IT18729: CUMULATIVE APAR FOR FIXES TO BE INCLUDED IN MQ HP NONSTOP FIXPACK 5.3.1.13

WebSphere MQ for HP NonStop Server V5.3.1 fix pack 5.3.1.13

APAR status

• Closed as documentation error.

Error description

• Cumulative APAR for fixes to be included in MQ HP Nonstop
  fixpack 5.3.1.13
  

Local fix

Problem summary

• APAR IT18767 - FixPack V5.3.1.12 introduced a regression which
                 caused unthreaded LQMAs to terminate unexpectedly
                 during startup. This has been fixed with this
                 release.
  APAR IT18769 - Within a threaded environment the name resolution
                 of a starting remote channel could cause delays.
                 This has been changed as such that the name
                 resolution is done in a more thread friendly
                 manner.
  APAR IT18770 - In rare cases a racing condition during LQMA
                 startup could cause a MQCONN request to fail with
                 RC 2195. This was caused due the starting agent
                 sending its registration request before the
                 Execution Controller has finished the creation
                 process. The request is then rejected since the
                 Execution Controller does not accept requests by
                 unknown agents. This has been fixed.
  APAR IT18593 - OSS environment variables which contain '_' were
                 not usable in the Guardian environment. This has
                 been changed as such that '_' can be substituted
                 with '¬' in a PARAM and will be correctly
                 interpreted.
  APAR IT18625 - SSL support has been changed to accommodate the
                 changes done by the latest OpenSSL update. This
                 offers an alternative way of SSL configurations
                 on HP NonStop, based on the procedure used on
                 IBM MQ for other platforms.
                 This update deprecates cipherspecs
                 TLS_RSA_WITH_DES_CBC_SHA,TLS_RSA_WITH_NULL_SHA256
                 and TLS_RSA_WITH_3DES_EDE_CBC_SHA since they are
                 considered weak (see SSLUpdate.pdf).
  APAR IT18692 - OpenSSL library update to version 1.0.2j.
                 Mitigation for:
                 Fixed handling of OCSP Status Request extension
                 (CVE-2016-6304),
                 Prevention of possible out of bounds write
                 (CVE-2016-2182),
                 Refined limit checking preventing undefined
                 behavior(CVE-2016-2177),
                 Added missing length checks, preventing DoS risk
                 (CVE-2016-6306),
                 CRL sanity check (CVE-2016-7052).
  

Problem conclusion

• WMQ V5.3.1.13 For HP NonStop Server FixPack
  

Temporary fix

Comments

APAR Information

• APAR is sysrouted FROM one or more of the following:

• APAR is sysrouted TO one or more of the following:

Fix information

Applicable component levels