ColdFusion March 2023 emergency update, and what to do about it

Posted At : March 17, 2023 3:00 AM | Posted By : Charlie Arehart
Related Categories: updates, cf2016, IIS, cf2021, commandbox, cf11, security, apache, cf2018
Comments: (32)

If you've not heard, a new update has been released (March 14, 2023) for ColdFusion 2021 and 2018. Despite what you may hear, this is an URGENT (rated "Priority 1" by Adobe) update that everyone should apply ASAP, for reasons I will explain in this post. In fact, Hackernews reported yesterday (Mar 16) that the U.S. Cybersecurity and Infrastructure Security Agency (CISA) had issued an urgent warning about this, giving federal agencies a deadline to apply the update.

TLDR; For some folks, the above may be all you need to hear: you may be dropping your coffee and donuts now to get the update applied. Still others will see this "huge post" and think, "crap, I don't have time for this". For you, skip to the bottom and its "concluding key points". You can then decide what you think you do or don't "need to know" and pick and choose from the sections as you like.

Finally, for those who prefer because of the importance of all this to be led more carefully through understanding things (in a way that's worked for the many people I have helped so far this week, and is far more than either Adobe or Hackernews has shared), please do read on.

[....Continue Reading....]

Comments (32)

Be aware that ColdFusion 2018 end-of-life (and end of updates) is coming July 2023

Posted At : January 26, 2023 4:00 PM | Posted By : Charlie Arehart
Related Categories: updates, cf2021, licensing, cf2023, cf2018
Comments: (0)

Are you still running ColdFusion 2018? Did you know that its end-of-life is July 13, 2023? That's the date that "core" support ends--meaning, no more updates from Adobe after that, not even security fixes.

As for CF2021, it gets updates into 2025, and the currently running pre-release of CF2023 is a great sign for the continued vitality of CF. But this looming deadline for CF2018 is a reminder that as the years roll on, we not only get new versions but we must say good-bye to old ones.

Wondering what you can do? or when CF2021 or CF2023 support will end also? And what's the difference between "core" and "extended" support Adobe sells? (The extended support plan does NOT provide updates beyond this coming July.) For more on these, including official Adobe documentation that discusses such things, as well as my thoughts on migration, costs, various options to consider, and more, do read on.

[....Continue Reading....]

Comments (0)

What's new in FusionReactor 9.2.0, released Jan 18 2023

Posted At : January 24, 2023 1:15 AM | Posted By : Charlie Arehart
Related Categories: cf2021, fusionreactor, monitoring, cf2018, lucee
Comments: (0)

If you're a user of the wonderful FusionReactor monitoring and observability solution (for ColdFusion, Lucee, Java servers and more), you may delight in hearing news of a new FusionReactor (FR) version. 9.2.0 was released last week, Jan 18, 2023.

You can learn more (in brief) about what's new in the bullets for 9.2.0 offered at the release notes page.

TLDR: For some folks, news of the new version is all the need to hear. For those who may like to hear a bit more about the update, read on.

[....Continue Reading....]

Comments (0)

Special offer: upgrade to ColdFusion 2021 from CF2016 or earlier, saving perhaps thousands of $$

Posted At : October 31, 2022 6:05 PM | Posted By : Charlie Arehart
Related Categories: updates, cf9, cf2016, cf2021, cf10, fusionreactor, cf11, cf2018
Comments: (0)

If you're running CF2016 or earlier, now's your chance (though ~~the end of the year~~ Feb 28, 2023) to save potentially thousands of dollars in upgrading to the latest current version, CF2021. Intergral, the folks who make the FusionReactor monitoring tool and service, are again offering a special deal of 25% off to upgrade CF2016 or earlier to CF2021 (a deal which even Adobe does not offer).

Read on for more details.

[....Continue Reading....]

Comments (0)

ColdFusion 2021 "refreshed" installers available (with update 5)...but only in one place for now

Posted At : October 17, 2022 10:25 PM | Posted By : Charlie Arehart
Related Categories: cf2021, installation
Comments: (4)

Here's some surprising news: Adobe has released a "refreshed" installer for CF2021, which includes update 5 (which came out last week) built-in.

Did you know about this? You'd be forgiven if you had not heard, for reasons I will explain. And I'm glad to share the news, though it's a good news/bad news sort of thing (just like with the update itself. More on that in another post to come.)

TLDR: these new "refreshed" CF2021 installers are (for now) available only here: here.

