PI82630:Information disclosure in WebSphere Application Server (CVE-2017-1381).

Download

Abstract

Information disclosure in WebSphere Application Server (CVE-2017-1381).

Download Description

PI82630 resolves the following problem:

ERROR DESCRIPTION:
Information disclosure in WebSphere Application Server (CVE-2017-1381).

LOCAL FIX:
Restart of the ODR/WAS proxy server clears the stale cache

PROBLEM SUMMARY:
Information disclosure in WebSphere Application Server (CVE-2017-1381).

PROBLEM CONCLUSION:
Information disclosure in WebSphere Application Server (CVE-2017-1381).

The fix for this APAR is currently targeted for inclusion in
fix pack 7.0.0.45, 8.0.0.14, 8.5.5.13, and 9.0.0.5. Please
refer to the Recommended Updates page for delivery information:
http://www.ibm.com/support/docview.wss?rs=180&uid=swg27004980

Prerequisites

None

Installation Instructions

Please review the readme.txt for detailed installation instructions.

[{"INLabel":"V85 Readme","INLang":"US English","INSize":"2684","INURL":"ftp://public.dhe.ibm.com/software/websphere/appserv/support/fixes/PI82630/8.5.5.11/readme.txt"},{"INLabel":"V80 Readme","INLang":"US English","INSize":"2675","INURL":"ftp://public.dhe.ibm.com/software/websphere/appserv/support/fixes/PI82630/8.0.0.13/readme.txt"},{"INLabel":"V70 Readme","INLang":"US English","INSize":"5314","INURL":"ftp://public.dhe.ibm.com/software/websphere/appserv/support/fixes/PI82630/7.0.0.43/readme.txt"},{"INLabel":"V90 Readme","INLang":"US English","INSize":"2543","INURL":"ftp://public.dhe.ibm.com/software/websphere/appserv/support/fixes/PI82630/9.0.0.4/readme.txt"}]

          [{"DNLabel":"7.0.0.33-WS-WASND-IFPI82630","DNDate":"07-11-2017","DNLang":"US English","DNSize":"11226","DNPlat":{"label":"AIX","code":"PF002"},"DNURL":"http://www.ibm.com/support/fixcentral/swg/selectFixes?parent=ibm/WebSphere&product=ibm/WebSphere/WebSphere Application Server&release=All&platform=All&function=fixId&fixids=7.0.0.33-WS-WASND-IFPI82630&includeSupersedes=0","DNURL_FTP":" ","DDURL":null},{"DNLabel":"8.0.0.2-WS-WASND-IFPI82630","DNDate":"07-11-2017","DNLang":"US English","DNSize":"268431","DNPlat":{"label":"AIX","code":"PF002"},"DNURL":"http://www.ibm.com/support/fixcentral/swg/selectFixes?parent=ibm/WebSphere&product=ibm/WebSphere/WebSphere Application Server&release=All&platform=All&function=fixId&fixids=8.0.0.2-WS-WASND-IFPI82630&includeSupersedes=0","DNURL_FTP":" ","DDURL":null},{"DNLabel":"8.5.5.1-WS-WASND-IFPI82630","DNDate":"07-11-2017","DNLang":"US English","DNSize":"269945","DNPlat":{"label":"AIX","code":"PF002"},"DNURL":"http://www.ibm.com/support/fixcentral/swg/selectFixes?parent=ibm/WebSphere&product=ibm/WebSphere/WebSphere Application Server&release=All&platform=All&function=fixId&fixids=8.5.5.1-WS-WASND-IFPI82630&includeSupersedes=0","DNURL_FTP":" ","DDURL":null},{"DNLabel":"8.5.5.12-WS-WASND-IFPI82630","DNDate":"21 Jul 2017","DNLang":"US English","DNSize":"256747","DNPlat":{"label":"AIX","code":"PF002"},"DNURL":"http://www.ibm.com/support/fixcentral/swg/selectFixes?parent=ibm%2FWebSphere&product=ibm/WebSphere/WebSphere+Application+Server&release=All&platform=All&function=fixId&fixids=8.5.5.12-WS-WASND-IFPI82630&includeSupersedes=0","DNURL_FTP":" ","DDURL":null},{"DNLabel":"9.0.0.1-WS-WASND-IFPI82630","DNDate":"07-11-2017","DNLang":"US English","DNSize":"260455","DNPlat":{"label":"AIX","code":"PF002"},"DNURL":"http://www.ibm.com/support/fixcentral/swg/selectFixes?parent=ibm/WebSphere&product=ibm/WebSphere/WebSphere Application Server&release=All&platform=All&function=fixId&fixids=9.0.0.1-WS-WASND-IFPI82630&includeSupersedes=0","DNURL_FTP":" ","DDURL":null}]
          

Technical Support

Contact IBM Support using SR (http://www.ibm.com/software/support/probsub.html), visit the WebSphere Application Server support web site (http://www.ibm.com/software/webservers/appserv/was/support/), or contact 1-800-IBM-SERV (U.S. only).

[{"Product":{"code":"SSEQTP","label":"WebSphere Application Server"},"Business Unit":{"code":"BU053","label":"Cloud & Data Platform"},"Component":"General","Platform":[{"code":"PF002","label":"AIX"},{"code":"PF010","label":"HP-UX"},{"code":"PF012","label":"IBM i"},{"code":"PF016","label":"Linux"},{"code":"PF027","label":"Solaris"},{"code":"PF033","label":"Windows"}],"Version":"9.0.0.3;9.0.0.2;9.0.0.1;8.5.5.9;8.5.5.8;8.5.5.7;8.5.5.6;8.5.5.5;8.5.5.4;8.5.5.3;8.5.5.2;8.5.5.11;8.5.5.10;8.5.5.1;8.0.0.9;8.0.0.8;8.0.0.7;8.0.0.6;8.0.0.5;8.0.0.4;8.0.0.3;8.0.0.2;8.0.0.13;8.0.0.12;8.0.0.11;8.0.0.10;7.0.0.41;7.0.0.39;7.0.0.37;7.0.0.35;7.0.0.33;7.0.0.43;9.0.0.4;8.5.5.12","Edition":"Network Deployment","Line of Business":{"code":"LOB45","label":"Automation"}}]

Problems (APARS) fixed
PI82630

Was this topic helpful?

Document Information

Modified date:
15 June 2018

UID

swg24043870

Tips