IBM Support

Dojo Toolkit update to address CVE-2014-8917

Download


Abstract

This is an updated version 1.4 and 1.5 IBM Dojo Toolkit to address a vulnerability found in the copy packaged with IBM Rational Application Developer for WebSphere Software.

Download Description

Table of Contents
Sections Description

The How critical is this fix section provides information related to the impact of this release to allow you to assess how your environment may be affected.

The Prerequisites section provides important information to review prior to the installation of this release.

The Installation instructions section provides the installation instructions necessary to apply this release into your environment.

The Download package section provides the direct link to obtain the download package for installation in your environment.

Prerequisites

Prerequisites include:

One of the following IBM Rational Application Developer for WebSphere Software versions must be installed:

An additional 45MB of disk space is required to extract the compressed Dojo files.

Back to top

Installation Instructions

Instructions to download and install the update from the compressed files

  1. Locate your existing Dojo installation folder in your projects; for example; Project/WebContent/dojo. To find your specific location, follow these instructions:
    1. Right-click on your Web project and select Properties
    2. Click on the Dojo Toolkit property page
    3. Look at the path specified in the Dojo Project Setup Summary section
  2. Backup your existing Dojo installation by renaming the folder to; for example, Project/WebContent/dojo.bak/
  3. Recreate the original Dojo installation folder; for example, Project/WebContent/dojo/
  4. Download the updated Dojo runtime from the link listed in the download package and save it to the Dojo installation folder from step 3
  5. Extract the compressed Dojo archive into your Dojo installation folder

Back to top

Download Package

Click the FC link below to download the updates from Fix Central.

For Dojo version 1.4 included with IBM Rational Application Developer for WebSphere Software Version 8.0.x or Version 8.5.x

  • On the Select Fixes page, select interim fix: Rational-dojo141-CVE-2014-8917-ifix (IBM Rational Application Developer Common Vulnerabilities and Exposures iFixes)

For Dojo version 1.5 included with IBM Rational Application Developer for WebSphere Software Version 8.5.x

  • On the Select Fixes page, select interim fix: Rational-dojo15-CVE-2014-8917-ifix (IBM Rational Application Developer Common Vulnerabilities and Exposures iFixes )

Back to top

How critical is this fix?

Impact Assessment
Impact Description

Corrective

This download provides an update for the versions 1.4 and 1.5 Dojo runtimes packaged with the product to address the vulnerability outlined in the following security bulletin:

Security Bulletin: A Security Vulnerability exists in the Dojo runtime that affects Rational Application Developer

Back to top

Click the link in the Download Options column:

On
[{"DNLabel":"Rational-dojo141-CVE-2014-8917-ifix","DNDate":"29 Apr 2015","DNLang":"English","DNSize":"1","DNPlat":{"label":"Windows","code":"PF033"},"DNURL":"http://www.ibm.com/support/fixcentral/swg/quickorder?parent=ibm%7ERational&product=ibm/Rational/IBM+Rational+Application+Developer+for+WebSphere+Software&release=8.0.4.3&platform=All&function=fixId&fixids=Rational-dojo141-CVE-2014-8917-ifix&includeSupers","DNURL_FTP":" ","DDURL":null},{"DNLabel":"Rational-dojo15-CVE-2014-8917-ifix","DNDate":"29 Apr 2015","DNLang":"English","DNSize":"1","DNPlat":{"label":"Windows","code":"PF033"},"DNURL":"http://www.ibm.com/support/fixcentral/swg/quickorder?parent=ibm%7ERational&product=ibm/Rational/IBM+Rational+Application+Developer+for+WebSphere+Software&release=8.0.4.3&platform=All&function=fixId&fixids=Rational-dojo15-CVE-2014-8917-ifix&includeSuperse","DNURL_FTP":" ","DDURL":null}]
[{"Product":{"code":"SSRTLW","label":"Rational Application Developer for WebSphere Software"},"Business Unit":{"code":"BU053","label":"Cloud & Data Platform"},"Component":"Web Tooling","Platform":[{"code":"PF016","label":"Linux"},{"code":"PF022","label":"OS X"},{"code":"PF033","label":"Windows"}],"Version":"8.0;8.0.1;8.0.2;8.0.3;8.0.4;8.0.4.1;8.0.4.2;8.0.4.3;8.5;8.5.1","Edition":"","Line of Business":{"code":"LOB45","label":"Automation"}},{"Product":{"code":"SSJVRK","label":"Rational Application Developer Standard Edition for WebSphere Software"},"Business Unit":{"code":"BU053","label":"Cloud & Data Platform"},"Component":" ","Platform":[{"code":"","label":""}],"Version":"","Edition":"","Line of Business":{"code":"LOB45","label":"Automation"}}]

Document Information

Modified date:
04 February 2020

UID

swg24039908

Page Feedback