Fix Readme
Abstract
IBM MQ provides regular updates containing new function and fixes. The following contains lists of available fixes for IBM MQ 9.3 Continuous Delivery (CD) releases, and CD Cumulative Security Updates, with the most recent release or update at the top.
Content
Release type | Release date | End of defect support | Total APARs | Security APARs | HIPER APARs | |
IBM MQ 9.3.5.2 (Appliance Only) | Cumulative Security Update for Appliance | 26 June 2024 | 28 Feb 2025 | 8 | 6 | 0 |
IBM MQ 9.3.5.1 | Cumulative Security Update | 26 Apr 2024 | 28 Feb 2025 | 7 | 4 | 1 |
IBM MQ 9.3.5.0 | Continuous Delivery release | 29 Feb 2024 | 28 Feb 2025 | 45 | 8 | 0 |
IBM MQ 9.3.4.1 | Cumulative Security Update | 14 Dec 2023 | 19 Oct 2024 | 6 | 4 | 0 |
IBM MQ 9.3.4.0 | Continuous Delivery release | 19 Oct 2023 | 19 Oct 2024 | 39 | 4 | 2 |
IBM MQ 9.3.3.1 | Cumulative Security Update | 31 Aug 2023 | 20 June 2024 | 4 | 3 | 0 |
IBM MQ 9.3.3.0 | Continuous Delivery release | 20 June 2023 | 20 June 2024 | 40 | 5 | 1 |
IBM MQ 9.3.2.1 | Cumulative Security Update | 27 Apr 2023 | 16 Feb 2024 | 6 | 5 | 0 |
IBM MQ 9.3.2.0 | Continuous Delivery release | 16 Feb 2023 | 16 Feb 2024 | 39 | 4 | 2 |
IBM MQ 9.3.1.1 | Cumulative Security Update | 26 Jan 2023 | 20 Oct 2023 | 13 | 7 | 1 |
IBM MQ 9.3.1.0 | Continuous Delivery release | 20 Oct 2022 | 20 Oct 2023 | 50 | 9 | 0 |
IBM MQ 9.3.0.0 | Initial release (both Continuous Delivery and LTS) | 23 Jun 2022* | Not announced | 56 | 45 | 7 |
* The listed release date applies to IBM MQ on distributed platforms. For the IBM MQ Appliance, see this statement of direction.
To view the fixes for MQ 9.3.0.x LTS Fix Packs and LTS Cumulative Security Updates, see Fix list for IBM MQ Version 9.3 LTS.
To download IBM MQ Fix and Refresh Packs follow this link: Recommended Fixes for IBM MQ
Vulnerability risk information for IBM MQ can be found at Security Bulletin for IBM WebSphere MQ
Example table
Security APAR | HIPER APAR | APAR |
Description
|
✓ | AB12345 |
Example of Security APAR: CVE-XXXX-XXXXX (security/integrity exposure) [CVSS base score 5.3]
|
|
✓ | ZY98765 |
Example of a HIPER APAR
|
IBM MQ 9.3.5.2 cumulative security update for Appliance
(Last modified: 26 June 2024)
Security APAR | HIPER APAR | APAR | Description |
✓ | IT45710 | IBM MQ Appliance CVE-2024-35116 [CVSS base score 5.9] | |
✓ | IT46058 | IBM MQ Appliance CVE-2024-22329, CVE-2024-22354 [CVSS base score 7] | |
✓ | IT46074 | IBM MQ Appliance CVE-2024-2511 [CVSS base score 3.7] | |
✓ | IT46075 | IBM MQ Appliance CVE-2024-29041 [CVSS base score 6.1] | |
✓ | IT46205 | IBM MQ Appliance CVE-2021-33631, CVE-2020-12762 and IBM MQ Appliance CVE-2023-2162, CVE-2024-28834, CVE-2023-1073, CVE-2023-1079, CVE-2023-1206, CVE-2023-4132, CVE-2023-5388, CVE-2023-45871, CVE-2023-6135 [CVSS base score 7.8] | |
✓ | IT46266 | IBM MQ Appliance CVE-2023-48795 [CVSS base score 5.9] | |
IT45984 | A new message to warn of support for FIPS 140-2 removal from MQ is displayed when using IBM JRE 8.0.8.25 or later. | ||
IT46168 | Thirdparty component updates for cumulative security update 9.3.5.2 |
IBM MQ 9.3.5.1 cumulative security update for Windows, UNIX®, IBM MQ Appliance
(Last modified: 26 April 2024)
Security APAR | HIPER APAR | APAR | Description |
✓ | IT45642 | IBM MQ Appliance CVE-2023-28466 [CVSS base score 6.2] | |
✓ | IT45643 | IBM MQ Appliance CVE-2024-0727 [CVSS base score 3.1] | |
✓ | IT45762 | IBM MQ CVE-2024-20952 and CVE-2023-33850 [CVSS base score 7.5] | |
✓ | IT45826 | IBM MQ CVE-2024-20952 [CVSS base score 7.5] | |
IT45618 | Thirdparty component updates for cumulative security update 9.3.5.1 | ||
IT45788 | Upgrade the JRE level for IBM MQ V9.x to Java 8.0.8.20 for AIX, Linux, and Windows | ||
✓ | IT45890 | IBMJCEPlusFIPS RSA FIPS 140-2 cipher suites have been removed inthe latest Java runtime shipped with IBM MQ |
IBM MQ 9.3.5.0 continuous delivery release for Windows, UNIX®, IBM MQ Appliance
(Last modified: 10 May 2024)
Security APAR | HIPER APAR | APAR | Description |
IT38647 | SIGSEGV in MQ application within function xcsReadEnvironment under libmqe.so | ||
IT41300 | strmqm with incorrect file permissions and ownership hangs during queue manager startup | ||
IT42974 | An MQ Managed File Transfer (MFT) agent reports a NullPointerException in its event log (output0.log) | ||
IT43410 | IBM MQ managed .Net client connecting to queue manager fails intermittently with MQ ERROR 2195 and 2009. | ||
IT44140 | MQ Classes for JMS can generate a SunCertPathBuilderException during a TLS handshake when using a non-IBM JRE. | ||
