IBM Support

IBM Content Navigator Version 3.2.0 Interim Fix 6 Readme

Fix Readme


Abstract

IBM Content Navigator Version 3.2.0 Interim Fix 6 Readme

Content

This Readme document contains information about the installation and uninstallation of, and fixes, enhancements and limitations in IBM Content Navigator, Version 3.2.0 Interim Fix 6. The interim fix includes the fixes delivered in previous interim fixes. This interim fix does not contain new fixes or features. 

Readme file for: IBM Content Navigator.

Product or component release: Version 3.2.0.0

Update name: Interim Fix 6

IBM Content Navigator build number: icn320.006.0615

IBM Content Navigator Fix ID:

  • 3.2.0.0-ICN-IF006-AIX
  • 3.2.0.0-ICN-IF006-LINUX
  • 3.2.0.0-ICN-IF006-zLINUX
  • 3.2.0.0-ICN-IF006-WIN

Publication date: May 28, 2026

Last modified date: May 28, 2026

Additional documentation for IBM Content Navigator 3.2.0.0 can be found at : IBM Content Navigator 3.2.0

Included Components

  • Daeja ViewONE Virtual 5.0.15 iFix 6
  • Dojo Toolkit: 1.17.2
  • Snowbound RasterMaster: 20.21.1
  • Oracle Outside In Technology: 8.5.8 BP2 38735571
  • Log4j: 2.25.4
  • IBM Content Manager v8.7 Fix Pack 5 APIs
  • Apache Commons-Compress jar v1.28
  • Spring jars v5.3.50

New Features

  • Classic Theme in IBM Content Navigator in Container environments
    With the 3.2.0 IF005 release, customers can enable the Classic theme style selection in a CP4BA/BAN
    environment. This enables organizations to maintain visual consistency for users who require the Classic
    UI layout for their desktops to serve specific business workflows.
  • Change in Properties Pane Loading Behavior
    The Properties pane has been updated to load content progressively. Instead of displaying all
    information at once, data is now populated incrementally as it becomes available, improving perceived
    performance and responsiveness.
  • Support for WebLogic v14.1.2 added (starting in Interim Fix 4).
  • Apache Commons Library Migration (starting in Interim Fix 2)
    Apache Commons libraries have been updated to address security vulnerabilities. These changes have a potential impact on custom plugins. Before upgrading to this interim fix, please review this technote for details on this impact.

Known problems, issues, and limitations

Known problems, restrictions, and solutions that affect administration and usage of interim fixes are documented as techdocs in the product support knowledge base. Use the following link to query the product support knowledge base by searching for the product and version number: https://www.ibm.com/support/home. In addition, the interim fix includes the following known problems:

  • Java and Google Chrome

    Some features of IBM Content Navigator use Java applets. If you access IBM Content Navigator from Google Chrome, Version 42 or later, Chrome displays a message that the plug-in is blocked if you use an applet-based feature

    Starting with Google Chrome, Version 42, the Netscape Plugin Application Programming Interface (NPAPI) is disabled by default. Web applications that use Java applets do not function properly unless NPAPI is re-enabled. For more information on configuring NPAPI-based Java plug-ins under Google Chrome, Version 42, see:

  • Oracle Java Runtime Environment security warnings

    You might see security warnings and update requests when using certain versions of Oracle Java Runtime Environment (JRE). For information about issues with Oracle JRE, see http://www.ibm.com/support/docview.wss?uid=swg21640073.

  • The IBM Content Navigator Configuration and Deployment Tool is not completely translated in some languages

    If you use the IBM Content Navigator Configuration and Deployment Tool in the following locales, you might see a mix of English and non-English strings:

    • Arabic
    • Greek
    • Hebrew
    • Kazakh
    • Vietnamese
  • Preview action on PDF documents fails on AIX.

    The Preview action on PDF documents fails on AIX, if using the Snowbound engine. The workaround is to switch to using the OutsideIn engine using these steps:

    • Copy /navigator.ear/navigator.war/WEB-INF/DocServices.properties.default to DocServices.properties.
    • Open DocServices.properties and add the line:
    • USEENGINE.application/pdf=com.ibm.mm.viewer.CMBOutsideInExportEngine
    • Restart the IBM Content Navigator web application server.

