Regression list for IBM WebSphere Application Server traditional Version 8.5.5

Release Notes

Abstract

Changes included in some fix packs might negatively affect existing product function. Evaluate these APAR(s) for the potential impact in your environment.

Content

# `8.5.5.27`

APAR	Impact	Description
PH65161	Medium	"THE SPECIFIED SSLALIAS NAME DOES NOT EXIST" despite com.ibm.websphere.ssl.fallback.for.nonexistent.alias or "node/" prefixed DefaultSSLAlias

# `8.5.5.26`

APAR	Impact	Description
PH63778	High	MQ uses wrong SSL settings or Java Proxy and ODR fails to start or send requests
PH63012	Medium	WAS startup fails complaining of 'The element type 'services' must be terminated by the matching...'

# `8.5.5.25`

APAR	Impact	Description
PH61068	High	Exception creating CMS keystore

# `8.5.5.24`

APAR	Impact	Description
PH55723	High	java.lang.NullPointerException occurs related to to com.ibm.ISecurityUtilityImpl.PasswordUtil
PH60850	Medium	Failure to create CMS keystore with NPE in com.ibm.ws.ssl.config.CMSKeyStoreUtility.usePQCForCMSKeystore
PH56229	Low	NCSA log incorrectly displays the year timestamp when configured 'accessLogFormat'

# `8.5.5.23`

APAR	Impact	Description
PH55723	High	java.lang.NullPointerException occurs related to to com.ibm.ISecurityUtilityImpl.PasswordUtil
PH53333	Medium	Problem with AdminTask.enablePasswordEncryption
PH51368	Medium	Possible deadlock in resource adapters
PH51918	Medium	LDAP SSL Connections may use default SSL config

# `8.5.5.22`

APAR	Impact	Description
PH48140	High	RENEWING WAS GENERATED PERSONAL CERTIFICATE NOT REFLECTED BY SOAP ENDPOINT
PH50114	Medium	Errors federating or syncing 8.5.5.21 and earlier nodes to 8.5.5.22
PH51368	Medium	Possible deadlock in resource adapters
PH49910	Medium	java.lang.IllegalArgumentException: Class 'Group' does not have a feature named 'password.'
PH47643	Partial Fix	'Error creating client_auth_token' at server shutdown.

# `8.5.5.21`

APAR	Impact	Description
PH48140	High	RENEWING WAS GENERATED PERSONAL CERTIFICATE NOT REFLECTED BY SOAP ENDPOINT
PH44554	Medium	APPCLIENT fails to install and update in 8.5.5.21
PH43960	Medium	JVMCFRE106 DUPLICATE METHOD error will be logged when client attempts to use an EJB
PH46142	Medium	Quality of protection panel for System SSL not accessible.
PH51368	Medium	Possible deadlock in resource adapters
PH44602	Low	NPE in SSL Socket Factory
PH43573	Low	Some expected TLS ciphers not negotiable
PH44801	Low	NPE in com.ibm.ejs.j2c.ConnectionFactoryRefBuilderImpl
PH42887	Low	ArrayIndexOutOfBoundsException after 8.5.5.20/9.0.5.8
PH39883	Low	The asserted user 'unauthenticated' is no longer authenticated.
PH47643	Partial Fix	'Error creating client_auth_token' at server shutdown.

# `8.5.5.20`

APAR	Impact	Description
PH39666	Medium	OpenID Connect CWTAI2030I/CWTAI2007E
PH36923	Medium	NPE in Portlet Bridge
PH39568	Medium	STOPSERVER, SERVERSTATUS FAILS WHEN AES ENCRYPTION IS ENABLED FOR THE COMMAND
PH41336	Medium	NPE submitting batch job with no servers available
PH40758	Medium	early webServer crashes with Intelligent Management enabled
PH51368	Medium	Possible deadlock in resource adapters
PH43113	Medium	java.lang.ClassNotFoundException: org.apache.myfaces.application.viewstate.SecureSerializedViewCollection
PH43573	Low	Some expected TLS ciphers not negotiable
PH40437	Low	ClassCastException in WebCollaborator
PH42887	Low	ArrayIndexOutOfBoundsException after 8.5.5.20/9.0.5.8
PH39883	Low	The asserted user 'unauthenticated' is no longer authenticated.

