Download
Downloadable File
| File link | File size | File description |
|---|---|---|
Abstract
Lists of fixes in the update packages for the IBM DataPower Gateway 10.5.x continuous delivery (CD) stream. The CD stream is different from the 10.5.0.x long-term support (LTS) release stream.
Download Description
Update packages are located in Fix Central, Passport Advantage, or the Container Registry.
In IBM Documentation, you can find information about new features, changed features, restrictions, and limitations.
Important
- Before you install any package, review DataPower® Knowledge Collection on firmware updates.
- For more information about how to download DataPower® packages, see Fix download method.
- To download from Fix Central, go to the Fix Central.
- To download from Passport Advantage, go to the Passport Advantage Online for customers.
10.5.4
Release date: 29 March 2024
Last modified: 29 March 2024
Status: Available
APAR | Description |
| IT42693 | IMPROVE DATAPOWER HOST VALIDATION LOGGING |
| IT44150 | GW SERVICE RESTART DURING A DRR CAUSES CLEARING ISSUE WITH EXTENSION DEPLOYER |
| IT44405 | DATAPOWER ON CONTAINER PLATFORM CANNOT DECRYPT MASKED PASSWORDS |
| IT44537 | DATAPOWER MATCH ACTION MIGHT NOT ESCAPE URIS PROPERLY WHEN USING BACKSLASH CHARACTERS |
| IT44613 | SOME INTERNAL REQUESTS OF NEW UI ARE WRONGLY CONSIDERED TO COME FROM IP ADDRESS 127.0.0.1 |
| IT44628 | MOVE CONFIGURATION DOES NOT WORK IN NEW UI |
| IT44743 | APIC GATEWAY EXTENSION MODIFYING OR CREATING FRONT PROTOCOL HANDLER TO API GATEWAY SERVICE CAN HANG |
| IT44806 | TCP CONNECTION TEST DOES NOT ALLOW HOST ALIAS |
| IT44816 | APIC GATEWAY EXTENSION WITH SQL DATA SOURCE MIGHT CAUSE WATCHDOG |
| IT44823 | DATAPOWER MQ V9+ QUEUE MANAGER MIGHT FAIL WITH MQRC_SSL_INITIALIZATION_ERROR (RC 2393) |
| IT44917 | DATAPOWER SIDECAR MIGHT NOT SHUTDOWN CORRECTLY CAUSING A SYSTEM RELOAD |
| IT44947 | DATAPOWER NEW UI SHOULD SUPPORT FILE NAME PATHS WITH JUST A COLON SEPARATOR BETWEEN DIRECTORY AND FILE NAME |
| IT44964 | DATAPOWER MIGHT RESTART WHEN DELETING DOMAIN |
| IT44975 | KAFKA HANDLER IS IN SLOW PERFORMANCE AFTER THE QUEUE IS EMPTY |
| IT44993 | XML MANAGEMENT VIEWCERTIFICATEDETAILS NOT WORKING WHEN THE CERTIFICATE HAS A PASSWORD VIA THE PASSWORD FIELD |
| IT45008 | IBM MQ V9+ CANNOT SET RESPONSE HEADER THROUGH XSLT OR GWS PROPERLY |
| IT45086 | DATAPOWER MIGHT RELOAD IF V5E IN APIC V10 IS APPLIED |
| IT45129 | APIGW RESPONSE CACHE STOPS WORKING AFTER CACHING INITIAL REQUEST |
| IT45133 | APIC USER-DEFINED POLICY UPLOAD MIGHT FAIL IF FILES SECTION IS EMPTY |
| IT45134 | APIC GATEWAYSCRIPT MIGHT NOT RELEASE ALL MEMORY WHEN WRITING TO SESSION OUTPUT WHEN USING APIM MODULE |
| IT45146 | BASIC AUTHENTICATION MIGHT BE REJECTED WITH AN HTTP 401 ERROR FOR LARGER PAYLOADS |
| IT45159 | DATAPOWER MEMORY USAGE GROWTH WHEN ACCEPTING HTTP/2 TRAFFIC AS THE SERVER |