Additional Known problems and restrictions are contained in the 3.2.0.0 Release Notes https://www.ibm.com/docs/en/content-navigator/3.2.0?topic=content-navigator-release-notes.

Prerequisites for Version 3.2.0 Interim Fix 6

The official statements for hardware and software support for IBM Content Navigator are provided as part of the hardware and software requirements for IBM Content Navigator, Version 3.2.0.0.

For complete details about the hardware and software requirements for IBM Content Navigator see Software Product Compatibility Reports.

Installing or Updating IBM Content Navigator Version 3.2.0 Interim Fix 6

The following information and steps apply to IBM Content Navigator. To install the interim fix, perform the steps below using the interim fix executable. When you install an interim fix, you can run the installation wizard or run a silent installation. The interim fix can be installed as an update to IBM Content Navigator Version 3.2.0.0 or later.

The interim fix installation program updates the files in the directory where IBM Content Navigator is installed. After the installation program completes successfully, restart the web application server and redeploy the IBM Content Navigator web application to apply the changes from the interim fix.

For more information about installing IBM Content Navigator Version 3.2.0, see https://www.ibm.com/docs/en/content-navigator/3.2.0?topic=planning-installing-configuring-content-navigator.

To install IBM Content Navigator, Version 3.2.0 Interim Fix 6 :

  1. Back up your current installation of IBM Content Navigator including the master cryptographic key. For more information about backing up the master key, see https://www.ibm.com/support/pages/node/869440
  2. Ensure that the IBM Content Navigator Configuration and Deployment Tool is closed.
  3. Log in to the IBM Content Navigator server with the IBM Content Navigator installer account.
  4. Install the interim fix by running the installation wizard or by running a silent installation:
    Important: Do not enter line breaks in the command that you enter to start the installation program.

    AIX

    At a command prompt, change to the directory where you downloaded the interim fix and enter one of the following commands:

    • To install the interim fix interactively, enter: ./IBM_CONTENT_NAVIGATOR-3.2.0.0-ICN-IF006-AIX.bin.
    • To install the interim fix silently, enter ./IBM_CONTENT_NAVIGATOR-3.2.0.0-ICN-IF006-AIX.bin -f fully_qualified_path_of_the_response_file/ecmclient_silent_install.txt.


    Linux

    At a command prompt, change to the directory where you downloaded the interim fix and enter one of the following commands:

    • To install the interim fix interactively, enter: ./IBM_CONTENT_NAVIGATOR-3.2.0.0-ICN-IF006-LINUX.bin.
    • To install the interim fix silently, enter ./IBM_CONTENT_NAVIGATOR-3.2.0.0-ICN-IF006-LINUX.bin -f fully_qualified_path_of_the_response_file/ecmclient_silent_install.txt.


    Linux for System z

    At a command prompt, change to the directory where you downloaded the interim fix and enter one of the following commands:

    • To install the interim fix interactively, enter: ./IBM_CONTENT_NAVIGATOR-3.2.0.0-ICN-IF006-zLINUX.bin.
    • To install the interim fix silently, enter ./IBM_CONTENT_NAVIGATOR-3.2.0.0-ICN-IF006-zLINUX.bin -f fully_qualified_path_of_the_response_file/ecmclient_silent_install.txt.


    Windows

    At a command prompt, change to the directory where you downloaded the interim fix and enter one of the following commands:

    • To install the interim fix interactively, enter: ./IBM_CONTENT_NAVIGATOR-3.2.0.0-ICN-IF006-WINDOW.exe.
    • To install the interim fix silently, enter ./IBM_CONTENT_NAVIGATOR-3.2.0.0-ICN-IF006-WIN.exe -f fully_qualified_path_of_the_response_file/ecmclient_silent_install.txt.
       
