IBM Support

Readme for Cloud Pak for Business Automation 21.0.1 IF007

Fix Readme


Abstract

The following document is the documentation for IBM Cloud Pak for Business Automation 21.0.1 IF007.
It includes the CASE package download, installation information, and the list of APARs that are resolved in this interim fix.

Content

Readme file for: IBM Cloud Pak® for Business Automation
Product Release: 21.0.1
Update Name: 21.0.1 IF007
Fix ID: 21.0.1-WS-CP4BA-IF007
Publication Date: 26 Nov 2021
Last modified date: 01 Dec 2021

Contents

Prerequisites and supersedes

  • This interim fix supersedes all prior interim fixes for CP4BA 21.0.1.

Components impacted

Before installation

Ensure that you take regular backups of any databases associated with the environment.

Installing the interim fix

Cloud Pak for Business Automation 21.0.1 interim fixes are released to the v21.1 operator channel. If your environment has access to IBM entitled registry and has an automatic v21.1 channel subscription then enterprise installations are upgraded automatically. This upgrade generally occurs when the interim fix is released. Once the operator is upgraded, it triggers rolling updates for all the pods it manages to ensure they are updated to the appropriate version to match the operator.
Important: If you used any individual image tag settings in your CP4BA CR, it could prevent the operator from updating the images to the appropriate version. Ensure that you remove any of these settings for an enterprise installation when you upgrade.
The CASE package associated with this interim fix is ibm-cp-automation-3.0.7.tgz.

Depending on the current setup and state of your existing environment, there are various manual actions that might be required. The following scenarios cover what actions might be needed for a particular setup.
  • Scenario 1: You are using a demo installation.
    Actions: Demo environments do not support upgrades. Although you can use the interim fix content, install a new demo environment and use the CASE package from this interim fix.
  • Scenario 2: Your installation is earlier than 21.0.1 .
    Actions: If you are using a version earlier than 21.0.1, then you must upgrade first. To upgrade your environment, follow the "Upgrading automation containers" instructions.
    When you perform the upgrade, you can substitute the CASE package from this interim fix for the 21.0.1 CASE package while you follow the instructions.
  • Scenario 3: You are using an air gapped environment.
    Actions: To upgrade a 21.0.1 air gapped environment, you must first mirror all the new images to your internal registry. Follow the steps in "Setting up a mirror image registry", although be sure to use the CASE package from this interim fix.
    Once the images are mirrored, the automatic channel subscription completes the upgrade.
  • Scenario 4: Your v21.1 channel subscription is set to manual.
    Actions: If your channel subscription is set to manual, then you must approve any operator upgrades.
      a. Select the CP4BA operator from the OCP web console under Operators>Installed Operators.
      b. Go to the subscription tab for the operator.
      c. Trigger the operator update.
    Once the operator is updated, it triggers the upgrade of the other CP4BA images.

Performing the necessary tasks after installation

Review the installation
It is recommended that you review the CR yaml status section and operator logs after the upgrade to ensure there are no failures preventing your pods from upgrading.
oc get icp4acluster -o yaml > CP4BAconfig.yaml
oc logs deployment/ibm-cp4a-operator -c operator > operator.log
If you are interested in verifying the expected image digest for a particular image, then you can review the ibm-cp-automation\inventory\cp4aOperatorSdk\resources.yaml file in the CASE package. This file has a listing of the images managed by the CP4BA operator and their expected digest for this particular interim fix level.

Uninstalling

There is no procedure to uninstall the interim fix.