As for information ABOUT the refreshed installers, here's the news in brief (the good and the not so good):

Good news: there is a new full installer for CF2021, for each of Windows, MacOS, Linux, and Solaris.
Not good news: there are not new "zip" installers, at least for now.
Good news: these "refreshed" installers includes update 5, so if you are installing CF2021 newly on a machine, that would be easier than getting an older installer and updating it.
Not good news: the installer implements only Java 11.0.11, while the version available as of the release of update 5 last week was 11.0.16.1, from July 2022
Some odd news: Adobe didn't mention the availability of this refreshed installer in the CF2021 update 5 technote, nor their blog post or forum post announcing update 5.
The most odd news: again, the refreshed installers are only available for download from one place currently, the CF "downloads" page. More on that below.
Bad news for those still using CF2018: while there was indeed the update 15 released also last week, Adobe has NOT offered such a refreshed installer for CF2018 and likely will not.

Read on for more.

[....Continue Reading....]

Comments (4)

I'll be presenting at the online CFMeetup, on Adobe's 'new' CFSetup tool, useful for any CF version

Posted At : September 27, 2022 11:09 AM | Posted By : Charlie Arehart
Related Categories: presentations, cf2016, cf2021, cf10, cf11, cf2018
Comments: (0)

This topic may (should) interest folks using CF2021 or even OLDER CF versions. Did you know there's a command line tool to help view/manage as well as export/import CF Admin settings? I will be presenting a talk on this, Thursday. Anyone can attend online.

Folks who are members of the Online ColdFusion Meetup that I run will already have gotten notification about this, but those who are not:

[....Continue Reading....]

Comments (0)

I'll be presenting at Adobe CF Summit 2022, and marking some anniversaries

Posted At : September 12, 2022 10:37 PM | Posted By : Charlie Arehart
Related Categories: presentations, cf2021, API Manager, docker, cf2018, PMT
Comments: (0)

I'm delighted to have been selected again to speak at October's Adobe ColdFusion Summit 2022 conference, which is being held in-person again finally--in Vegas as before. After I share the news of that talk, I want to also note some anniversaries related to this event and my session.

[....Continue Reading....]

Comments (0)

My presentation will open CF DevWeek this week: CF, more modern than most realize

Posted At : July 17, 2022 10:31 PM | Posted By : Charlie Arehart
Related Categories: presentations, general, cf2016, cf2021, cf11, cf2018
Comments: (0)

Just thought I'd post a reminder for folks that I am giving the opening session for the 2022 CF Dev Week, running July 18-22. Registration is free, of course.

My session will be at 9a 930a Eastern on Monday July 18:

[....Continue Reading....]

Comments (0)

New updates released for Java 8, 11, 17, and 18 as of Apr 2022

Posted At : April 19, 2022 11:52 AM | Posted By : Charlie Arehart
Related Categories: updates, cf2016, cf2021, java, cf2018
Comments: (1)

New JVM updates have been released today (Apr 19, 2022) for the current long-term support (LTS) releases of Oracle Java, 8, 11, and 17, as well as the new interim update 18. (Note that prior to Java 9, releases of Java were known technically as 1.x, to 8 is referred to in resources below as 1.8.)

The new updates are 1.8.0_331, (aka 8u331), 11.0.15, 17.0.3, and 18.0.1 respectively). And as is generally the case with these Java updates, most of them have the same changes and fixes.

For more on them, including changes as well as the security and bug fixes they each contain, see the Oracle resources I list below, as well as some additional info I offer for if you may be skipping to this from a JVM update from before Apr 2021. I also offer info for Adobe ColdFusion users on where to find the updated Java versions, what JVM versions Adobe CF supports, and more.

[....Continue Reading....]

Comments (1)

New updates released for Java 8, 11, and 17, as of Jan 2022

Posted At : January 24, 2022 11:48 PM | Posted By : Charlie Arehart
Related Categories: updates, cf2016, cf2021, java, security, cf2018
Comments: (4)

New JVM updates have been released last week (Jan 18, 2022) for the current long-term support (LTS) releases of Oracle Java, 8, 11, and 17. (Note that prior to Java 9, releases of Java were known technically as 1.x, to 8 is referred to in resources below as 1.8.) I'd shared the news in a tweet last week, but was delayed in getting this post out.

The new updates are 1.8.0_321, (aka 8u321), 11.0.14, and 17.0.2, respectively).

For more on them, including information on the security fixes and bug fixes they each contain, see the Oracle resources I list below, as well as some additional info I offer for if you may be skipping to this from a JVM update from before Apr 2021, as well as info for Adobe ColdFusion users on where to find the updated Java versions, what JVM versions Adobe CF supports, and more.

[....Continue Reading....]

Comments (4)

Sun	Mon	Tue	Wed	Thu	Fri	Sat
				1	2	3
4	5	6	7	8	9	10
11	12	13	14	15	16	17
18	19	20	21	22	23	24
25	26	27	28	29	30