  5. Open the IBM Content Navigator Configuration and Deployment tool, click File > Open Deployment Profile, select the target deployment profile and click Open.
  6. If the External Share feature is needed, then perform the bulleted steps below and then continue to Step 7, else continue to Step 7
    • Open the IBM Content Navigator Configuration and Deployment tool, click File > Open Deployment Profile, select the target deployment profile and click Open.
    • Deselect "Task Manager service" checkbox and click Finish.
    • Right click on the profile name in the left pane, click Add a new task and add a new task to the profile with the name Configure the Connection to Your LDAP Server to the profile
    • Run the new task to configure the connection to the external LDAP server that will be used by the External Share feature.
    • Run the Update the FileNet P8 Client Connector Files task.
  7. Run the "Configuring the IBM Content Navigator web application" task. For more instructions, see the topic, "Configuring the IBM Content Navigator web application" in the information center: https://www.ibm.com/docs/en/content-navigator/3.2.0?topic=server-configuring-content-navigator-web-application..
  8. Run the "Build the Web Application" task. For more instructions, see the topic, Rebuilding the IBM Content Navigator web application in the information center: https://www.ibm.com/docs/en/content-navigator/3.2.0?topic=server-building-web-application.
  9. Run the "Deploy the Web Application" task in the IBM Content Navigator Configuration and Deployment Tool for the profile that you want to redeploy.
  10. Stop the IBM Content Navigator web application server.
  11. Clear the application server cache:
    • For IBM WebSphere Application Server: Delete the following folders:

      • Delete the navigator folder from the temp temporary directory.

        For example, on Microsoft Windows, delete the navigator folder from the following directory: \IBM\WebSphere\AppServer\profiles\AppSrv01\temp\ServerName Node01\server1.

      • Delete the subfolders in the wstemp directory. This folder is different from the temp folder. Do not delete the wstemp folder itself.

        For example, on Windows, delete the subfolders in following directory: \IBM\WebSphere\AppServer\profiles\AppSrv01\wstemp.

      • For Oracle WebLogic Server: Delete the navigator folder from the tmp temporary directory.

      For example, on Windows, delete the navigator folder from the following directory: \Oracle\Middleware\user_projects\domains\base_domain\servers\AdminServer\tmp\_WL_user.

  12. Start the IBM Content Navigator web application server.
  13. Verify that the correct version of the software is deployed to the web application server. For more information, see the topic, "Verifying your deployment" in the information center: https://www.ibm.com/docs/en/content-navigator/3.2.0?topic=tasks-verifying-your-content-navigator-deployment.
  14. If IBM Content Navigator is configured for a high availability environment, see https://www.ibm.com/support/pages/node/869440 to ensure the crypto keys are set up properly in all servers.

Removing the interim fix

When you uninstall the interim fix, you also uninstall IBM Content Navigator.

The interim fix for IBM Content Navigator uninstallation program removes the program and all applied fixes. You cannot remove only the interim fix.

Updating the Edit Service client

To update the Edit Service client, uninstall the old version and install the new version on both Windows and Mac OS.

Fixes included in IBM Content Navigator Version 3.2.0 Interim Fix 6


Security Vulnerability: CVE-2025-48924 resolved by upgrade of Snowbound library to 20.21.1.


Security vulnerability: CVE-2026-0636 resolved with including bcprov-jdk18on-1.81.jar.


Security vulnerability: GHSA-72hv-8253-57qq resolved by upgrade of Snowbound library to 20.21.1.


DT468999 (IBM Content Manager OnDemand users) Add Document action fails with your 'Your request cannot be processed' error in the browser.


DT470206 (IBM Content Manager users) Extra space present to the left of search results when using CM8 as repository.


DT470660 (IBM Content Navigator users) Instana reports intermittent errors like “protocol doesn’t support input” and “Not implemented” while accessing the /getBurnInRedactions URL.



Fixes included in IBM Content Navigator Version 3.2.0 Interim Fix 5


Security Vulnerability: CVE-2026-22735 CVE-2026-22737 CVE-2025-41242 CVE-2016-1000027 CVE-2025-41249 CVE-2025-41254 resolved by updating Spring Framework in the Sync Server.


Security vulnerability: CVE-2026-34477, CVE-2026-34478, CVE-2026-34479, CVE-2026-34480 and known issue DT460290 for CVE-2025-68161 resolved by update of Daeja ViewONE jiserver.jar with Log4J 2.25.4 jars.


