Question & Answer
Question
Can Java be uninstalled without affecting the core Virtual I/O Server (VIOS) functions?
Cause
Want to remove old Java versions from the Virtual I/O Server in order to avoid frequent Java security updates.
Answer
Only Java versions that have reached End of Support (EoS) can be uninstalled from the Virtual I/O Server.
IBM Security Advisory
Java 5 has a security vulnerability and was removed from Virtual I/O Server 2.2.5 and later.
Java 6 has a security vulnerability and was removed from Virtual I/O Server 2.2.6 (new installs) and later.
It is possible that your Virtual I/O Server may still have these old Java versions installed if the fix pack process was used to update the Virtual I/O Server.
Java 5 is not required for version 2.2.5 and later. It can be safely removed without impacting Virtual I/O Server operations.
Java 6 is not required for version 2.2.6 and later. It can be safely removed without impacting Virtual I/O Server operations.
Removal of these versions of Java from the Virtual I/O Server is a supported operation.
Java 4 and Java 5 can be removed as follows:
/* For Java5 */
$ oem_setup_env
# installp -u -g Java5.sdk
$ oem_setup_env
# installp -u -g Java5.sdk
/* For Java4 */
$ oem_setup_env
# installp -u -g Java14.sdk
$ oem_setup_env
# installp -u -g Java14.sdk
Java 6
To remove Java 6 from VIOS 2.2.6, refer to IBM Java 6 and VIO Server Release 2.2.x.
Note: If Java 6 is installed on VIOS 2.2.5.20 or a lower 2.2.5 version, when Java 6 is uninstalled, it will uninstall some dependencies. The supported method to remove Java 6 from 2.2.5.00 thru 2.2.5.20 is to first update to 2.2.5.30 or 2.2.6, and then uninstall Java 6.
Java 7 and Java 8
Java 7 (default version for VIOS 2.2.6) and Java 8 (default version for VIOS 3.1) are required for VIOS core functions, such as PowerVC and HMC-managed environments, as well as VIOS part command.
Removing these Java versions from these VIOS levels is not supported.
Note: Starting with releases 2.2.6.51 and 3.1, IBM Java 7 can be removed from the Virtual I/O Server, refer to IBM Java 7 and VIO Server Release 3.1
It is supported to update Java 7 (on VIOS 2.2.6) and Java 8 (on VIOS 3.1) to address Java security vulnerabilities.
Java fixes are available for download on either one of the following websites:
- https://developer.ibm.com/javasdk/support/aix-download-service/ (Click 'Fix Info' on version you need)
- https://www.ibm.com/support/pages/ibm-java-aix-reference-service-information-and-download-guide
If you have a specific CVE#, refer to the URL below for the known security vulnerabilities that are fixed in different Service Refreshes of IBM Java releases:
https://developer.ibm.com/javasdk/support/aix-download-service/
https://developer.ibm.com/javasdk/support/security-vulnerabilities/ > Search for the CVE#
https://developer.ibm.com/javasdk/support/security-vulnerabilities/ > Search for the CVE#
Related Information
[{"Business Unit":{"code":"BU058","label":"IBM Infrastructure w\/TPS"},"Product":{"code":"SSPHKW","label":"PowerVM Virtual I\/O Server"},"Component":"","Platform":[{"code":"PF002","label":"AIX"}],"Version":"VIOS 2.2 and 3.1","Edition":"","Line of Business":{"code":"LOB57","label":"Power"}}]
Was this topic helpful?
Document Information
Modified date:
20 October 2021
UID
ibm11074588