| IT45166 | MEMORY LEAK WHEN USING DENY LIST WITH LOCAL MEMORY IN TOKEN MANAGEMENT SERVICE |
| IT45180 | DATAPOWER LDAP CONNECTION POOL ENTRIES PAGE SHOWS INCORRECT PORT NUMBER |
| IT45191 | DATAPOWER RMI MIGHT RETURN _LINKS CONTENT ON AUTHENTICATION ERROR |
| IT45192 | DATAPOWER NEW UI OBJECT STATUS PAGE MIGHT NOT LOAD |
| IT45210 | RESTART IF READING NULL FOR APIM.READINPUTASBUFFER IN ERROR RULE |
| IT45227 | API SWAGGER FILE MIGHT BE DELETED WHEN THE API CONNECT GATEWAY SERVICE IS RESTARTED |
| IT45229 | GATEWAY-PEERING DATA INACCESSIBLE AFTER UPGRADE |
| IT45246 | DATAPOWER RESTARTS DUE TO BAD MIME MESSAGE |
| IT45254 | DATAPOWER MIGHT RESTART AFTER FLUSH-ANALYTICS-ENDPOINT-BUFFER COMMAND |
| IT45273 | DATAPOWER PROBE MIGHT CAUSE RESTART ON CAPTURE |
| IT45276 | API GATEWAY MIGHT INTRODUCE UNEXPECTED DELAY IN API ROUTING POLICY WHEN PROCESSING REQUESTS WITH LARGE FILES |
| IT45321 | DATAPOWER MIGHT RESTART WHEN HANDLING LDAP HEALTH CHECKS |
| IT45322 | DATAPOWER MIGHT RESTART WHEN USING SET-VAR ACTION |
| IT45323 | MEDIUM SEVERITY VULNERABILITY IN NODE.JS MSGPACKR MODULE (CVE-2023-52079) |
| IT45324 | APIC COUNT LIMITS TO BE AUTO-REPLENISHED CORRECTLY |
| IT45330 | API GATEWAY: UNABLE TO GENERATE CORRECT CONFIGURATIONS IF SWAGGER CONTAIN EQUIVALENT CASE-INSENSITIVE PATHS |
| IT45337 | MEDIUM SEVERITY VULNERABILITY IN IBM JRE (CVE-2023-22081, CVE-2023-5676) |
| IT45340 | OAI3 FORM DATA IS NOT BEING RECOGNIZED |
| IT45341 | FOR OAI3, THE PRODUCES AND SOAPELEMENTNAME CONFIG INFORMATION IS GENERATED INCORRECTLY |
| IT45342 | SCALE RATE LIMITS DO NOT ENFORCE MULTIPLE VALUES |
| IT45347 | WHEN USING PIV AUTHENTICATION, LOGIN AND LOGOUT BEHAVIOR LOOPS |
| IT45355 | UPDATE OPENSSL LIBRARY TO ADDRESS CVE-2023-567 |
| IT45357 | UPDATE OPENSSH LIBRARY TO ADDRESS CVE-2023-48795 |
| IT45359 | MQ V9+ HANDLER CANNOT GET THE CORRECT SIZE OF THE PARSED INPUT MESSAGE WITH VAR://SERVICE/INPUT-SIZE |
| IT45360 | PROBE MIGHT NOT CAPTURE TRANSACTIONS |
| IT45367 | MEDIUM SEVERITY VULNERABILITY IN GO (CVE-2023-39326) |
| IT45368 | DATAPOWER UNEXPECTEDLY RESTARTS AFTER DELETING DOMAIN WITH AMQP HANDLER |
| IT45400 | APIC RMI REQUEST FOR POLICY PARAMETERS MIGHT RETURN INCORRECT DATA |
| IT45401 | DATAPOWER SOURCE-HTTPS MAXIMUM HEADER LENGTH NOT ENFORCED FOR HTTP/2 |
| IT45404 | APIC LOG POLICY NOT BEHAVING CORRECTLY |
| IT45405 | NEW UI DOES NOT WARN USER ABOUT REBOOT NEEDED AFTER CONFIGURATION CHANGES |
| IT45406 | DATAPOWER DOMAIN CANNOT BE DELETED AFTER APIC CONFIGURATION IS LOADED |
| IT45407 | APIC SUBSCRIBER STATUS MIGHT NOT DISPLAY |
| IT45408 | UI SHOULD NOT OFFER ISCSI OPTION FOR ERROR REPORT SETTINGS |
| IT45409 | DATAPOWER MIGHT RESTART WHEN LOGGING AFTER LOGGING TARGET ADDITIONS OR DELETIONS |
| IT45418 | ACTIVE USERS STATUS INCORRECTLY SHOWS EPHEMERAL SESSIONS |
| IT45419 | APIC UI TRACING OPTION MIGHT GET EMPTY RESPONSE AFTER RECEIVING TOO MANY TRANSACTIONS. |