List of Fixes

APARs fixed by this interim fix are listed in the following tables. Fixes from previous interim fixes are also included in this interim fix. Consult the Related links section for fix information of previous interim fixes.
The columns are defined as follows: 
Column title Column description
APAR The defect number
Title A short description of the defect
Sec. A mark indicates a defect related to security
Cont. A mark indicates a defect specific to the Cloud Pak integration of the component
B.I. A mark indicates the fix has a business impact. Details are found in the title column or the APAR document
General
APAR Title Sec. Cont. B.I.
N/A
Cloud Pak for Business Automation delivers container images that include operating system level and other open source libraries. Vulnerabilities (CVEs) for these libraries are published regularly.
This interim fix includes fixes for these libraries to address:
CVE-2021-21290, CVE-2021-21295, CVE-2021-21409, CVE-2020-28500, CVE-2021-23337, CVE-2021-23437, PRISMA-2021-0088, PRISMA-2021-0134, PRISMA-2021-0037, CVE-2020-35448, CVE-2020-27828, CVE-2021-26926, CVE-2021-26927, CVE-2021-3272, CVE-2018-20845, CVE-2018-20847, CVE-2018-5727, CVE-2018-5785, CVE-2019-12973, CVE-2020-15389, CVE-2020-27814, CVE-2020-27823, CVE-2020-27824, CVE-2020-27842, CVE-2020-27843, CVE-2020-27845, CVE-2021-3575, CVE-2018-25009, CVE-2018-25010, CVE-2018-25012, CVE-2018-25013, CVE-2018-25014, CVE-2020-36330, CVE-2020-36331, CVE-2020-36332, CVE-2021-20325, CVE-2021-20270, CVE-2021-27291, CVE-2021-31535, CVE-2021-22876, CVE-2021-22898, CVE-2021-22924, CVE-2021-22925, CVE-2021-22946, CVE-2021-22947, CVE-2019-13750, CVE-2019-13751, CVE-2019-19603, CVE-2019-5827, CVE-2020-13435, CVE-2021-20266, CVE-2021-3778, CVE-2021-3796, CVE-2021-28153, CVE-2021-3200, CVE-2021-33928, CVE-2021-33929, CVE-2021-33930, CVE-2021-33938, CVE-2021-3426, CVE-2019-17594, CVE-2019-17595, CVE-2021-36084, CVE-2021-36085, CVE-2021-36086, CVE-2021-36087, CVE-2021-27645, CVE-2021-33574, CVE-2021-35942, CVE-2021-3580, CVE-2019-18218, CVE-2019-20838, CVE-2020-14155, CVE-2021-33560, CVE-2021-3445, CVE-2020-24370, CVE-2020-12762, CVE-2021-3572, CVE-2021-3520, CVE-2021-41202, CVE-2021-41206, CVE-2021-41207, CVE-2021-41208, CVE-2021-41209, CVE-2021-41213, CVE-2021-41216, CVE-2021-41218, CVE-2021-41220, CVE-2021-41221, CVE-2021-41222, CVE-2021-41225, CVE-2021-41227, CVE-2021-41228, CVE-2020-13558, CVE-2020-24870, CVE-2020-27918, CVE-2020-29623, CVE-2020-36241, CVE-2021-1765, CVE-2021-1788, CVE-2021-1789, CVE-2021-1799, CVE-2021-1801, CVE-2021-1844, CVE-2021-1870, CVE-2021-1871, CVE-2021-21775, CVE-2021-21779, CVE-2021-21806, CVE-2021-28650, CVE-2021-30663, CVE-2021-30665, CVE-2021-30682, CVE-2021-30689, CVE-2021-30720, CVE-2021-30734, CVE-2021-30744, CVE-2021-30749, CVE-2021-30758, CVE-2021-30795, CVE-2021-30797, CVE-2021-30799, CVE-2021-21685, CVE-2021-21686, CVE-2021-21687, CVE-2021-21688, CVE-2021-21689, CVE-2021-21690, CVE-2021-21691, CVE-2021-21692, CVE-2021-21693, CVE-2021-21694, CVE-2021-21695, CVE-2021-22930, CVE-2021-22931, CVE-2021-22939, CVE-2021-22940, CVE-2021-3672, GHSA-xx4c-jj58-r7x6, CVE-2018-16869, CVE-2020-18032, CVE-2020-10001, CVE-2020-13529
Previous interim fixes will have included fixes which are also addressed with this interim fix. Consult the Related links section for readmes of previous interim fixes, at the bottom of this document.
 X X

