A fix is available
APAR status
Closed as program error.
Error description
z/OS IBM HTTP Server for WebSphere (powered by Apache) Fix Pack 7.0.0.23
Local fix
Problem summary
**************************************************************** * USERS AFFECTED: All users of IBM HTTP Server V7.0 * * (powered by Apache) for z/OS * **************************************************************** * PROBLEM DESCRIPTION: This APAR addresses various defects * * in IBM HTTP Server V7.0 on z/OS * * (powered by Apache) * **************************************************************** * RECOMMENDATION: * **************************************************************** This APAR fixes the following defects in IBM HTTP Server V7.0 (powered by Apache) for z/OS APAR Description ------- ---------------------------------------------------- PM52351 CVE-2012-0717: SSLCLientAuth Required_reset is not enforced for SSLv2 connections? PM53340 Incorrect request body handling with Expect: 100-continue. PM54289 install_ihs script results in errors in the postinstall process. (z/OS only) PM54387 ABEND EC6 after IHS shutdown when using piped loggers. (z/OS only) PM55760 CVE-2012-0031: Possible parent process crash when untrusted code is run in child. PM56128 CVE-2012-0053: Possible httpOnly cookie disclosure on compromised site. PM56585 mod_authnz_ldap can generate many unnecessary ldap queries while processing 'Require group' PM57197 mpmstats and hung/slow module detection PM58545 mod_perl2 build can't find OPT_INCNOEXEC PM58899 CVE-2012-0883: IHS on unix vulnerable to local LD_LIBRARY_PATH attack at startup. *** NOTE *** Additional information about the APARs listed above can be found in RETAIN or by using the APAR search facility located at URL: http://www.ibm.com/software/webservers/appserv/was/support/ to search on the APAR number.
Problem conclusion
This APAR fixes various defects in IBM HTTP Server V7.0 (powered by Apache) for z/OS. It is currently targeted for inclusion in Service Level (Fix Pack) 7.0.0.23 of IBM HTTP Server V7.0.
Temporary fix
Comments
APAR Information
APAR number
PM62907
Reported component name
WAS IHS ZOS
Reported component ID
5655I3510
Reported release
700
Status
CLOSED PER
PE
NoPE
HIPER
NoHIPER
Special Attention
NoSpecatt / Xsystem
Submitted date
2012-04-19
Closed date
2012-04-24
Last modified date
2012-09-21
APAR is sysrouted FROM one or more of the following:
APAR is sysrouted TO one or more of the following:
UK78546
Fix information
Fixed component name
WAS IHS ZOS
Fixed component ID
5655I3510
Applicable component levels
R700 PSY UK78546
UP12/05/26 P F205
Fix is available
Select the PTF appropriate for your component level. You will be required to sign in. Distribution on physical media is not available in all countries.
[{"Line of Business":{"code":"LOB45","label":"Automation"},"Business Unit":{"code":"BU053","label":"Cloud & Data Platform"},"Product":{"code":"SS7K4U","label":"WebSphere Application Server for z\/OS"},"Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"7.0"}]
Document Information
Modified date:
09 March 2021