IT44235 | The runmqsc program fails with SIGSEGV when unexpected data is encountered in a PCF reply message | ||
IT44270 | IBM MQ MFT database logger fails to connect to DB2 with SQL30082N (reason 3) if it can't access the credentials file | ||
IT44410 | Queue manager fails to restart when inconsistent line endings are in an MQSC automatic configuration script | ||
IT44412 | Enhancements to the modver utility | ||
IT44414 | An improperly terminated MFT environment variable in an agent property value will cause the agent to restart. | ||
IT44419 | MQ Appliance might reload due to memory throttling. | ||
IT44421 | MQ Appliance 9.3: The web console access profile builder is missing MQ related resource types. | ||
IT44422 | When MFT Agent is started with -F option can see blank lines written to console/job control log. | ||
IT44499 | MQ JAVA/JMS trace fails due to java.lang.NumberFormatException | ||
IT44500 | MQ classes for Java threads deadlock when using TLS/SSL and performing a key reset | ||
IT44513 | dmpmqcfg on Windows might output a truncated username suffixed with an invalid character | ||
IT44567 | MFT agents generate FFDCs containing a NullPointerException, and monitors stop triggering, after upgrading to 9.3.0.10 | ||
IT44576 | MQ MFT message BFGTR0058I specifies a filename instead of a reason code. | ||
IT44606 | Memory leak in IBM MQ amqrmppa process when using MQIBindType=FASTPATH | ||
IT44621 | IBM MQ Appliance: setamschl command might inject invalid characters into a configuration file when the "-d" flag is used. | ||
IT44652 | Unable to connect to a remote queue manager using the MQConsole on Windows if the password contains a ! character | ||
IT44706 | IndexOutOfBoundsException can occur while logging a message to the transfer log, when source disposition of delete fails | ||
IT44707 | IBM MQ Explorer connection details panel for a remote queue manager does not display cipher if TLS 1.2 used | ||
IT44717 | Allow suppression of protocol error caused by v5 Java/JMS clients | ||
IT44731 | MQ appliance queue manager does not end as expected when stoppedby suspending the appliance and subsequently fails to start | ||
IT44790 | IBM MQ WebConsole may report a not authorized error when accessing z/OS Queue Managers | ||
IT44798 | A ICH408I error can occur after upgrading the WebSphere Liberty Profile used by the IBM MQ Console to 22.0.0.12 on z/OS | ||
IT44910 | MQ trace on server incorrectly captures user message data duringclient MQGET when using the "-d 0" flag on strmqtrc | ||
✓ | IT44954 | IBM MQ CVE-2023-47745 [CVSS Base score 6.2] | |
IT45020 | Using the IBM MQ Jakarta Resource Adapter IVT fails due to a missing WMQ_JAKARTA_IVT.war file | ||
✓ | IT45026 | IBM MQ CVE-2024-25016 and IBM MQ Appliance CVE-2024-25016 [CVSS base score 7.5] | |
IT45035 | MQ 9.2.4 or later client pub/sub app cannot consume messages after reconnecting following a connection break | ||
IT45060 | Managed File Transfer (MFT) agents report a BFGIO0076E errorwhen transferring data sets on extended attribute volumes | ||
IT45102 | Having a platform value which is NOT OS400/UNIX/WINDOWS in the ProtocolBridgeProperties.xml is ignored silently | ||
IT45106 | Add additional diagnostics to AT077013 atxAssociationRemove FDCs | ||
✓ | IT45110 | IBM MQ CVE-2024-25048 and IBM MQ CVE-2024-25048 [CVSS base score 7.5] | |
IT45128 | Increased memory usage after upgrading to MQ 9.3 | ||
IT45226 | MQ Appliance : HA control of a HA queue manager is in disabled state when it should be in enabled state | ||
✓ | IT45240 | IBM MQ CVE-2023-4218 [CVSS Base score 5] | |
✓ | IT45253 | IBM MQ CVE-2023-26159 and IBM MQ Appliance CVE-2023-26159 [CVSS base score 7.1] | |
✓ | IT45274 | IBM MQ CVE-2023-39976 [CVSS Base score 9.8] | |
✓ | IT45331 | IBM MQ CVE-2024-25015 [CVSS base score 7.5] | |
IT45343 | Kernel modules to enable support for RDQM on RHEL 9 kernel 5.14.0-362.18.1 | ||
✓ | IT45350 | IBM MQ CVE-2023-44487 [CVSS Base score 7.5] | |
IT45386 | MQ Appliance appliance sethagrp force migration(-f) not working if only secondary or replication interfaces unavailable |
IBM MQ 9.3.4.1 cumulative security update for Windows, UNIX®, IBM MQ Appliance
(Last modified: 14 December 2023)
Security APAR | HIPER APAR | APAR | Description |
✓ | IT44589 | IBM MQ Appliance CVE-2023-4807 [CVSS Base score 6.2] | |
✓ | IT44821 | IBM MQ Appliance CVE-2023-5072 and IBM MQ CVE-2023-5072 [CVSS Base score 7.5] | |
IT44881 | Thirdparty component updates for cumulative security update 9.3.4.1 | ||
✓ | IT44885 | IBM MQ Appliance CVE-2023-46177 [CVSS Base score 6.5] | |