| IT45441 | APIC CUSTOM POLICY DEPLOY FAILURE LEADS TO CONFUSING ERRORS IN LOG |
| IT45455 | APIGW DOES NOT PROCESS MULTIPART MESSAGE WITH BAD BOUNDARY CORRECTLY |
| IT45495 | DATAPOWER AND APIC GATEWAY VULNERABILITY IN JRE CVE-2024-20952, CVE-2024-20918, CVE-2024-20921, CVE-2023-33850 |
| IT45576 | CRITICAL SEVERITY VULNERABILITY IN NODE.JS |
| IT45579 | PROBE SHOULD NOT RETURN PROBE HEADER IF TRANSACTION IS NOT CAPTURED |
| IT45580 | HTTP/2 HANDLER DOES NOT HAVE IDLE TIMEOUT PARAMETER |
| IT45598 | PROBE CAPTURE COUNT SHOULD NOT INCREASE IF TRANSACTIONS ARE NOT CAPTURED |
| IT45664 | DATAPOWER MQ TLS SNI SETTING NOT TAKING EFFECT |
| IT45665 | APIC API COLLECTION CACHE CAPACITY SETTING IS NOT TAKING EFFECT |
| IT45666 | APIC GATEWAY MIGHT RESTART IF THE CLUSTER MODE GATEWAY PEERING IS MODIFIED WHILE PREVIOUS MODIFICATION IS BEING EXECUTED. |
| IT45667 | UPDATE NODEJS LIBRARY TO ADDRESS CVE-2024-22025 |
| IT45668 | UPDATE OPENSSH LIBRARY TO ADDRESS CVE-2023-48795 |
| IT45669 | UPDATE OPENSSL LIBRARY TO ADDRESS CVE-2024-0727 |
| IT45698 | APIC GATEWAY MIGHT RESTART IF ARRAY IS USED IN QUERY PARAMETERS |
| IT45699 | GATEWAY EXTENSION PUSH WITH POLICY TYPE DP-IMPORT DOES NOT UPDATE THE CHANGES. |
| IT45750 | PROBE DATA MIGHT NOT BE CAPTURED DUE TO INCORRECTED COUNTING OF ALLOWED RECORDS |
| IT45751 | EXTENSION FUNCTION "CHECK-APIGW-STYLESHEET-CACHE-ENTRY" MIGHT RETURN 0 ON CACHED STYLESHEETS. |
| IT45764 | AN EBMS MESSAGE PROCESSING ERROR IS GENERATED WHEN STRICT COMPILE OPTION IS ENABLED |
| IT45774 | MEDIUM SEVERITY VULNERABILITY IN GOLANG (CVE-2023-45289) |
| IT45775 | UNEXPECTED RECORD COUNT CHECK AND LOGGING FOR PROBE-SETTINGS |
| IT45776 | TYPE STRING AND FORMAT PASSWORD OF QUERY PARAMETER SHOULD BE HIDDEN WITH * CHARACTER |
| IT45777 | MEDIUM SEVERITY VULNERABILITY IN GOLANG CRYPT/X509 (CVE-2024-24783) |
| IT45778 | MISSING FIELD VALUE AND CUSTOMIZED FILTER FOR API SUBSCRIBER STATUS |
| IT45813 | DATAPOWER MIGHT RESTART WHEN SHOW VIRTUAL OR VIRTUAL STATUS IS RUN |
| IT45829 | DATAPOWER HTTP/2 SERVER UNEXPECTEDLY THROWS TLS ERRORS |
| IT45830 | REMAINING ASSEMBLY COUNT LIMIT MIGHT GET UNSYNCED WHEN RATE LIMITS USE CLUSTER-MODE GATEWAY PEERING |
10.5.3
Release date: 8 December 2023
Last modified: 8 December 2023
Status: Available
APAR | Description |
| IT43302 | GATEWAY PEERING USING TLS MIGHT LEAK MEMORY |
| IT43425 | DATAPOWER KAFKA CLUSTER NAME MUST BE LIMITED TO 60 BYTES OR LESS INCLUDING THE DOMAIN NAME |
| IT43765 | DATAPOWER MIGHT RESTART WHEN CREATING ISAM/TAM OBJECTS WITH XML MANAGEMENT OR REST MANAGEMENT INTERFACES |
| IT44026 | GETTING ENTRIES IN THE FAILURE NOTIFICATION STATUS WITH REASON RESTART AFTER UPGRADE TO 10.0.1.13. |
| IT44046 | APIGW MIGHT RESTART IF MIME MESSAGE HAS NO BODY |
| IT44141 | API CONNECT GATEWAY SERVICE MIGHT RESTART IF MISCONFIGURED |
