IBM Support

JR57102: SWEET 32: BIRTHDAY ATTACKS ON 64-BIT BLOCK CIPHERS (CVE-2016-2183)

Subscribe to this APAR

By subscribing, you receive periodic emails alerting you to the status of the APAR, along with a link to the fix after it becomes available. You can track this item individually or track all items by product.

Notify me when this APAR changes.

Notify me when an APAR for this component changes.

 

APAR status

  • Closed as program error.

Error description

  • Communications Server for Data Center Deployment, V7
Communications Server for AIX, V6.4
Communications Server for Linux, V6.4
Communications Server for Linux on System z, V6.4
Communications Server for Windows, V6.4
----------------------------------------------------
Protect against vulnerability "sweet32: Birthday attack on
64-bit block ciphers as described at https://sweet32.info/ ".
When Triple DES (168 bit) ciphers are used from encryption there
is a possible risk when over 2 GBytes of data is transferred on
the session.  Program the security library to drop such a
session before the vulnerability is exposed if this amount of
data is exchanged.

Local fix

  • 



Problem summary


    

  • This APAR provides an updated GSKit package:
  GSKit 8.0.50.70

    



Problem conclusion


    

  • This APAR provides an updated GSKit package:
  GSKit 8.0.50.70

    



Temporary fix


    

  • 



Comments


    

  • 



APAR Information




    

  • APAR number
    JR57102
    • 

  • Reported component name
    COMM SERV NT 6.
    • 

  • Reported component ID
    5639F2503
    • 

  • Reported release
    640
    • 

  • Status
    CLOSED  PER
    • 

  • PE
    NoPE
    • 

  • HIPER
    NoHIPER
    • 

  • Special Attention
    NoSpecatt / Xsystem
    • 

  • Submitted date
    2016-12-08
    • 

  • Closed date
    2016-12-08
    • 

  • Last modified date
    2016-12-08
    • 





    

  • APAR is sysrouted FROM one or more of the following:
    

    
IV90799
    

    • 

  • APAR is sysrouted TO one or more of the following:
    

    • 



Fix information


    

  • Fixed component name
    COMM SERV NT 6.
    • 

  • Fixed component ID
    5639F2503
    • 



Applicable component levels


    

  • R640  PSY  
       
    • 








      
              
                            

              

              {"0":{"Business Unit":{"code":"BU058","label":"IBM Infrastructure w\/TPS"},"Product":{"code":"SSHQNF","label":"Communications Server for Windows"},"Component":"","ARM Category":[],"Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"640","Edition":"","Line of Business":{"code":"LOB35","label":"Mainframe SW"}},"2":{"Product":{"code":"SSSN3L","label":"Communications Server for z\/OS"},"Business Unit":{"code":"BU058","label":"IBM Infrastructure w\/TPS"},"Line of Business":{"code":"LOB35","label":"Mainframe SW"}},"3":{"Product":{"code":"SSPQKF","label":"Communications Server for AIX"},"Business Unit":{"code":"BU058","label":"IBM Infrastructure w\/TPS"},"Line of Business":{"code":"LOB35","label":"Mainframe SW"}},"4":{"Product":{"code":"SSDMF3","label":"Communications Server for Linux on zSeries"},"Business Unit":{"code":"BU058","label":"IBM Infrastructure w\/TPS"},"Line of Business":{"code":"LOB35","label":"Mainframe SW"}},"5":{"Product":{"code":"SSHQLW","label":"Communications Server for Linux"},"Business Unit":{"code":"BU058","label":"IBM Infrastructure w\/TPS"},"Line of Business":{"code":"LOB35","label":"Mainframe SW"}},"6":{"Product":{"code":"SSY50V","label":"Communications Server for UNIX"},"Business Unit":{"code":"BU058","label":"IBM Infrastructure w\/TPS"},"Line of Business":{"code":"LOB35","label":"Mainframe SW"}},"1":null}
              

                          

          
 
        

      

    

      

        

          

            
Document Information


            

            


                        

            Modified date:
            

            14 November 2022
            

            
                      

        


        

        


      

    

  



    

  

  
    
            

          
Page Feedback