IT44926 | Kernel modules to enable support for RDQM on RHEL 9.3 kernel 5.14.0-362.8.1 and RHEL 8.9 kernel 4.18.0-513.5.1 | ||
✓ | IT44961 | IBM MQ CVE-2023-22081, CVE-2023-5676 [CVSS Base score 5.3] |
IBM MQ 9.3.4.0 continuous delivery release for Windows, UNIX®, IBM MQ Appliance
(Last modified: July 2023)
Security APAR | HIPER APAR | APAR | Description |
IT34804 | Subscription messages are delivered out of sequence when using clustered pub/sub with multiple receiver channels | ||
IT40382 | High CPU usage for IBM MQ amqzlaa0 process | ||
IT40977 | IBM MQ create subscription fails with 'AMQ8135E: Not authorized' | ||
IT41430 | MQ appliance status command might incorrectly show reduced disk allocation | ||
✓ | ✓ | IT41871 | IBM MQ CVE-2023-45177 and IBM MQ Appliance CVE-2023-45177 [CVSS base score 5.3] |
IT41913 | Excessive FDC records with probe identifier XC805110 XRUQUERYCPU_QM XECL_W_PERFORMANCE_BOTTLENECK | ||
IT42341 | Attempting to restore a queue manager from a backup created withan older version of IBM MQ fails with error AMQ6546E. | ||
IT42462 | CRDATE and CRTIME fields of the SYSTEM.DEFAULT.SUB object are set to blank vales | ||
IT42550 | The SYSTEM.DEFAULT.SUB object disappeared and an FDC with probe identifier KN483002 was generated. | ||
IT42821 | XMS .NET Core applications return an invalid message payload if the message was sent by a Mainframe application | ||
IT42851 | Memory leak in the IBM MQ amqzlaa0 process | ||
IT43044 | MQ Appliance userrestore command fails with AMQ6650E when restoring a backup file that contains a group with many users | ||
IT43084 | A 2085 or 3015 error is received when the IBM MQ Console or other application uses the Inquire Queue administrative command | ||
IT43336 | MQ classes for Java API throws MQRC 2111 'MQRC_SOURCE_CCSID_ERROR' when getting a message. | ||
IT43663 | A duplicate message might be intermittently generated by the queue manager on Windows | ||
IT43679 | IBM MQ REST API removes the Carriage Return (CR) character from messages. | ||
IT43691 | MFT PBA ABENDs with IndexOutOfBoundException if SFTP server returns a filesize of -1 | ||
IT43740 | MQ Bridge to SalesForce reports NullPointerExceptions when reconnecting to Salesforce | ||
IT43790 | MQ 9.2 always outputs INDOUBT(YES) in Saved channel status, evenwhen the channel is not indoubt | ||
IT43806 | MFT resource monitor fails to re-trigger on an item that has been successfully processed and is then manually put back | ||
IT43854 | A MQ classes for JMS application reaches a deadlock condition when comparing MQDestination objects | ||
IT43872 | MQ appliance generates errors related to non MQ objects(b2bp andapigw) when querying SNMP MIB | ||
IT44083 | Diagnostic improvements in FDC XC805110 with error code xecL_W_PERFORMANCE_BOTTLENECK | ||
IT44089 | DISPLAY CHSTATUS(*) SAVED returned "AMQ8135E: Not authorized" for auto-defined CLUSSDR channel status records | ||
IT44105 | MQ Jakarta Resource Adapter references incorrect classes leadingto NoClassDefFoundError | ||
IT44111 | In the MQ web console in Spanish, rename the button for 'CLEAR QUEUE' to be 'VACIAR COLA' | ||
IT44184 | Uninstalling mqm.web.rte fileset on AIX may report non-zero exitstatus error even though directory has been removed | ||
IT44203 | The DRDB and Pacemaker Linux RPM packages in the MQ installationmedia have inconsistent file mode permissions | ||
IT44252 | IBM MQ Appliance M2003 RAID battery high temperature warning canbe given incorrectly at 40 degrees C | ||
IT44258 | Managed File Transfer (MFT) agent stops unexpectedly due to a NullPointerException when doing a message-to-file transfer | ||
IT44261 | Restrict number of lines output from dspmqtrc saying unrecognised hookID | ||
IT44335 | Migration of IBM MQ Appliance HA queue manager from MQ 9.2 to 9.3 fails if the queue manager has been manually stopped | ||
IT44457 | The com.ibm.mq.MQXR.Workers property is not honored by the AMQP listener | ||
IT44498 | Unable to specify a TLS 1.2 cipher when using the MQ Explorer tocreate a remote connection to a queue maanger | ||
✓ | ✓ | IT44585 | IBM MQ CVE-2023-38039 [CVSS base score 7.5] |
✓ | IT44623 | IBM MQ CVE-2023-22045 [CVSS base score 3.7] | |
✓ | IT44672 | IBM MQ Appliance CVE-2023-46176 [CVSS base score 6.7] | |
IT44858 | MQ Appliance 9.3 LTS RBM "read" access profile for the mgmt RESTAPI is insufficient to grant read access | ||
IT45202 | MQ appliance : Failure in a network interface card might cause adjacent NIC to go down incorrectly. |
IBM MQ 9.3.3.1 cumulative security update for Windows, UNIX®, IBM MQ Appliance
(Last modified: 31 August 2023)
Security APAR | HIPER APAR | APAR | Description |