Security vulnerability: CVE-2026-34477, CVE-2026-34478, CVE-2026-34479, CVE-2026-34480 resolved by upgrade of Log4J to 2.25.4.


Security vulnerability: CVE-2026-35554 in kafka-clients-3.9.1.jar reported for ICN and icnBaiEmitter, resolved.


Security vulnerability: CWE-79, Cross-Site Scripting vulnerability resolved.


Security vulnerability: GHSA-72hv-8253-57qq in  Sharepoint/DocuSign Plugin resolved by update of jackson-core library.


DT462433 (IBM Content Navigator users ) Incorrect sorting on choice list columns observed.


DT463505 (IBM Content Navigator users) Error 'unzipear.xml:21: java.lang.NoClassDefFoundError: org.apache.xpath.XPathAPI'  seen in install log of interim fix 4 after install completes.


DT466102 (IBM Content Navigator users) Incorrect German translation and localization issues seen after installing interim fix 4.


DT466213 (IBM Content Navigator users) Error about missing commons-lang3.jar occurs when executing icn.admin.keys.rotateMasterKey() command in the Developer Tools Console tab.



Fixes included in IBM Content Navigator Version 3.2.0 Interim Fix 4


Security Vulnerability: CVE-2019-13116 in commons-collections-3.1.jar resolved.


Security Vulnerability: CVE-2021-33813 in jdom-1.0.jar resolved.


Security Vulnerability: CVE-2022-34169 in xalan-2.7.2.jar resolved.


Security Vulnerability: CVE-2023-51775 in jose4j-0.9.4.jar resolved.


Security Vulnerability: CVE-2024-29371 resolved by update of Jose4J Library to 0.9.6.


Security Vulnerability: CVE-2024-6763 in jetty-http-9.4.55.v20240627.jar resolved.


Security Vulnerability: CVE-2025-48924 resolved in Snowbound library by upgrade from 20.18.0 to 20.19.7.


Security Vulnerability: CVE-2025-48924 in commons-lang-2.2.jar resolved.


Security Vulnerability: CVE-2025-66453 (Rhino) in rhino.jar 1.7.14 resolved.


Security Vulnerability: CVE-2025-68161, CVE-2019-17571, CVE-2020-9488, CVE-2020-9493, CVE-2021-4104, CVE-2022-23302, CVE-2022-23305, CVE-2022-23307, CVE-2023-26464 resolved by update of Log4J library.


Security Vulnerability: CVE-2026-1243 resolved.


DT398372 (IBM Content Navigator users) 'Configuring your database and data source' fails for Oracle RAC with a "_driverVersion": no such variable"  error.


DT435913 (IBM Content Navigator users) Long repository names are truncated in the dropdown field in Entry Template Manager before being clicked. If the dropdown is opened, the full name is visible.


DT453099 (IBM Content Navigator users) Send Email As a Link action does not work (nothing happens) when multiple documents are selected, with 'Use the desktop email client with the edit client service' option selected in the target desktop configuration. This fix requires using a compatible Edit Service Client.


DT454879 (IBM Content Navigator users) DocuSign signature history shows 'Your request cannot be processed' error.


DT455611 (IBM Content Navigator users) Save button label shows 'Sauvegarder' instead of 'Enregistrer' when using French locale.


DT455886 (IBM Content Navigator users) DocuSign plugin context menu action 'Send for Signature' fails for users that do not have permission to create new folders within the object store's root folder.


DT456899 (IBM Content Navigator users) Users are unexpected logged out during long running searches or actions such opening large documents.


DT457380 (IBM Content Navigator users) Task Manager does not capture logs for failed tasks.


DT455886 (IBM Content Navigator users) DocuSign plugin context menu action 'Send for Signature' fails for users that do not have permission to create new folders within the object store's root folder.


DT457539 (IBM Content Manager users) Ajax Viewer does not display all parts of a multi-part document.


DT457547 (IBM Content Navigator users) Selecting properties for display in Browse or Search tabs of a repository configuration in the administration desktop may require a double mouse click after using a the property filter box.


DT457553 (IBM Content Navigator users) Error about missing commons-codec.jar occurs when executing icn.admin.keys.rotateMasterKey() command in the Developer Tools Console tab.


