A fix is available
APAR status
Closed as program error.
Error description
z/OS IBM HTTP Server for WebSphere (powered by Apache) Fix Pack 7.0.0.39
Local fix
Problem summary
**************************************************************** * USERS AFFECTED: All users of IBM HTTP Server V7.0 * * (powered by Apache) for z/OS * **************************************************************** * PROBLEM DESCRIPTION: This APAR addresses various defects * * in IBM HTTP Server V7.0 on z/OS * * (powered by Apache) * **************************************************************** * RECOMMENDATION: * **************************************************************** This APAR fixes the following defects in IBM HTTP Server V7.0 (powered by Apache) for z/OS: APAR Description ------- ---------------------------------------------------- PI33527 SSLOCSPEnable directive always enables OCSP (Online Certificate Status Protocol) even if value is 'OFF' PI34017 HTTP error 413 on static files results in a duplicate error message. PI34229 CVE-2015-2808: Disable RC4-based TLS ciphers by default in IBM HTTP Server PI35073 IBM HTTP Server always supplies its own HTTP 'DATE' header to responses generated by the WebSphere webserver plug-in. PI35219 ABEND0C1 when running install_ihs on z/OS PI38322 Allow mod_cache in IBM HTTP Server to ignore an 'Authorization' HTTP request header. PI38562 CGI resources are briefly unavailable just after a restart PI38828 Enable unified config dump PI38835 IBM HTTP Server cannot log time-to-first-byte (TTFB) PI40952 Preserve quoting in SSLServerCert directive PI42928 CVE-2015-3183: Incorrect parsing of chunked headers PI45596 CVE-2015-1283 for IBM HTTP Server PI45740 Encoding error on RewriteRule PI46076 Authentication issue in Apache *** NOTE *** Additional information about the APARs listed above can be found in RETAIN or by using the APAR search facility located at URL: http://www.ibm.com/software/webservers/appserv/was/support/ to search on the APAR number.
Problem conclusion
This APAR fixes various defects in IBM HTTP Server V7.0 (powered by Apache) for z/OS. It is currently targeted for inclusion in Fix Pack 7.0.0.39 of IBM HTTP Server V7.0. Please refer to URL: //www.ibm.com/support/docview.wss?rs=404&uid=swg27006970 for Fix Pack availability.
Temporary fix
Comments
APAR Information
APAR number
PI49291
Reported component name
WAS IHS ZOS
Reported component ID
5655I3510
Reported release
700
Status
CLOSED PER
PE
NoPE
HIPER
NoHIPER
Special Attention
NoSpecatt / Xsystem
Submitted date
2015-09-24
Closed date
2015-09-30
Last modified date
2016-03-16
APAR is sysrouted FROM one or more of the following:
APAR is sysrouted TO one or more of the following:
Fix information
Fixed component name
WAS IHS ZOS
Fixed component ID
5655I3510
Applicable component levels
R700 PSY UI32109
UP15/10/31 P F510
Fix is available
Select the PTF appropriate for your component level. You will be required to sign in. Distribution on physical media is not available in all countries.
[{"Line of Business":{"code":"LOB45","label":"Automation"},"Business Unit":{"code":"BU053","label":"Cloud & Data Platform"},"Product":{"code":"SS7K4U","label":"WebSphere Application Server for z\/OS"},"Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"7.0"}]
Document Information
Modified date:
09 March 2021