Reported problems that are fixed in the IBM Cloud Pak for Multicloud Management Fix Pack 7
Review the following tables to see the reported problems that are fixed in this Fix Pack. To update IBM Cloud Pak for Multicloud Management to include these fixes, you must install, or upgrade, to the Fix Pack version 7.
- To install, you need to follow the same procedure for installing IBM Cloud Pak for Multicloud Management, but use the latest available installation packages. For more information, see:
- To upgrade to the Fix Pack 7 version, see instructions at Upgrading to Fix Pack 7.
Fixed customer fixes in the Fix Pack 7
| Issue | Category | Description |
|---|---|---|
| 23919 | Monitoring | ADV0072020/PVR0407490 Uplift Liberty to >= 23.0.0.4 or later |
| 21856 | Monitoring | PVR0318717/ADV0041344 Uplift nodeJS one of >= 12.22.9 or 14.18.3 or 16.13.2 or 17.3.1 |
| 23970 | Monitoring | PVR0391671/ADV0065829 Uplift Scalar to >= 2.13.9 |
| 23997 | Monitoring | ADV0066601/PVR0393639 Uplift jackson-databind to >= 2.13.4 |
| 24161 | Monitoring | Uplift netty.codec >= 4.1.86.Final |
| 24408 | Monitoring | Uplift Cassandra to >= 4.0.10 or 4.1.2 |
| 24417 | Monitoring | Uplift janino to > 3.1.9 |
| 24111 | Monitoring | Uplift Go to >= 1.19.9 or 1.20.4 |
Security fixes in the Fix Pack 7
| Issue | Category | Description |
|---|---|---|
| 24275 | Managed Services | Application-UI - uglify-js-3.4.10.tgz - CVE-2022-37598 |
| 23757 | Managed Services | Detected in yaml-1.10.2.tgz - CVE-2023-2251 |
| 24480 | Managed Services | Detected in golang.org/x/net-v0.0.0-20220722155237-a158d28d115b - CVE-2022-27664 |
| 24278 | Managed Services | Application-UI - decode-uri-component-0.2.0.tgz - CVE-2022-38900 |
| 24279 | Managed Services | Application-UI - html-minifier-3.5.16.tgz - CVE-2022-37620 |
| 24281 | Managed Services | Application-UI - dustjs-linkedin-2.7.5.tgz - CVE-2021-4264 |