IBM Support

IJ09183: VULNERABILITY TRENDING REPORTS CAN SOMETIMES BE BLANK

Subscribe to this APAR

By subscribing, you receive periodic emails alerting you to the status of the APAR, along with a link to the fix after it becomes available. You can track this item individually or track all items by product.

Notify me when this APAR changes.

Notify me when an APAR for this component changes.

 

APAR status

  • Closed as program error.

Error description

  • It has been identified that in some instances the quartz
    scheduler that controls the collection of trend data is not
    running and therefor no data is collected for the Vulnerability
    Trending Report.  The report generates successfully but is
    blank.
    This can occur when the Tomcat process ends abnormally leaving
    the file /storetmp/isQuartzRunning.tmp present.  Upon a Tomcat
    restart, the file is checked for and if present, tomcat
    believes that quartz is already in a running state when in some
    situations it might not be.
    

Local fix

  • Stop the Tomcat process:
    # systemctl stop tomcat
    Check that /storetmp/isQuartzRunning.tmp is not present (if it
    is, remove it) and then start the Tomcat process again.
    # systemctl start tomcat
    ***Note - The QRadar User Interface requires the Tomcat process
    to be in a running state and will be unavailable when required
    processes are not running.
    

Problem summary

  • This issue was fixed in QRadar QRM QVM release of 731 patch 7.
    

Problem conclusion

  • This issue was fixed in QRadar QRM QVM release of 731 patch 7.
    

Temporary fix

Comments

APAR Information

  • APAR number

    IJ09183

  • Reported component name

    QR VULNERABILIT

  • Reported component ID

    5725QVMSW

  • Reported release

    731

  • Status

    CLOSED PER

  • PE

    NoPE

  • HIPER

    NoHIPER

  • Special Attention

    NoSpecatt / Xsystem

  • Submitted date

    2018-09-17

  • Closed date

    2018-11-30

  • Last modified date

    2018-11-30

  • APAR is sysrouted FROM one or more of the following:

  • APAR is sysrouted TO one or more of the following:

Fix information

  • Fixed component name

    QR VULNERABILIT

  • Fixed component ID

    5725QVMSW

Applicable component levels

[{"Business Unit":{"code":"BU048","label":"IBM Software"}, "Product":{"code":"SSHLPS","label":"IBM Security QRadar Vulnerability Manager"},"Component":"","ARM Category":[],"Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"731","Edition":""}]

Document Information

Modified date:
30 November 2018