Download
Downloadable File
| File link | File size | File description |
|---|---|---|
Abstract
Multiple Vulnerabilities in Apache HttpComponents and HttpCommons affect WebSphere Application Server (CVE-2015-5262 CVSS 5.3 and more)
Download Description
 To resolve the CVEs addressed in this document, you must either install a fix pack that includes both PH34501 and PH34944 or install interim fixes for both PH34501 and PH34944.  |
PH34501 and PH34944 resolve the following problem:
ERROR DESCRIPTION:
Multiple Vulnerabilities in Apache HttpComponents and HttpCommons affect WebSphere Application Server (CVE-2015-5262 CVSS 5.3 and more)
PROBLEM SUMMARY:
Multiple Vulnerabilities in Apache HttpComponents and HttpCommons affect WebSphere Application Server:
- CVE-2015-5262
- CVE-2014-3577
- CVE-2012-6153
- CVE-2011-1498
PROBLEM CONCLUSION:
Confidential for CVE-2015-5262 CVSS 5.3 and more.
The fix for this APAR is currently targeted for inclusion in fix packs 8.5.5.20 and 9.0.5.8.
Please refer to the Recommended Updates page for delivery information:
http://www.ibm.com/support/docview.wss?rs=180&uid=swg27004980
Please refer to the Recommended Updates page for delivery information:
http://www.ibm.com/support/docview.wss?rs=180&uid=swg27004980
Prerequisites
None
Installation Instructions
Review the readme.txt for detailed installation instructions.
PH34501
| URL | SIZE(Bytes) |
|---|---|
| PH34501 V90 Readme | 2516 |
| PH34501 V85 Readme | 2489 |
| PH34501 V80 Readme | 2462 |
PH34944
| URL | SIZE(Bytes) |
|---|---|
| PH34944 V90 Readme | 2340 |
| PH34944 V85 Readme | 2454 |
| PH34944 V80 Readme | 2371 |
Download Package
|
IMPORTANT NOTE:
|
WebSphere Application Server and Liberty fix access requires S&S Entitlement in 2021, use properly registered IDs to download fixes for WebSphere Application Server below.
|
| To resolve the CVEs addressed in this document, you must either install a fix pack that includes both PH34501 and PH34944 or install interim fixes for both PH34501 and PH34944. |
PH34501
| DOWNLOAD | RELEASE DATE | SIZE(Bytes) |
APPLICABLE
fixpacks(s)
|
DOWNLOAD Options |
|---|---|---|---|---|
| 9.0.0.4-WS-WAS-IFPH34501 | 11 May 2021 | 2555079 | 9.0.0.4 through 9.0.5.7 | FC |
| 8.5.5.18-WS-WAS-IFPH34501 | 11 May 2021 | 2536022 | 8.5.5.18 through 8.5.5.19 | FC |
| 8.0.0.15-WS-WAS-IFPH34501 | 11 May 2021 | 2533618 | 8.0.0.15 | FC |
PH34944
| DOWNLOAD | RELEASE DATE | SIZE(Bytes) |
APPLICABLE
fixpacks(s)
|
DOWNLOAD Options |
|---|---|---|---|---|
| 9.0.0.0-WS-WAS-IFPH34944 | 06 May 2021 | 1950076 | 9.0.0.0 through 9.0.5.7 | FC |
| 8.5.5.14-WS-WAS-IFPH34944 | 06 May 2021 | 1933588 | 8.5.5.14 through 8.5.5.19 | FC |
| 8.0.0.15-WS-WAS-IFPH34944 | 06 May 2021 | 3639445 | 8.0.0.15 | FC |
Problems Solved
PH34501 PH34944
On
Technical Support
Contact IBM Support at https://www.ibm.com/software/mysupport/s/ or 1-800-IBM-SERV (US only).
Document Location
Worldwide
[{"Type":"SW","Line of Business":{"code":"LOB45","label":"Automation"},"Business Unit":{"code":"BU053","label":"Cloud & Data Platform"},"Product":{"code":"SSEQTP","label":"WebSphere Application Server"},"ARM Category":[{"code":"a8m0z0000001j54AAA","label":"Download Documents - L3 Publishing Category"}],"ARM Case Number":"","Platform":[{"code":"PF002","label":"AIX"},{"code":"PF010","label":"HP-UX"},{"code":"PF012","label":"IBM i"},{"code":"PF016","label":"Linux"},{"code":"PF027","label":"Solaris"},{"code":"PF033","label":"Windows"},{"code":"PF035","label":"z\/OS"}],"Version":"8.0.0;8.5.5;9.0.0"}]
Problems (APARS) fixed
Problems (APARS) fixed
Was this topic helpful?
Document Information
Modified date:
13 May 2021
UID
ibm16450441