
This document may not be reproduced by any means nor modified, decompiled, disassembled, published or distributed, in whole or in part, or translated to any electronic medium or other means without the prior written consent of SolarWinds. All right, title, and interest in and to the software, services, and documentation are and shall remain the exclusive property of SolarWinds, its affiliates, and/or its respective licensors.
SOLARWINDS DISCLAIMS ALL WARRANTIES, CONDITIONS, OR OTHER TERMS, EXPRESS OR IMPLIED, STATUTORY OR OTHERWISE, ON THE DOCUMENTATION, INCLUDING WITHOUT LIMITATION NONINFRINGEMENT, ACCURACY, COMPLETENESS, OR USEFULNESS OF ANY INFORMATION CONTAINED HEREIN. IN NO EVENT SHALL SOLARWINDS, ITS SUPPLIERS, NOR ITS LICENSORS BE LIABLE FOR ANY DAMAGES, WHETHER ARISING IN TORT, CONTRACT OR ANY OTHER LEGAL THEORY, EVEN IF SOLARWINDS HAS BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES.
The SolarWinds, SolarWinds & Design, Orion, and THWACK trademarks are the exclusive property of SolarWinds Worldwide, LLC or its affiliates, are registered with the U.S. Patent and Trademark Office, and may be registered or pending registration in other countries. All other SolarWinds trademarks, service marks, and logos may be common law marks or are registered or pending registration. All other trademarks mentioned herein are used for identification purposes only and are trademarks of (and may be registered trademarks) of their respective companies.