============================================================================= Run Date: JUN 27, 2025 Designation: MAG*3*383 Package : MAG - IMAGING Priority: EMERGENCY Version : 3 SEQ #266 Status: Released Compliance Date: JUL 11, 2025 ============================================================================= Subject: UPGRADE TOMCAT AND JAVA FOR HDIG APPLICATION Category: - Other - Informational Description: ============ Patch P383 is an emergency patch that involves upgrading the HDIG application's underlying infrastructure to address security vulnerabilities identified on production servers. As part of this patch, the Java version will be upgraded from 8u401 to 8u451, and Apache Tomcat will be updated from version 9.0.86 to 9.0.105. These updates are based on recent TRM approvals and are essential to ensure the application remains secure and compliant with current standards. The patch is strictly limited to backend component upgrades and does not introduce any functional changes to the application. Note this is a fix for the HDIG only, there is no VistA KIDS file for this install. This patch addresses the following adaptive maintenances: Adaptive Maintenance: ===================== 1. VISTAIS-5145 - HDIG Java upgrade to 8u451 2. VISTAIS-5154 - HDIG Apache Tomcat upgrade to 9.0.105 3. VISTAIS-5159 - Update HDIG SSL Certificate EHRM Impact Statement: ---------------------- This patch should have no EHRM impact, and can be installed at all sites, including EHRM converted sites. ` Patch Components: ---------------- Files & Fields Associated: File Name (Number) Field Name (Number) New/Modified/Deleted ------------------ ------------------- -------------------- N/A Forms Associated: Form Name File Number New/Modified/Deleted --------- ----------- -------------------- N/A Mail Groups Associated: Mail Group Name New/Modified/Deleted --------------- -------------------- N/A Options Associated: Option Name Type New/Modified/Deleted ----------- ---- -------------------- N/A Protocols Associated: Protocol Name New/Modified/Deleted ------------- -------------------- N/A Security Keys Associated: Security Key Name ----------------- N/A Templates Associated: Template Name Type File Name (Number) New/Modified/Deleted ------------- ---- ------------------ -------------------- N/A Remote Procedures Associated: Remote Procedure Name New/Modified/Deleted --------------------- -------------------- N/A Parameter Definitions Associated: Parameter Name New/Modified/Deleted -------------- -------------------- N/A Additional Information: ----------------------- N/A Blood Bank Team Coordination: N/A New Service Requests (NSRs): N/A Patient Safety Issues (PSIs): N/A Defect Tracking System Ticket(s) & Overview: -------------------------------------------- N/A Adaptive Maintenance: -------------------------------------------- 1. VISTAIS-5145 - HDIG Java upgrade to 8u451 Problem: -------- Upgrade the Java version of HDIG application from 8U401 to 8U451 Resolution: ----------- Update the version of Java to 8U451. This patch replaces the C:\Program Files\Java to ensure that the Java version brought up to the latest approved version, 8U451. 2. VISTAIS-5154 - HDIG Apache Tomcat upgrade to 9.0.105 Problem: -------- Upgrade the Tomcat version of HDIG application from 9.0.86 to 9.0.105 Resolution: ----------- Update the version of Tomcat to 9.0.105. This patch replaces the C:\Program Files\Apache Software Foundation\Tomcat 9.0 to ensure that the Tomcat version brought up to the latest approved version, 9.0.105. 3. VISTAIS-5159 - Update HDIG SSL Certificate Problem: -------- The SSL Certificate is expiring and needs to be updated Resolution: ----------- Updated the SSL certificate for https so that Https encryption works. Test Sites: ----------- Albany VA Medical Center, Albany, NY Cheyenne VA Medical Center, Cheyenne, WY Test Sites - SNOW Change Order #: --------------------------------- N/A Software and Documentation Retrieval Instructions: -------------------------------------------------- All patch files can be obtained from the SOFTWARE library by accessing the URL: https://download.vista.domain.ext/index.html/SOFTWARE. The software for this patch is being released using a host file. File Title File Name Format -------------------------------------------------------------------------- Hybrid DICOM Gateway MAG3_0P383_HDIG_SETUP.MSI Binary Installation File Documentation describing the new functionality is included in this release. Documentation can be found on the VA Software Documentation Library at: VA Software Document Library Documentation Title File Name -------------------------------------------------------------------------- Patch Description for MAG*3.0*383 MAG3_0P383_PATCH_DESCRIPTION.PDF Deployment, Installation, Back-Out, MAG3_0P383_DIBRG.PDF and Rollback Guide Patch Installation: ------------------- Pre/Post Installation Overview: ------------------------------- N/A Supported Versions: -------------------------- When MAG*3.0*383 is released, the list of supported versions of HDIG will change: Versions Supported: ------------------- 3.0.383 3.0.354 3.0.357 Versions No Longer Supported: ----------------------------- 3.0.345/3.0.364 3.0.314 3.0.324 Installation Instructions: -------------------------- Pre-Installation Instructions: ------------------------------- N/A KIDS Installation Instructions: ------------------------- N/A Installing and Updating the HDIG: --------------------------------- For installing or updating the HDIG, refer to the Hybrid DICOM Image Gateway (HDIG) Installation Guide. Post-Installation Instructions: ------------------------------- N/A Back-Out/Roll Back Plan: ------------------------ Please refer to the Deployment, Implementation, Back-Out and Rollback Guide (MAG3_0P383_DIBRG.PDF) for instructions. Uninstalling the Application: ----------------------------- For uninstalling the HDIG and instructions on reinstalling the patch (MAG*3.0*354), refer to the Hybrid DICOM Image Gateway (HDIG) Installation Guide. KIDS Uninstall: --------------- N/A Routine Information: ==================== No routines included. ============================================================================= User Information: Entered By : Date Entered : MAY 28, 2025 Completed By: Date Completed: JUN 27, 2025 Released By : Date Released : JUN 27, 2025 ============================================================================= Packman Mail Message: ===================== No routines included