# `8.5.5.19`

APAR	Impact	Description
PH39666	Medium	OpenID Connect CWTAI2030I/CWTAI2007E
PH42057	Medium	startup failure after disabling custom password encryption
PH51368	Medium	Possible deadlock in resource adapters
PH35899	Medium	Datasource custom property password problems
PH34963	Low	Profile or certificate creation fails with
PH36615	Low	Password prompt hides terminal output on IBM I platform
PH33656	Low	Custom scheduler in the EJB timer service panel not displayed correctly
PH39883	Low	The asserted user 'unauthenticated' is no longer authenticated.

# `8.5.5.18`

APAR	Impact	Description
PH29871	High	Potential vulnerability in admin console
PH27912	Medium	CNTR5104E RECEIVED WHEN DEPLOYING EJB APPLICATION
PH32041	Medium	NPE with custom password encryption
PH51368	Medium	Possible deadlock in resource adapters
PH30566	Medium	failed to login to admin console the first time with RAD
PH39666	Medium	OpenID Connect CWTAI2030I/CWTAI2007E
PH42057	Medium	startup failure after disabling custom password encryption
PH26166	Low	Some admin console with collection tables load slowly
PH26777	Low	no post-sync deployment processing on dmgr
PH33656	Low	Custom scheduler in the EJB timer service panel not displayed correctly
PH39883	Low	The asserted user 'unauthenticated' is no longer authenticated.
PH36615	Low	Password prompt hides terminal output on IBM I platform
PH31320	Low	HTML img tag element displayed inside the TPV
PH34963	Low	Profile or certificate creation fails with

# `8.5.5.17`

APAR	Impact	Description
PH29871	High	Potential vulnerability in admin console
PH24552	Medium	native_stdout.log on Windows fills up with repeating debug timestamps
PH23240	Medium	CWWIM5106E with mixed cell including 8.5.5.17 or later
PH27912	Medium	CNTR5104E RECEIVED WHEN DEPLOYING EJB APPLICATION
PH31320	Low	HTML img tag element displayed inside the TPV
PH26777	Low	no post-sync deployment processing on dmgr
PH26166	Low	Some admin console with collection tables load slowly
PH33656	Low	Custom scheduler in the EJB timer service panel not displayed correctly

# `8.5.5.16`

APAR	Impact	Description
PH18256	High	CNTR5104E RECEIVED WHEN DEPLOYING EJB APPLICATION
PH29871	High	Potential vulnerability in admin console
PH14552	Medium	Failure in Admin Console after editing multi-valued custom property
PH18777	Medium	Intermittent ConcurrentModificationException from MetadataRepository
PH16818	Medium	JSF errors related to java.io.FileNotFoundException: 'Too many open files'.
PH15965	Medium	SECJ0129E authorization failure under load on z/OS using SAF Authorization.
PH27912	Medium	CNTR5104E RECEIVED WHEN DEPLOYING EJB APPLICATION
PH18533	Low	Customized task list in admin console not displayed as links
PH31320	Low	HTML img tag element displayed inside the TPV
PH17962	Low	WebServer logs with '_log' in the name can't be viewed in the console
PH26166	Low	Some admin console with collection tables load slowly

# `8.5.5.15`

APAR	Impact	Description
PH29871	High	Potential vulnerability in admin console
PH14552	Medium	Failure in Admin Console after editing multi-valued custom property
PH16818	Medium	JSF errors related to java.io.FileNotFoundException: 'Too many open files'.
PH15965	Medium	SECJ0129E authorization failure under load on z/OS using SAF Authorization.
PH07676	Medium	Potential denial of service in WebSphere Application Server Admin Console (CVE-2019-4080)
PH07760	Medium	Correction for PH02461
PH09574	Medium	LDAP search filter issue with parenthesis
PH31320	Low	HTML img tag element displayed inside the TPV
PH11280	Low	clearClassCache not run on upgrade
PH17962	Low	WebServer logs with '_log' in the name can't be viewed in the console
PH09011	Low	class version error starting NDDMZ on z/OS