✓ | IT43897 | IBM MQ Appliance CVE-2023-2650 (Appliance OpenSSL) [CVSS base score 7.5] | |
✓ | IT44043 | IBM MQ CVE-2023-21930, CVE-2023-21967, CVE-2023-21939, CVE-2023-21938 and MQ Appliance CVE-2023-21930, CVE-2023-21967 [CVSS base score 7.4] | |
IT44061 | Thirdparty component updates for cumulative security update 9.3.3.1 | ||
✓ | SE80122 | IBM MQ CVE-2023-2650 for OpenSSL (MacOS ) [CVSS base score 7.5] |
IBM MQ 9.3.3.0 continuous delivery release for Windows, UNIX®, IBM MQ Appliance
(Last modified: Aug 2024)
Security APAR | HIPER APAR | APAR | Description |
IT36555 | AMQ9635 error message displays arbitrary characters at the end of the CipherSpec in the MQ queue manager error logs | ||
IT37481 | Poor performance observed with MQIPT under load when running with Trace=1 or higher in the mqipt.conf file | ||
IT37483 | High CPU usage reported for an agent process amqzlaa0 when ending the MQ queue manager | ||
IT37500 | FDCs with ProbeID 'CO609020' generated by queue manager for a SVRCONN channel with SHARECNV(1) | ||
IT37842 | IBM MQ AMQP channel does not start automatically with AMQP service after upgrade | ||
IT38860 | IBM MQ not delivering message to waiting consumers when MQ detects a chosenconsumer ended when delivering message. | ||
IT39743 | IBM MQ process amqpcsea ended unexpectedly with insufficient diagnostics | ||
IT39805 | Queue manager generates FDC with Probe Id XC035048, Component xcsCreateThread and Comment1 "Tid overflow!". | ||
IT40337 | IBM MQ full repository queue manager reported errors AMQ9435E and 2085 (MQRC_UNKNOWN_OBJECT_NAME) | ||
IT40928 | Unable to put a message to a queue when using a CCSID 943 JVM using the MQ classes for Java | ||
IT41525 | REST API parameter ibm-mq-usr is not an option in the rest API version 3 discovery feature | ||
IT42128 | AMS protected messages lose message properties when involved with SYSTEM.PROTECTION.ERROR.QUEUE | ||
IT42506 | MQ classes for Jakarta application throws an AssertionError using the Connection/Session toString() | ||
IT42798 | First failure data (FDC) records with probe OP233170 from trcFCloseFn written when MQ trace filesystem is full | ||
IT42810 | Many ZM013000 ztmTidyUpXASessions trcE_UNEXPECTED_RM_ERROR FDCs from MQ code in application | ||
✓ | IT42945 | IBM MQ CVE-2023-28513 and IBM MQ Appliance CVE-2023-28513 [CVSS base score 5.9] | |
IT42975 | Possibility of memory exception in IBM MQ diagnostic routine | ||
✓ | IT43061 | Executing runmqras against an RDQM queue manager as root may cause a kernel crash | |
IT43183 | IBM MQ resource adapter leaks LocalServer objects if an MDB's ejbCreate() method throws an exception | ||
IT43316 | MQOPEN incorrectly returns 2189 MQRC_CLUSTER_RESOLUTION_ERROR for a queue that is not known in the cluster | ||
IT43374 | IBM MQ Appliance users with Group defined access are not able toperform certain actions under top level directories in web UI. | ||
IT43387 | IBM MQ Appliance incorrectly displays NFS static mount configuration page | ||
IT43454 | Kernel modules to enable support for RDQM on RHEL 9.1 kernel level 5.14.0-162.22.2 | ||
IT43539 | Message rejected by Qpid Proton client not handled by AMQP Service | ||
IT43543 | MQ Explorer is unable to put get or browse messages on a queue protected by an AMS Confident | ||
IT43646 | Clustering recovery and diagnostic improvements | ||
IT43650 | Channel fails with AMQ9620 gsk_secure_soc_init error 12 when FIPS is enabled and TLS_CHACHA20_POLY1305_SHA256 is used | ||
✓ | IT43654 | Queue manager might generate FDC RN189010 with error code rrcE_FILE_CORRUPT after applying fix of APAR IT42194. | |
IT43702 | MQ classes for JMS API threads may deadlock when the queue manager is configured to use SSLRKEYC | ||
✓ | IT43704 | IBM MQ Appliance CVE-2022-48303 [CVSS base score 7.8] | |
✓ | IT43717 | IBM MQ CVE-2023-24998 and IBM MQ Appliance CVE-2023-24998 [CVSS base score 7.5] | |
IT43724 | Kernel modules to enable support for RDQM on RHEL 9.2 kernel level 5.14.0-284.11.1 | ||
✓ | IT43737 | IBM MQ CVE-2023-26048 and CVE-2023-26049 [CVSS base score 5.3] | |
IT43770 | Kernel modules to enable support for RDQM on RHEL 8.8 kernel level 4.18.0-477.10.1 | ||
✓ | IT43802 | IBM MQ CVE-2023-32342 and IBM MQ Appliance CVE-2023-32342 [CVSS base score 7.5] | |
IT44268 | Following an HA reconnection, the queue manager no longer runs on the preferred node | ||
IT44458 | amqmfsck or crtmqm might fail unexpectedly on NFS file system on AIX | ||
IT44741 | Unable to start or delete channel after scratchpad damage | ||
IT45686 | Queue manager fails to start if damaged object is not recoverable | ||