DT457649 (IBM Content Navigator users) Task Manager administrator password cannot be changed due to failure to encrypt the updated password.


DT458135 (IBM Content Navigator users) Preview action on Microsoft Office documents fails if using HTML Conversion Viewer for Preview in the viewer map.


DT458997 IBM Content Navigator Microsoft Office for the web integration shows excessive browser CPU and memory usage.


DT459975 (IBM Content Manager users) Search fails with "class not found" error after upgrading to interim fix 2.


DT459996 (IBM Content Navigator users) Performance is slow when displaying the Add Document dialog on a folder that has a large number of entry templates associated with it.


DT460903 (IBM Content Manager users) Duplicate values are seen for document properties in search results when using Magazine view.


DT462144 (IBM Content Collector users) JSON conversion error occurs when attempting to save the ICCSAP configuration or import a profile in an ICCSAP desktop. The error is, 'The configuration or profile cannot be converted to JSON'. This affects ICCSAP plugin.


DT459975 (IBM Content Manager users) Search fails with "Class not found" error after upgrading to interim fix 2.



Fixes included in IBM Content Navigator Version 3.2.0 Interim Fix 3


Security Vulnerability: Improved fix for CVE-2025-46392 in commons-configuration-1.10.jar. Interim fix 2 also resolves this vulnerability, but in some situations, the vulnerable jar may be left over, triggering a false positive during a scan, although not actually posing a vulnerability.


Security Vulnerability: Improved fix for CVE-2025-48924 in commons-lang3 package. Interim fix 2 also resolves this vulnerability, but in some situations, the vulnerable jar may be left over, triggering a false positive during a scan, although not actually posing a vulnerability.



Fixes included in IBM Content Navigator Version 3.2.0 Interim Fix 2


Security Vulnerability: CVE-2025-46392 in commons-configuration-1.10.jar resolved.


Security Vulnerability: CVE-2025-48924 in commons-lang3 package resolved.


Security Vulnerability: CVE-2025-53864 in SharePoint plugin resolved by upgrading nimbus-jose-jwt library to v10.0.2+.


Security Vulnerability: CVE-2024-57699 in json-smart upgrade resolved.


Security Vulnerability: Deprecated X-XSS-Protection header removed.


Security Vulnerability: HSTS policy max-age updated to 1 year.


Security Vulnerability: Additional directives in cache control header, per OWASP Top 10 standard, added for login request.


DT443468 (IBM Content Navigator users) Using 'Merge and Split' action, if the Layout is switched to 'Split Vertically' or 'Split Horizontally' and page(s) copied from the opened document are pasted to the new pane and 'Add Document' icon is clicked, then in the subsequent Add Document dialog, if the 'Use source document' checkbox is selected for the Classification field, duplicate values are seen in the dropdown for this field.


DT444584 (IBM Content Navigator users) Using a choice list consisting of sublists that have common values, if a common value from one sublist is selected and the same value is later selected from a different sublist, then the values from the initially selected sublist are displayed, instead of the subsequently selected sublist's values. 


DT446219 (IBM Content Manager users) When navigating using the Tab key, pressing Enter key on the buttons that receive focus, does not result in a click event, thus violating WCAG standards.


DT449665 (IBM Content Navigator Users) Hourly repeating tasks cannot be scheduled with valid end date and end time and can sometimes be scheduled with past start time.


DT451653 (IBM Content Navigator users) Email action fails if the login user does not have an email configured in their profile, even though mail.from mail session property is present.



Fixes included in IBM Content Navigator Version 3.2.0 Interim Fix 1


Security Vulnerability: Spring jars updated to 5.3.46 to address multiple CVEs 


Security Vulnerability: CVE-2025-5878 in ESAPI jar resolved.


Security Vulnerability: Exposure of directory structure on GET request to .jgz path resolved.


Security Vulnerability: Exposure of .jsp file contents on GET request to .jgz path resolved.


DT420297 (IBM Content Navigator users) PDFs generated by 'Download as PDF' action on .docx and .xlsx files show incorrect or misaligned data.


DT435886 (IBM Content Navigator users) Download as Original action on line data documents downloads them with .txt extension instead of .lin extension. 