# `8.5.5.14`

APAR	Impact	Description
PH14552	Medium	Failure in Admin Console after editing multi-valued custom property
PH03646	Medium	Daemon abend0c4s in bboclssa and possible termination
PH16818	Medium	JSF errors related to java.io.FileNotFoundException: 'Too many open files'.
PH15965	Medium	SECJ0129E authorization failure under load on z/OS using SAF Authorization.
PH04174	Low	Remove or update PI97281
PH31320	Low	HTML img tag element displayed inside the TPV
PH11280	Low	clearClassCache not run on upgrade
PH17962	Low	WebServer logs with '_log' in the name can't be viewed in the console
PH01735	Low	Inputting an invalid webserver conf file path on the console produces a blank page

# `8.5.5.13`

APAR	Impact	Description
PH03646	Medium	Daemon abend0c4s in bboclssa and possible termination
PI94947	Medium	Update of composite component within an ui:repeat does not work
PH31320	Low	HTML img tag element displayed inside the TPV
PH11280	Low	clearClassCache not run on upgrade
PI95676	Low	In use count can be wrong after APAR PI77049 - causing ABEND=00dc3000 RSNCODE=0a150001
PI92105	Low	Allow empty main-class attribute in manifest.mf for application client module
PI94021	Low	Not able to renew a self-signed wildcard certificate

# `8.5.5.12`

APAR	Impact	Description
PI86249	High	IBMPROXY is down by SIGSEGV
PI85892	High	ClassCastExceptions during naming lookup for beanManger
PI88017	Medium	JMS connections from Websphere Application Server (WAS) are not destroyed was to fix pack v8.5.5.12
PI89756	Medium	Reimplements the fixes for PI75986 and PI78268
PI84428	Medium	ArrayIndexOutOfBoundsException from OpenJPA for @EmbeddedId
PI81342	Low	Web Service call is failing after applying latest FixPacks + IFPI70810
PH31320	Low	HTML img tag element displayed inside the TPV
PI95676	Low	In use count can be wrong after APAR PI77049 - causing ABEND=00dc3000 RSNCODE=0a150001
PI86143	Low	Dynamic outbound ssl configuration incorrectly matching outbound request
PI92105	Low	Allow empty main-class attribute in manifest.mf for application client module
PI84716	Low	com.ibm.websphere.security.spnego.useRACMAPMappingToSAF property value not displayed correctly in admin console
PI84016	Low	JPA application behavior changes after migration to WAS 9.0.0.4

# `8.5.5.11`

APAR	Impact	Description
PI76509	High	Hang on org/apache/webbeans/context/sessioncontext.addchildrequest
PI78148	Medium	SRVE0014E from dynacache component
PI78738	Medium	Loop while closing an SSL connection
PI80889	Medium	Web Services Potential for weak Client security bindings (CVE-2017-1501)
PI72154	Medium	VMM panel fails with an authentication error when applying changes to the security configuration of LDAP
PI84428	Medium	ArrayIndexOutOfBoundsException from OpenJPA for @EmbeddedId
PI80922	Low	Issues with ResponseWrapper
PI84716	Low	com.ibm.websphere.security.spnego.useRACMAPMappingToSAF property value not displayed correctly in admin console
PI84016	Low	JPA application behavior changes after migration to WAS 9.0.0.4
PI66789	Low	WSGRID jobs not getting ended status returned by SIBus z/OS

