IBM Support

PH39418:Multiple Vulnerabilities in Apache Commons Compress affect WebSphere Application Server Liberty (CVE-2021-33517, CVE-2021-36090)

Download


Downloadable File

Abstract

Multiple Vulnerabilities in Apache Commons Compress affect WebSphere Application Server Liberty (CVE-2021-33517 CVSS 5.5, CVE-2021-36090 CVSS 7.5)

Download Description

PH39418 resolves the following problem:

ERROR DESCRIPTION:

Multiple Vulnerabilities in Apache Commons Compress affect WebSphere Application Server Liberty (CVE-2021-33517 CVSS 5.5, CVE-2021-36090 CVSS 7.5)

PROBLEM SUMMARY:

Multiple Vulnerabilities in Apache Commons Compress affect WebSphere Application Server Liberty (CVE-2021-33517 CVSS 5.5, CVE-2021-36090 CVSS 7.5)

PROBLEM CONCLUSION:

Confidential for (CVE-2021-33517 CVSS 5.5, CVE-2021-36090 CVSS 7.5).

The fix for this APAR is targeted for inclusion in Liberty 21.0.0.10.

For more information, see 'Recommended Updates for WebSphere Application Server':
http://www.ibm.com/support/docview.wss?rs=180&uid=swg27004980

Prerequisites

None

Installation Instructions

Review the readme.txt for detailed installation instructions.

URL SIZE(Bytes)
21.0.0.9 Archive readme file 2469
Liberty IM readme file 2419
21.0.0.6 Archive readme file 2469

Download Package

 
IMPORTANT NOTE:
WebSphere Application Server and Liberty fix access requires S&S Entitlement in 2021. Use properly registered IDs to download the fixes in this table. 
DOWNLOAD RELEASE DATE SIZE(Bytes)

DOWNLOAD Options

What is Fix Central(FC)?

21.0.0.9-WS-WLP-IFPH39418 15 September 2021 2283247 FC
21.0.0.6-WS-WLP-IFPH39418 15 September 2021 2282544 FC
21009-wlp-archive-IFPH39418 15 September 2021 2221787 FC
21007-wlp-archive-IFPH39418 30 September 2021 1500482 FC
21006-wlp-archive-IFPH39418 15 September 2021 2221178 FC
20006-wlp-archive-FPH39418
24 September 2021 2184173 FC

Problems Solved

PH39418

On

Technical Support

Contact IBM Support at https://www.ibm.com/software/mysupport/s/ or 1-800-IBM-SERV (US only).

Document Location

Worldwide

[{"Business Unit":{"code":"BU053","label":"Cloud \u0026 Data Platform"},"Product":{"code":"SSEQTP","label":"WebSphere Application Server"},"Component":"General","Platform":[{"code":"PF014","label":"iOS"},{"code":"PF035","label":"z\/OS"},{"code":"PF010","label":"HP-UX"},{"code":"PF027","label":"Solaris"},{"code":"PF002","label":"AIX"},{"code":"PF012","label":"IBM i"},{"code":"PF016","label":"Linux"},{"code":"PF017","label":"Mac OS"},{"code":"PF033","label":"Windows"}],"Version":"21.0.0.6;21.0.0.9","Edition":"Base","Line of Business":{"code":"LOB36","label":"IBM Automation"}}]

Document Information

Modified date:
30 September 2021

UID

ibm16489503