PH51546 | Managed File Transfer (MFT) agent ABENDs with a B37-04 condition while transferring to a sequential data set. |
IBM MQ 9.3.2.1 cumulative security update for Windows, UNIX®, IBM MQ Appliance
(Last modified: 27 Apr 2023)
Security APAR | HIPER APAR | APAR | Description |
IT42765 | Third party component updates for cumulative security update 9.3.2.1 | ||
✓ | IT43177 | IBM MQ Appliance CVE-2022-4304, CVE-2023-0215, CVE-2023-0286, CVE-2022-4450 [CVSS base scores 7.5 - 8.2] | |
✓ | IT43273 | IBM MQ CVE-2023-27535, CVE-2023-23916 [CVSS base scores 7.5 - 9.1] | |
✓ | IT43335 | IBM MQ CVE-2023-28950 [CVSS base score 5.1] | |
✓ | IT43377 | IBM MQ Appliance CVE-2021-46848, CVE-2022-43680, CVE-2022-40303, CVE-2022-40304 [CVSS base scores 7.5 - 9.1] | |
✓ | IT43381 | IBM MQ CVE-2023-26285 and IBM MQ Appliance CVE-2023-26285 [CVSS base score 5.9] |
IBM MQ 9.3.2.0 continuous delivery release for Windows, UNIX®, IBM MQ Appliance
(Last modified: 10 May 2024)
Security APAR | HIPER APAR | APAR | Description |
IT35334 | MQRC 2019 'MQRC_HOBJ_ERROR' when opening a queue using the MQ classes for Java | ||
IT36749 | In MQ 9.2 .Net client throws System.ArgumentException Exception when using MQGET with waitInterval | ||
IT36965 | System.NullReferenceException occurs when .Net client tries to browse multiple messages. | ||
IT38726 | IBM MQ process amqzmuc0 may consume 100% CPU | ||
IT39332 | MQ appliance sethaint command does not notify the user about queue manager restart when floating IP is added | ||
IT39358 | SSL protocol exception reported by IBM MQ Java/JMS clients during TLS handshake when qmgr keystore has many certificates | ||
IT39803 | XMS sample programs SimpleConsumer and SimpleProducer do not honor the SSL key repository parameter | ||
✓ | IT40017 | IBM MQ channels might go unresponsive with high CPU usage in channel process if channel synchronization record is corrupted | |
IT40554 | Memory leak in IBM MQ amqzlaa0 process after MQRC_SYNCPOINT_LIMIT_REACHED is encountered | ||
IT40838 | MQ client unable to connect to an IBM MQ version 8.0 or later queue manager when using SSPI security exit | ||
IT41035 | Application terminates with FDC XC130003 due to memory exception(SIGSEGV) in TraceEntry in mqccred exit | ||
IT41272 | Redistributable Java client incorrectly contains JMSAdmin tool | ||
IT41530 | The dmpmqmsg utility is not able to browse an AMS-protected queue containing a message larger than 6700 bytes | ||
IT41697 | MQ 9.3 XMS .Net client hangs on dispose of ISession | ||
IT41904 | FDC record with Probe ID CO373099 does not include the peer connection name in the header | ||
IT42017 | Managed File Transfer (MFT) agent shuts down due to reason code 2017 when using the multiple channel functionality | ||
IT42142 | Error message AMQ9575 is incorrect for non-English languages | ||
IT42173 | MQCONNX fails with MQRC_SSL_INITIALIZATION_ERROR (2393) if multiple hostnames and SSLPeerName are specified | ||
✓ | IT42194 | IBM MQ CVE-2022-40237 [CVSS base score 6.5] | |
IT42253 | Deadlock occurs if trace is enabled on a managed file transfer (MFT) 9.3.0.1 agent that has resource monitors defined | ||
IT42294 | Broken JMS connections remain in JEE connection pools if an enterprise application registers its own ExceptionListener | ||
IT42321 | MQ command ffstsummary.exe fails to read FDC files more than 2 GB in size | ||
IT42339 | Bad data arrived at MQ's socket in an MQ client application, butthe required FDC was not written | ||
✓ | IT42343 | IBM MQ CVE-2022-3510, CVE-2022-3509 and IBM MQ CVE-2022-1471, CVE-2022-41854 and IBM MQ CVE-2022-3171 [CVSS base score 8.3] | |
IT42355 | MQ classes for JMS applications become blocked while creating a JMS Session when using automatic client reconnection | ||
IT42384 | MQ-JMS application hangs when consuming a message from a v6.0 queue manager | ||
IT42420 | IBM MQ Appliance RAID battery high temperature warning can be given incorrectly at 40 degrees C | ||
IT42425 | MQ Telemetry fails to start and reports an AMQXR0008E containing reason code 2059 (MQRC_Q_MGR_NOT_AVAILABLE) | ||
IT42435 | ZLIBFAST channel compression results in failures with a JMS MessageConsumer | ||
IT42442 | The Japanese characters in the MQ 9.3.0.1 fix pack installer menu screen are incorrect. | ||
IT42445 | Kernel modules to enable support for RDQM on RHEL 8.7 (Kernel level 4.18.0-425) | ||
IT42518 | Kernel modules to enable support for RDQM 9.3.1.0 on RHEL 9.1 (kernel level 5.14.0-162) | ||
IT42593 | IBM MQ appliance commands do not notify the user about the restart of the queue manager. | ||