# `8.5.5.10`

APAR	Impact	Description
PI69518	High	java.lang.ClassCastException when group search is performed
PI70075	Medium	PMI counters URIRequestCount URIConcurrentRequests and URIServiceTime are disabled at runtime.
PI78738	Medium	Loop while closing an SSL connection
PI72154	Medium	VMM panel fails with an authentication error when applying changes to the security configuration of LDAP
PI69042	Medium	Security crypto jar fails with Not signed by a trusted signer error
PI80889	Medium	Web Services Potential for weak Client security bindings (CVE-2017-1501)
PI65333	Medium	A JSP error Unresolved compilation problem is thrown during runtime
PI84016	Low	JPA application behavior changes after migration to WAS 9.0.0.4
PI70026	Low	Choosing 'none' for JNDI datasource name of Job Scheduler System app no longer causes automatic configuration of default datasource
PI84716	Low	com.ibm.websphere.security.spnego.useRACMAPMappingToSAF property value not displayed correctly in admin console
PI66789	Low	WSGRID jobs not getting ended status returned by SIBus z/OS
PI69815	Low	NullPointerException is seen in some cases when a client does not trust a server
PI65021	Low	Error occurs when viewing Intelligent Management charting report

# `8.5.5.9`

APAR	Impact	Description
PI63175	High	JAX-WS application fails with a java.lang.ClassCastException in the log
PI70075	Medium	PMI counters URIRequestCount URIConcurrentRequests and URIServiceTime are disabled at runtime.
PI56086	Medium	HMGR0149E logged when com.ibm.wsspi.security.token.singleSignonTokenFactory property changed to com.ibm.ws.security.ltpa.LTPATokenFactory
PI55683	Medium	Collector script fails on z/OS with collector.sh 37: FSUM7351 not found
PI65333	Medium	A JSP error Unresolved compilation problem is thrown during runtime
PI65021	Low	Error occurs when viewing Intelligent Management charting report
PI83027	Low	Default ThreadPoolStats data cannot be retrieved due to InstanceNotFoundException
PI69815	Low	NullPointerException is seen in some cases when a client does not trust a server
PI84016	Low	JPA application behavior changes after migration to WAS 9.0.0.4
PI70026	Low	Choosing 'none' for JNDI datasource name of Job Scheduler System app no longer causes automatic configuration of default datasource
PI71616	Low	Liberty: configUtility find or install throws a NoClassDefFoundError by local repository
PI66789	Low	WSGRID jobs not getting ended status returned by SIBus z/OS

# `8.5.5.8`

APAR	Impact	Description
PI53566	High	Out Of Memory error on the On Demand Router due to HttpRouteAction objects accumulating
PI57668	High	Liberty: Collective member certificate login fails with LDAP or Federated user registry
PI56086	Medium	HMGR0149E logged when com.ibm.wsspi.security.token.singleSignonTokenFactory property changed to com.ibm.ws.security.ltpa.LTPATokenFactory
PI55683	Medium	Collector script fails on z/OS with collector.sh 37: FSUM7351 not found
PI70075	Medium	PMI counters URIRequestCount URIConcurrentRequests and URIServiceTime are disabled at runtime.
PI54236	Medium	Extraneous error messages display when trying to stop an application
PI56377	Medium	SAML token fails signature validation after being propagated by WS-Security
PI69815	Low	NullPointerException is seen in some cases when a client does not trust a server
PI50291	Low	The Value of annotations is ignored when injecting beans
PI57567	Low	Liberty: Merged plugin-cfg.xml generated by ClusterManager mbean generate ClusterPluginConfig operation contains dup elements
PI84016	Low	JPA application behavior changes after migration to WAS 9.0.0.4
PI71616	Low	Liberty: configUtility find or install throws a NoClassDefFoundError by local repository
PI66789	Low	WSGRID jobs not getting ended status returned by SIBus z/OS
PI83027	Low	Default ThreadPoolStats data cannot be retrieved due to InstanceNotFoundException
PI54235	Low	A redirect using an URI relative to the current request URL redirects to the wrong URL