Back to top

Cloud Pak for Business Automation Operator
APAR Title Sec. Cont. B.I.
IO28608
CANNOT CONVERT WORD TO PDF WHICH CONTAINS CHINESE CHARACTERS
JR64390 AUTOMATION DOCUMENT PROCESSING (ADP) FAILS TO DEPLOY IF A PASSWO RD FIELD HAS A SPECIAL CHARACTER IN IBM-ADP-SECRET SECRET

Back to top

Automation Document Processing
APAR Title Sec. Cont. B.I.
N/A N/A

Back to top

Automation Decision Services
APAR Title Sec. Cont. B.I.
N/A N/A

Back to top

APAR Title Sec. Cont. B.I.
N/A N/A

Back to top

Business Automation Insights
APAR Title Sec. Cont. B.I.
N/A N/A

Back to top

Business Automation Navigator
APAR Title Sec. Cont. B.I.
N/A
N/A

Back to top

Business Automation Studio
APAR Title Sec. Cont. B.I.
N/A N/A

Back to top

Business Automation Workflow including Automation Workstream Services
APAR Title Sec. Cont. B.I.
JR64059 SECURITY VULNERABILITY - CVE-2021-29878 - CASE BUILDER IN WORKFLOW CENTER IS VULNERABLE TO CROSS SITE SCRIPTING X X

Back to top

Enterprise Records
APAR Title Sec. Cont. B.I.
N/A
N/A

Back to top

FileNet Content Manager
APAR Title Sec. Cont. B.I.
N/A N/A

Back to top

Operational Decision Management
APAR Title Sec. Cont. B.I.
RS03856 LOCK ICON ON DECISION TABLE VALUES DISPLAY ISSUE IN BUSINESS CONSOLE
RS03831 "AN UNEXPECTED ERROR OCCURRED" POPUP WHILE DISPLAYING A PREVIEW OF A SIMULATION CONFIGURATION IN THE BUSINESS CONSOLE
RS03818 DECISION TABLE EXPORT TO EXCEL FAILS IF CELL CONTAINS AN OPERATOR AND NO VALUE
RS03797 WHEN USING REAL NUMBERS THE IMPORT OF AN EXCEL DECISION TABLE IS BREAKING THE NUMBER FORMAT
RS03756 RES CONSOLE DIAGNOSTIC MAY FAIL
RS03823 SOMETIMES DECISIONSERVICE APPLICATION MAY FAIL TO START
RS03830 RES CONSOLE PAGES ARE DISPLAYED IN 2 STEPS
RS03849 RULESET IS NOT UPDATED WHEN "USE BASE VERSION NUMBERS" POLICY IS SELECTED
RS03851 RES-DEPLOY-XOM ANT TASK REMOVES MANAGED URIS REFERENCE

Back to top

User Management Service
APAR Title Sec. Cont. B.I.
N/A N/A

Back to top

Known Limitations

Document change history

  • 26 Nov 2021: Initial publish.
  • 30 Nov 2021: Updated list of CVE fixed
  • 01 Dec 2021: updated APAR list for Cloud Pak for Business Automation Operator

    • [{"Type":"MASTER","Line of Business":{"code":"LOB45","label":"Automation"},"Business Unit":{"code":"BU059","label":"IBM Software w\/o TPS"},"Product":{"code":"SS2JQC","label":"IBM Cloud Pak for Automation"},"ARM Category":[{"code":"a8m0z0000001gWWAAY","label":"CloudPak4Automation Platform"}],"ARM Case Number":"","Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"All Versions"}]

    Document Information

    Modified date:
    01 December 2021

    UID

    ibm16517704

    Page Feedback