IT42661 | When a RQSTR channel is started twice, a second RQSTR instance is incorrectly started with status "INITIALIZING" | ||
✓ | ✓ | IT42674 | IBM MQ CVE-2022-43919 and IBM MQ Appliance CVE-2022-43919 [CVSS base score 5.3] |
✓ | IT42812 | IBM MQ CVE-2023-22874 [CVSS base score 5.5] | |
IT42895 | MQ Console: Unable to sort queues correctly by the "Data Transferred" property. | ||
IT42917 | MQ Console: The "Clear Queue" option is incorrectly labelled "Delete Queue" in the German language | ||
IT45980 | Unable to access Crypto Configuration sections in the MQ Appliance webUI. |
IBM MQ 9.3.1.1 cumulative security update for Windows, UNIX®, IBM MQ Appliance
(Last modified: Jan 2024)
Security APAR | HIPER APAR | APAR | Description |
✓ | IT41997 | IBM MQ Appliance CVE-2022-40230 [CVSS base score 5] | |
✓ | IT42098 | IBM MQ Appliance CVE-2022-1012, CVE-2021-45485, CVE-2021-45486 [CVSS base score 6.2 & 8.2] | |
✓ | IT42204 | IBM MQ CVE-2022-42436 [CVSS base score 4] | |
IT42330 | Update FasterXML (Jackson library) to the latest version | ||
✓ | IT42344 | IBM MQ CVE-2022-42003, CVE-2022-42004 [CVSS base score 6.2] | |
IT42418 | Update the WebSphere Liberty Profile to 22.0.0.12 | ||
IT42456 | Update the IBM JRE to level 8.0.7.20 (AIX, Linux, Solaris, and Windows) for IBM MQ | ||
✓ | IT42457 | IBM MQ CVE-2022-21626, CVE-2022-21624 and MQ Appliance CVE-2022-21626 [CVSS base score 5.3] | |
✓ | IT42613 | IBM MQ: CVE-2022-43902; IBM MQ Appliance: CVE-2022-43902 [CVSS base score 6.5] | |
✓ | IT42724 | IBM MQ CVE-2021-37533 [CVSS base score 6.5] | |
IT42725 | Update Apache Commons Net level to 3.9.0 for IBM MQ | ||
✓ | IT42853 | MQ appliance M2002 migration from 9.2 to 9.3 fails if a floating IP address is assigned to a subset of configured High Availability queue managers |
IBM MQ 9.3.1.0 continuous delivery release for Windows, UNIX®, IBM MQ Appliance
(Last modified: Aug 2024)
Security APAR | HIPER APAR | APAR | Description |
✓ | IT33206 | IBM MQ CVE-2022-31772 (security/integrity exposure) [CVSS base score 5.3] | |
IT34707 | MQ classes for Java generated MQSTR format messages with messageproperties are always encoded in CCSID 1208 | ||
IT35513 | The IBM MQ managed .Net client does not use the certificateLabelattribute specified in a CCDT | ||
IT35772 | The Message BFGUB0068E does not reflect the error of MFT data directory doesn't have write permission | ||
IT36231 | IBM MQ XMS exception listener is only triggered on Connection broken exceptions | ||
IT37148 | FDCs with probe identifiers RM632001/RM632002 are generated while running an IBM MQ C client application | ||
IT37726 | IBM MQ AMQP channel stops due to an OutOfMemoryError, and an FDC containing probe identifier XR10072014 is generated | ||
IT38101 | Unable to display remote queue manager properties in MQ Explorer after setting SSL CipherSpec to an ANY* value. | ||
IT38527 | MQTT component MQXR service produces an unnecessary Java dump aspart of the FFST generation. | ||
IT38770 | fteListMonitors can display monitor details twice if the monitor configuration is being updated when it is run | ||
IT39409 | IBM MQ shows incorrect status when channel status is displayed with CONNAME('IP(PORT)') | ||
IT39802 | MQ-Java/JMS application appears to hang when connecting to a non-responsive queue manager | ||
IT39850 | MQ managed .NET client using uppercase certificatelabel via hashtable or MQEnvironment property fails. | ||
IT39919 | MQ resource adapter logs large MQJCA4023 messages if an activation specification fails to connect to a queue manager | ||
IT39972 | MQ Classes for Java/MQ JMS for Java with trace enabled can result in unexpected increased indentation for methods | ||
IT40168 | fteDeleteAgent with the -f option does not remove resource monitor publications from coordination queue manager | ||
IT40296 | The DISPLAY CHSTATUS command incorrectly provides output for inactive channels | ||
IT40502 | Security exit user data (SCYDATA) is not passed to a security exit when using the MQ classes for Java and a CCDT | ||
IT40532 | Managed File Transfer destination agent stops and generates an ABEND file containing a java.nio.file.InvalidPathException | ||
IT40577 | AMQP clients intermittently stop receiving messages from the IBM MQ AMQP service after upgrading to MQ 9.2.0.4 | ||
IT40648 | FDCs generated in user application with ProbeId ZT424000 from component zutLookupRelease | ||
IT40693 | IBM MQ generates FDC with probe identifier KN678000 for SET CHLAUTH command | ||
IT40776 | NullPointerException observed when a security exit is being called concurrently on multiple threads. | ||