DT437149 (IBM Content Navigator users) When navigating in the content or results pane, JAWS screen reader does not announce the sorting order (ascending or descending) of the column headers.


DT438275 (IBM Content Manager users) An error, 'Your request cannot be processed' occurs when a saved search's results are refreshed, after clicking View Workflow Information action in the Workflow submenu of the context menu of  a search result.


DT438879 (IBM Content Navigator users) The JVM argument, "-Dcom.sun.jndi.ldap.connect.pool.protocol=plain ssl" created with enclosing quotes, is observed to be missing the quotation marks (") after an upgrade.


DT440525 (IBM Content Navigator users) Name column value of work item in Work feature changes to 'Error' if the work item's Class value is modified.


DT440604 (IBM Content Navigator users) Cross-site scripting (XSS) with Daeja ViewONE viewer fixed.


DT446311 (IBM Content Navigator users) A 'java.lang.NullPointerException' exception occurs on Linux, when running the 'Configure the IBM Content Navigator Web Application' task with Custom web application firewall policy.


DT447419 (IBM Content Navigator users) Polish label for 'Checkout and Download' action incorrect.


DT439191 (IBM Content Navigator users) Text colors in table header and cells are incorrect. White and blue colors are displayed black.
 


Copyright and trademark information

http://www.ibm.com/legal/copytrade.shtml

Notices

INTERNATIONAL BUSINESS MACHINES CORPORATION PROVIDES THIS PUBLICATION "AS IS" WITHOUT WARRANTY OF ANY KIND, EITHER EXPRESS OR IMPLIED, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF NON-INFRINGEMENT, MERCHANTABILITY OR FITNESS FOR A PARTICULAR PURPOSE. Some jurisdictions do not allow disclaimer of express or implied warranties in certain transactions, therefore, this statement may not apply to you.

This information could include technical inaccuracies or typographical errors. Changes are periodically made to the information herein; these changes will be incorporated in new editions of the publication. IBM may make improvements and/or changes in the product(s) and/or the program(s) described in this publication at any time without notice.

Other company, product, or service names may be trademarks or service marks of others.

THIRD-PARTY LICENSE TERMS AND CONDITIONS, NOTICES AND INFORMATION

The license agreement for this product refers you to this file for details concerning terms and conditions applicable to third party software code included in this product, and for certain notices and other information IBM must provide to you under its license to certain software code. The relevant terms and conditions, notices and other information are provided or referenced below. Please note that any non-English version of the licenses below is unofficial and is provided to you for your convenience only. The English version of the licenses below, provided as part of the English version of this file, is the official version.

Notwithstanding the terms and conditions of any other agreement you may have with IBM or any of its related or affiliated entities (collectively "IBM"), the third party software code identified below are "Excluded Components" and are subject to the following terms and conditions:

  • The Excluded Components are provided on an "AS IS" basis
  • IBM DISCLAIMS ANY AND ALL EXPRESS AND IMPLIED WARRANTIES AND CONDITIONS WITH RESPECT TO THE EXCLUDED COMPONENTS, INCLUDING, BUT NOT LIMITED TO, THE WARRANTY OF NON-INFRINGEMENT OR INTERFERENCE AND THE IMPLIED WARRANTIES AND CONDITIONS OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
  • IBM will not be liable to you or indemnify you for any claims related to the Excluded Components
  • IBM will not be liable for any direct, indirect, incidental, special, exemplary, punitive or consequential damages with respect to the Excluded Components.

 

[{"Type":"MASTER","Line of Business":{"code":"LOB18","label":"Miscellaneous LOB"},"Business Unit":{"code":"BU056","label":"Miscellaneous"},"Product":{"code":"SSEUEX","label":"IBM Content Navigator"},"ARM Category":[{"code":"a8m3p000000LRz9AAG","label":"IBM Content Navigator"}],"ARM Case Number":"","Platform":[{"code":"PF002","label":"AIX"},{"code":"PF016","label":"Linux"},{"code":"PF033","label":"Windows"},{"code":"PF055","label":"zLinux"}],"Version":"3.2.0"}]

Document Information

Modified date:
01 June 2026

UID

ibm17274143