# `8.5.5.7`

APAR	Impact	Description
PI53566	High	Out Of Memory error on the On Demand Router due to HttpRouteAction objects accumulating
PI47842	High	When doing IdP-initiated SSO if a RelayState is not in the SAMLResponse the authentication fails
PI50672	High	500 error when rolling out new edition and deleting old edition
PI57668	High	Liberty: Collective member certificate login fails with LDAP or Federated user registry
PI52986	High	XA Transaction recovery issues might occur
PI49025	Medium	z/OS users could experience authorization failures and see error message: SECJ0129E: Authorization failed for user
PI55683	Medium	Collector script fails on z/OS with collector.sh 37: FSUM7351 not found
PI51426	Medium	The publishWSDL command is not picking up changes made to the HTTP URL
PI56086	Medium	HMGR0149E logged when com.ibm.wsspi.security.token.singleSignonTokenFactory property changed to com.ibm.ws.security.ltpa.LTPATokenFactory
PI56377	Medium	SAML token fails signature validation after being propagated by WS-Security
PI45287	Medium	Contexts and Dependency Injection (CDI) Application Scoped contexts are not acquired properly causing issues with web services applications
PI50291	Low	The Value of annotations is ignored when injecting beans
PI57567	Low	Liberty: Merged plugin-cfg.xml generated by ClusterManager mbean generate ClusterPluginConfig operation contains dup elements
PI69815	Low	NullPointerException is seen in some cases when a client does not trust a server
PI84016	Low	JPA application behavior changes after migration to WAS 9.0.0.4
PI71616	Low	Liberty: configUtility find or install throws a NoClassDefFoundError by local repository
PI83027	Low	Default ThreadPoolStats data cannot be retrieved due to InstanceNotFoundException
PI66789	Low	WSGRID jobs not getting ended status returned by SIBus z/OS
PI54235	Low	A redirect using an URI relative to the current request URL redirects to the wrong URL

# `8.5.5.6`

APAR	Impact	Description
PI57668	High	Liberty: Collective member certificate login fails with LDAP or Federated user registry
PI53566	High	Out Of Memory error on the On Demand Router due to HttpRouteAction objects accumulating
PI45287	Medium	Contexts and Dependency Injection (CDI) Application Scoped contexts are not acquired properly causing issues with web services applications
PI46499	Medium	NullPointerException might be caught in the servlet listener code when security is enabled.
PI54235	Low	A redirect using an URI relative to the current request URL redirects to the wrong URL
PI83027	Low	Default ThreadPoolStats data cannot be retrieved due to InstanceNotFoundException
PI69815	Low	NullPointerException is seen in some cases when a client does not trust a server
PI44057	Low	Liberty profile: There is an increased performance overhead for users of the SSL feature in Liberty profile
PI57567	Low	Liberty: Merged plugin-cfg.xml generated by ClusterManager mbean generate ClusterPluginConfig operation contains dup elements
PI84016	Low	JPA application behavior changes after migration to WAS 9.0.0.4
PI42400	Low	OSGi applications that contain blueprint xml in bundle fragments do not start after Liberty profile update
PI43277	Low	Dynamic switching from polled to mbean (and vice versa) config monitoring doesn't work.

# `8.5.5.5`

APAR	Impact	Description
PI53566	High	Out Of Memory error on the On Demand Router due to HttpRouteAction objects accumulating
PI35285	High	'java.lang.Exception: A WSDL Definition could not be generated for the implementation class could happen during application deployment
PI36870	Medium	Memory leak when _ underscore character used in JMS connection factory name
PI45287	Medium	Contexts and Dependency Injection (CDI) Application Scoped contexts are not acquired properly causing issues with web services applications
PI54235	Low	A redirect using an URI relative to the current request URL redirects to the wrong URL
PI83027	Low	Default ThreadPoolStats data cannot be retrieved due to InstanceNotFoundException
PI37248	Low	A Property File Based Configuration (PFBC) file might fail to apply
PI44057	Low	Liberty profile: There is an increased performance overhead for users of the SSL feature in Liberty profile
PI57567	Low	Liberty: Merged plugin-cfg.xml generated by ClusterManager mbean generate ClusterPluginConfig operation contains dup elements
PI84016	Low	JPA application behavior changes after migration to WAS 9.0.0.4
PI42400	Low	OSGi applications that contain blueprint xml in bundle fragments do not start after Liberty profile update
PI43277	Low	Dynamic switching from polled to mbean (and vice versa) config monitoring doesn't work.

