Fixes are available
APAR status
Closed as program error.
Error description
A Log file may be created with overly permissive protection, potentially exposing sensitive data.
Local fix
Problem summary
Fix CVE-2018-14348 as it pertains to log files.
Problem conclusion
The fix will be in 7.6.0.18 & 2018.4.1.9
Temporary fix
Comments
APAR Information
APAR number
IT30947
Reported component name
DATAPOWER
Reported component ID
DP1234567
Reported release
760
Status
CLOSED PER
PE
NoPE
HIPER
NoHIPER
Special Attention
NoSpecatt / Xsystem
Submitted date
2019-11-14
Closed date
2019-11-14
Last modified date
2019-12-12
APAR is sysrouted FROM one or more of the following:
APAR is sysrouted TO one or more of the following:
Fix information
Fixed component name
DATAPOWER
Fixed component ID
DP1234567
Applicable component levels
R760 PSY
UP
[{"Line of Business":{"code":"LOB45","label":"Automation"},"Business Unit":{"code":"BU053","label":"Cloud & Data Platform"},"Product":{"code":"SS9H2Y","label":"IBM DataPower Gateways"},"Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"760"}]
Document Information
Modified date:
27 September 2021