IT40791 | IBM MQ Classes for JMS - Messages are not going to the backout queue after the backout threshold is hit. | ||
IT40956 | DISPLAY CHSTATUS for a SDR channel contained LONGRTS(0) SHORTRTS(0) but the channel had not retried many times | ||
IT41012 | IBM MQ agent process (amqzlaa0) terminates unexpectedly in queuefull scenario | ||
IT41229 | MQ Java components incorrectly group Simplified Chinese CCSIDs936 and 1386 together as equivalent encodings | ||
IT41233 | IBM MQ 9.3 installer incorrectly states that Windows 2016 is a valid target operating system | ||
IT41242 | MFT Audit Information can incorrectly report DESTINATION_FILE_SIZE as -1 for a recovered transfer request | ||
IT41323 | Partial repository queue manager prematurely reports AMQ9456 warning or erroneous MQRC_UNKNOWN_OBJECT (2085) | ||
IT41354 | IBM MQ 9.2 client might report a memory segmentation fault when JSON format CCDT file used along with TLS | ||
IT41408 | Invalid queue manager name and PUTAPPLNAME in channel statisticsmessages | ||
IT41422 | IBM MQ for Linux writes FDC from 32-bit application reporting XC035011 and errno 22 from pthread_create | ||
IT41482 | MQ Console is missing certain attributes in the queue storage panel. | ||
✓ | IT41495 | CVE-2022-32206 (security/integrity exposure) [CVSS base score 4.3] | |
✓ | IT41568 | CVE-2022-24329 (security/integrity exposure) [CVSS base score 5.3] | |
✓ | IT41579 | IBM MQ CVE-2022-22476 and IBM MQ Appliance CVE-2022-22476 (security/integrity exposure) [CVSS base score 5] | |
IT41603 | Deadlock occurs if a Managed File Transfer (MFT) agent that has resource monitors defined is started with trace enabled | ||
IT41647 | IBM MQ generates FDC with probe identifier RM040001 and error code zrcI_NOT_FOUND from rriFreeSess function | ||
✓ | IT41682 | CVE-2022-31774, CVE-2022-31775, CVE-2022-32750 (security/integrity exposure) [CVSS base score 5.4] | |
IT41777 | IBM MQ-RA activation specification running in non-ASF mode in WebSphere Application Server pauses prematurely | ||
IT41985 | The character set used in the error logs for an RDQM Queue Manager changes depending on how the queue manager is started | ||
✓ | IT42021 | IBM MQ CVE-2022-34165 & IBM MQ Appliance CVE-2022-34165 [CVSS base score 5.4] | |
✓ | IT42100 | IBM MQ CVE-2021-2163 and IBM MQ CVE-2023-30441 and IBM MQ Appliance CVE-2023-30441 [CVSS base score 7.5] | |
✓ | IT42209 | IBM MQ CVE-2022-24839 [CVSS base score 7.5] | |
✓ | IT42280 | IBM MQ CVE-2022-25857 [CVSS base score 7.5] | |
✓ | IT42342 | IBM MQ CVE-2022-38749, CVE-2022-38750, CVE-2022-38751, CVE-2022-38752 [CVSS base score 5.3] | |
IT43505 | The amqsmon sample program provide with MQ does not recognize the -qm flag. | ||
IT44532 | The runmqicred command reports "error while loading shared libraries: libmqml_r.so" | ||
PH53491 | When using com.ibm.msg.client.osgi.wmq.prereq_9.3.0.3.jar file "The bundle class path entry "jta.jar" could not be found" occurs |
IBM MQ 9.3.0.0 Initial release (both Continuous Delivery and LTS) for Windows, UNIX, IBM i, IBM MQ Appliance
(Last modified: 4 Oct 2022)
Security APAR | HIPER APAR | APAR | Description |
IJ20591 | Managed .NET SSL application making MQGET calls unexpectedly receives MQRC_CONNECTION_BROKEN when running in .NET Core | ||
IT33130 | IBM MQ explorer remote connection fails with SSL and FIPS enabled | ||
✓ | IT33299 | When applying a fix pack, the "web\installations" folder will be deleted if the "Installation Path" and "Data Path" are the same. | |
IT33972 | IBM MQ client connection fails with data conversion error AMQ9541E | ||
IT34490 | Unnecessary debug output written to the IBM MQ Appliance webui messages.log file when trace is not enabled | ||
IT35023 | After applying a fix pack to a Developer Edition installation on Linux, dspmqver incorrectly reports production license | ||
✓ | IT35252 | Duplicate entry in DRBD resource file causes HA replication to be stopped in IBM MQ appliance. | |
IT35254 | Managed file transfer agent generates an FDC and terminates when multiple messages are processed having the same message id. | ||
IT35736 | FDCs ZF089191 on queue manager startup or ZF177092 on dmpmqaut | ||
IT36755 | Intermittent problem where a duplicate message ID is generated by the queue manager. | ||
IT36805 | IBM MQ trace not generated after failure in opening trace files | ||
IT37008 | Message data conversion from CCSID 1390/1399 TO 943 fails with error AMQ6047: Conversion not supported | ||
IT37199 | Failure data capture (FDC) record header contains the first line from mqpatch.dat but it should be the last line | ||