# `8.5.5.4`

APAR	Impact	Description
PI53566	High	Out Of Memory error on the On Demand Router due to HttpRouteAction objects accumulating
PI35285	High	'java.lang.Exception: A WSDL Definition could not be generated for the implementation class could happen during application deployment
PI28016	Medium	NumberFormatException in Extended Cache Monitor
PI23764	Medium	When removing a server or a node with Dynamic SSL Configuration on WebSphere Application Server a NullPointerException is shown.
PI45287	Medium	Contexts and Dependency Injection (CDI) Application Scoped contexts are not acquired properly causing issues with web services applications
PI36870	Medium	Memory leak when _ underscore character used in JMS connection factory name
PI26770	Medium	NullPointerException when application uses CDI @Produces method with InjectionPoint
PI33253	Low	DMZ Proxy installation not writable by WASADMIN
PI54235	Low	A redirect using an URI relative to the current request URL redirects to the wrong URL
PI35626	Low	Liberty profile: ApacheValidationProvider class not found by third party packages that utilize Bean Validation
PI30922	Low	Liberty profile: applications do not pick up published changes to annotation-based metadata.
PI32677	Low	If a Parallel Job Manager Top Level Job is cancelled before all subjobs are submitted the Top Level Job will remain in cancel pending state.
PI42400	Low	OSGi applications that contain blueprint xml in bundle fragments do not start after Liberty profile update
PI57567	Low	Liberty: Merged plugin-cfg.xml generated by ClusterManager mbean generate ClusterPluginConfig operation contains dup elements
PI32544	Low	Session remains open in SipContainer if it has a newly created outgoing message which was not sent.
PI83027	Low	Default ThreadPoolStats data cannot be retrieved due to InstanceNotFoundException

# `8.5.5.3`

APAR	Impact	Description
PI35285	High	'java.lang.Exception: A WSDL Definition could not be generated for the implementation class could happen during application deployment
PI26149	High	Liberty profile: FileNotFoundExceptions when file paths include spaces.
PI23168	High	Liberty profile: ClassNotFoundExceptions occur where nested libraries are in use
PI53566	High	Out Of Memory error on the On Demand Router due to HttpRouteAction objects accumulating
PI25221	High	A potential performance issue with ODR/Proxy on Microsoft Windows operating systems
PI28492	High	System garbage collection(gc) is getting called very frequently and causing High Cpu Usage.
PI36870	Medium	Memory leak when _ underscore character used in JMS connection factory name
PI28016	Medium	NumberFormatException in Extended Cache Monitor
PI26770	Medium	NullPointerException when application uses CDI @Produces method with InjectionPoint
PI23764	Medium	When removing a server or a node with Dynamic SSL Configuration on WebSphere Application Server a NullPointerException is shown.
PI22490	Low	The application login page is repeatedly displayed after supplying userid and password
PI25789	Low	Liberty profile Resource references must match based on type rather than name only
PI83027	Low	Default ThreadPoolStats data cannot be retrieved due to InstanceNotFoundException

[{"Business Unit":{"code":"BU048","label":"IBM Software"},"Product":{"code":"SSEQTP","label":"WebSphere Application Server"},"Component":"General","Platform":[{"code":"PF002","label":"AIX"},{"code":"PF010","label":"HP-UX"},{"code":"PF016","label":"Linux"},{"code":"PF017","label":"Mac OS"},{"code":"PF027","label":"Solaris"},{"code":"PF033","label":"Windows"},{"code":"PF035","label":"z\/OS"}],"Version":"All Versions","Edition":"Base, Network Deployment","Line of Business":{"code":"LOB77","label":"Automation Platform"}}]

Tips