IBM Support

OA66229: TRUSTED REPORT INCORRECTLY ADDS 40 TO PRIORITY CAUSING JESNEWS TO BE REPORTED AS NON-COMPLIANT

A fix is available

Subscribe

You can track all active APARs for this component.

 

APAR status

  • Closed as program error.

Error description

  • Trusted report incorrectly adds 40 to priority causing JESNEWS
    to be reported as non-compliant
    
    Missing NO_EXPLOIT flag causes the priority to increase by 40
    for the undefined user when there is no actual exploit.
    

Local fix

  • N/A
    

Problem summary

  • ****************************************************************
    * USERS AFFECTED: Users of zSecure Audit exploiting the        *
    *                 JJencryAll, JJjclassAll, and ReadJS2News     *
    *                 sensitivity types.                           *
    ****************************************************************
    * PROBLEM DESCRIPTION: zSecure Audit might report incorrect    *
    *                      audit priority for the JJencryAll,      *
    *                      JJjclassAll, and ReadJS2News            *
    *                      sensitivity types.                      *
    ****************************************************************
    * RECOMMENDATION: Apply the PTF provided.                      *
    ****************************************************************
    Depending on the UACC setting zSecure Audit can incorrectly
    report a minimum audit priority of 41 instead of the intended 1
    for the JJencryAll, JJjclassAll, and ReadJS2News sensitivity
    types.
    

Problem conclusion

  • zSecure Audit has been modified so that it properly assigns the
    correct audit priority.
    

Temporary fix

Comments

APAR Information

  • APAR number

    OA66229

  • Reported component name

    ZSEC BASE,ADMIN

  • Reported component ID

    5655T0100

  • Reported release

    250

  • Status

    CLOSED PER

  • PE

    NoPE

  • HIPER

    NoHIPER

  • Special Attention

    NoSpecatt / Xsystem

  • Submitted date

    2024-03-07

  • Closed date

    2024-04-26

  • Last modified date

    2024-05-01

  • APAR is sysrouted FROM one or more of the following:

  • APAR is sysrouted TO one or more of the following:

    UJ95177

Modules/Macros

  • CKAGSENS CKASENR  GKRGSENS GKRSENR
    

Fix information

  • Fixed component name

    ZSEC BASE,ADMIN

  • Fixed component ID

    5655T0100

Applicable component levels

  • R310 PSY UJ95177

       UP24/04/30 P F404

Fix is available

  • Select the PTF appropriate for your component level. You will be required to sign in. Distribution on physical media is not available in all countries.

[{"Business Unit":{"code":"BU048","label":"IBM Software"},"Product":{"code":"SSPQTM","label":"IBM Security zSecure Admin"},"Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"250","Line of Business":{"code":"LOB24","label":"Security Software"}}]

Document Information

Modified date:
02 May 2024