Direct links to fixes
4.7.0.3-SterlingConnectDirectforMicrosoftWindows-x86-fp0003
4.7.0.3-SterlingConnectDirectforMicrosoftWindows-x86-fp0003-if002
4.7.0.3-SterlingConnectDirectforMicrosoftWindows-x86-fp0003-if005
4.7.0.3-SterlingConnectDirectforMicrosoftWindows-x86-fp0003-if012
4.7.0.3-SterlingConnectDirectforMicrosoftWindows-x86-fp0003-if015
4.7.0.3-SterlingConnectDirectforMicrosoftWindows-x86-fp0003-if020
4.7.0.4-SterlingConnectDirectforMicrosoftWindows-x86-fp0004
4.7.0.4-SterlingConnectDirectforMicrosoftWindows-x86-fp0004-if007
4.7.0.4-SterlingConnectDirectforMicrosoftWindows-x86-fp0004-if016
4.7.0.5-SterlingConnectDirectforMicrosoftWindows-x86-fp0005
4.7.0.4-SterlingConnectDirectforMicrosoftWindows-x86-fp0004-if023
4.7.0.5-SterlingConnectDirectforMicrosoftWindows-x86-fp0005-if006
4.7.0.5-SterlingConnectDirectforMicrosoftWindows-x86-fp0005-if013
4.7.0.5-SterlingConnectDirectforMicrosoftWindows-x86-fp0005-if016
4.7.0.5-SterlingConnectDirectforMicrosoftWindows-x86-fp0005-if025
4.7.0.6-SterlingConnectDirectforMicrosoftWindows-x86-fp0006
4.7.0.6-SterlingConnectDirectforMicrosoftWindows-x86-fp0006-if005
4.7.0.6-SterlingConnectDirectforMicrosoftWindows-x86-fp0006-if006
4.7.0.6-SterlingConnectDirectforMicrosoftWindows-x86-fp0006-if012
4.7.0.7-SterlingConnectDirectforMicrosoftWindows-x86-fp0007
4.7.0.7-SterlingConnectDirectforMicrosoftWindows-x86-fp0007-if001
4.7.0.7-SterlingConnectDirectforMicrosoftWindows-x86-fp0007-if009
4.7.0.7-SterlingConnectDirectforMicrosoftWindows-x86-fp0007-if016
4.7.0.7-SterlingConnectDirectforMicrosoftWindows-x86-fp0007-if018
4.7.0.7-SterlingConnectDirectforMicrosoftWindows-x86-fp0007-if021
4.7.0.7-SterlingConnectDirectforMicrosoftWindows-x86-fp0007-if023
APAR status
Closed as program error.
Error description
A vulnerability in relation to TLS Record Processing has been discovered related TLS 1.0 and later which can result in high CPU Utilization leading requiring a system reboot to resolve. GSKit 8.0.50.17 used in Connect:Direct for Windows
Local fix
STRRTC - 424498 JL / SF Circumvention: None
Problem summary
Users Affected: Sterling Connect:Direct for Windows 4.7.0 Problem Description: Vulnerability related to Record Processing in TLS 1.0 and later which can result in high CPU Utilization that requires a system reboot to resolve. Platforms Affected: Windows
Problem conclusion
Resolution Summary: Updated the version of GSKit. Delivered In: Sterling Connect:Direct for Windows 4.7.0.1
Temporary fix
Comments
APAR Information
APAR number
IT01934
Reported component name
STR CD FOR WIND
Reported component ID
5725C9908
Reported release
460
Status
CLOSED PER
PE
NoPE
HIPER
NoHIPER
Special Attention
NoSpecatt / Xsystem
Submitted date
2014-05-21
Closed date
2014-05-30
Last modified date
2014-05-30
APAR is sysrouted FROM one or more of the following:
APAR is sysrouted TO one or more of the following:
Fix information
Fixed component name
STR CD FOR WIND
Fixed component ID
5725C9908
Applicable component levels
Document Information
Modified date:
01 September 2023