IT37324 | Applying fix pack from start menu fails with error "Windows cannot access the specified device, path, or file" | ||
IT37503 | The amqsmon sample utility reports error when using -l option | ||
IT37969 | The "ValidateAuth= No" qm.ini tuning parameter is not honored when AMQERR01.LOG is rolled over | ||
IT38478 | In IBM MQ 9105, the output message of dmpmqaut with -p and -e optionwas misleading when authority is defined at the group level. | ||
IT38577 | IBM MQ Telemetry channel status shows incorrect values for the indoubtout and pending attributes. | ||
IT38733 | A "STOP CHANNEL" request may fail when the channel is configured with multiple addresses. | ||
IT38761 | On the IBM MQ Console, not all IBM documentation links are working. | ||
IT38793 | IBM MQ 9.2 fix packs do not update the Bridge to Salesforce prereq .jar files | ||
IT39029 | MQCONN fails in application using isolated bindings. FDC probe ZC037020, component zcsAllocateAgent is written | ||
IT39356 | Many AT041015 atxStart arcE_XAER_PROTO FDCs but the error is in the external TM software | ||
IT39506 | FDC with probe ID XC006001 with xcsFreeMemFn and XECS_I_PRIVATE_MEMORY_ERROR | ||
IT39511 | An amqrmppa process terminates unexpectedly with XC027005 FDC, clients receive MQRC_CONNECTION_BROKEN(2009) | ||
✓ | IT39514 | Application crashes due to sigsegv when connecting to default queue manager | |
IT39567 | Fix Pack 9.2.0.4 cannot be installed with rpm/yum if the product license has not yet been accepted | ||
IT39579 | FDCs XC721050 and ZS142010 generated from the amqiclen process when uninstalling IBM MQ | ||
✓ | IT39620 | Queue manager fails to start with FDC XY465009 from component xcsCreateSimplePipe | |
IT39640 | Agents running queue resource monitors hang after being disconnected from their agent queue manager | ||
IT39745 | IBM MQ Java client using SSLPEER receiving a certificate with SERIALNUMBER in the DN reports MQRC_SSL_PEER_NAME_ERROR (2399) | ||
IT39751 | Partial repository queue managers erroneously report AMQ9456 for remote queue managers | ||
IT39773 | IBM MQ appliance might reload when querying status of queue manager or system resources | ||
IT39859 | Clustered QALIAS/QREMOTE incorrectly republished as changed following queue manager restart | ||
IT39876 | IBM MQ client connection on Linux causes internal error (Probe ID ZD061030) | ||
IT39878 | AMQ7077E error is reported while removing RDQM feature from a 9.2 fix pack level. | ||
IT39927 | "Monitor Started" events are missing from the IBM MQ Managed File Transfer resource monitor event log (resmonevent0.log) | ||
IT39940 | IBM MQ Explorer adds an additional "/" to topic string when creatingSubscription with empty topic string | ||
✓ | IT40001 | Insufficient checking of queue manager name collision when defining an HA QM on the IBM MQ Appliance | |
IT40062 | dmpmqcfg reports an incorrect number of returned objects when used with a z/OS queue manager | ||
✓ | IT40182 | IBM MQ Appliance CVE-2022-22355 and CVE-2022-22356 [CVSS base score 5.3] | |
✓ | IT40192 | IBM MQ Appliance CVE-2021-35550 , IBM MQ Appliance CVE-2021-35603, [CVSS base score 5.9] | |
✓ | IT40254 | Slowdown in distributed queuing and high CPU usage on the receiver queue manager after applying fix for the APAR IT35383 | |
✓ | IT40352 | IBM MQ Appliance CVE-2021-38910 [CVSS base score 3.7] | |
IT40418 | Agent incorrectly deletes all of the messages from a source queue at the end of a message-to-file transfer. | ||
✓ | IT40453 | IBM MQ CVE-2020-36518 [CVSS base score 5.9] | |
✓ | IT40513 | IBM MQ CVE-2018-25032 and IBM MQ Appliance CVE-2018-25032 (security/integrity exposure) [CVSS base score 7.5] | |
IT40598 | Update the version of Fabric Gateway, Jetty, and SLF4J supplied with IBM MQ 9.2 LTS for the IBM MQ bridge to Salesforce. | ||
IT40628 | HA secondary unable to connect to DR secondary when HA primary powered off | ||
✓ | IT40925 | IBM MQ 9.2.3: Migrated Queue Manager ends unexpectedly when issuing a remote command via runmqsc in client mode. | |
✓ | IT40979 | IBM MQ CVE-2022-22475 and IBM MQ Appliance CVE-2022-22475 [CVSS base score 7.1] | |
IT41018 | IBM MQ appliance queue manager writes might be slower than normal during resync | ||
SE76272 | IBM i: add HA replica and non-production ILMT tags | ||
SE77699 | Add early check to AMS certificate and add more public key data to FFSTs | ||
SE77700 | SETMQMSPL throws AMQ8916 message with DN with mixed case attributes on IBM i | ||
SE77770 | AMS DN validation fails if a camel cased DN attribute appears before CN |
Was this topic helpful?
Document Information
Modified date:
07 August 2024
UID
ibm16597685