| IT44212 | ALLOCATED MEMORY DOES NOT MATCH CONFIGURED MEMORY FOR A TENANT |
| IT44360 | XPATH ROUTING MAP DOES NOT LOG CORRECTLY |
| IT44427 | DATAPOWER MIGHT RESTART IF DNS REQUEST HAS A TIMEOUT |
| IT44453 | URL SHOULD NOT BE ESCAPED IN ASSEMBLY-USER-SECURITY ACTIONS PROPERTIES |
| IT44461 | DATAPOWER MIGHT RESTART WHEN GENERATING ERROR REPORT ON STARTUP |
| IT44467 | ACCESSING THE SYSTEM LOGS IN B2B DOMAIN CAUSING INSTABILITY IN NEW UI AND REPORTING BROWSER OUT OF MEMORY ERRORS. |
| IT44468 | DATAPOWER CONFIGURATION SEQUENCE FEATURE MIGHT RESTART THE DEVICE, IF THE DIRECTORY STRUCTURE IS LARGE |
| IT44487 | WSDL ZIP ERROR |
| IT44506 | NEW UI IN DATAPOWER IS MISSING ILMT SCANNER |
| IT44509 | FOR API GATEWAY SOAP REQUESTS MIGHT FAIL WITH 404 ERRORS BECAUSE DOCUMENT SIZE LIMIT EXCEEDS IN THE API ROUTING ACTION |
| IT44514 | DataPower GatewayScript indexOf and lastIndexOf functions fail on a Buffer object |
| IT44515 | IN A MULTI-GATEWAY CLUSTER, A COLLECTION MIGHT BE ERRONEOUSLY DELETED FROM ONE GATEWAY |
| IT44538 | DATAPOWER MIGHT UNEXPECTEDLY RELOAD WHEN COMPLETING A DISPATCHED TASK |
| IT44544 | TENANT MANAGEMENT INTERFACES MIGHT BE INACCESSIBLE AFTER A SECURE RESTORE |
| IT44556 | RATE LIMIT OBJECT IN ANALYTICS TO USE THE SHORTNAME |
| IT44557 | APIC RATE LIMIT MIGHT THROW UNEXPECTED RATE LIMIT EXCEEDED ERRORS |
| IT44558 | DATAPOWER MIGHT RELOAD WHILE A CSPPASSWORDALIAS IS CONFIGURED FOR A MQ V9+ QUEUE MANAGER |
| IT44591 | API GATEWAY TEMPORARILY LOSES ASSEMBLY RATE/BURST LIMITS ON PUBLISH OR CONFIGURATION CHANGE |
| IT44616 | DATAPOWER SFTP CLIENT MIGHT RESTART DEVICE IF SERVER HAS LONG PATH NAMES |
| IT44631 | SYSTEMS LOG CANNOT PROPERLY DISPLAY GB18030 CHARACTERS IN THE UI |
| IT44650 | DATAPOWER MIGHT RESTART DURING INSTALLATION WIZARD IF SHELL DISCONNECTS |
| IT44665 | DATAPOWER KEYGEN CLI COMMAND USES WRONG DEFAULT FOR SHA DIGEST |
| IT44716 | POTENTIAL DENIAL OF SERVICE VULNERABILITY IN OPENSSL (CVE-2023-4807) |
| IT44732 | APIC PARAMETER INLINE VARIABLE SUBSTITUTION MIGHT NOT RELEASE ALL MEMORY USED |
| IT44745 | NEW UI: EVENT FILTERS IN LOG TARGET DO NOT SHOW THE TEXT FOR MESSAGES. |
| IT44748 | RAPID RESET DDOS VULNERABILITY (CVE-2023-44487 & CVE-2023-39325) |
| IT44752 | WRONG PAYLOAD MIME TYPE IN OUTGOING EBMS3 GZIP MESSAGES |
| IT44766 | DATAPOWER MIGHT RESTART WHEN USING HTTP/2 |
| IT44768 | DUPLICATE X-GLOBAL-TRANSACTION-ID HEADER RESPONDED TO THE CLIENT IF IT EXISTS IN THE REQUEST HEADER |
| IT44788 | GRAPHQL INCORRECT ARGUMENT TO BACKEND SERVER |
| IT44799 | APIM.SETVARIABLE FUNCTION FAILS WHEN THE VALUE IS THE RESULT OF A QUERYSTRING.PARSE FUNCTION |
| IT44803 | FIX THE RATELIMIT TOKEN FROM LAST INTERVAL TO CONSUME THE LAST REMAINING INSTEAD OF REJECTING. |
| IT44809 | NEW UI PROBE EXTENSION TRACE OMITS SOME TRANSACTIONAL DATA |
| IT44822 | DATAPOWER MIGHT RESTART IF ASSEMBLY LOG ACTION DOES NOT SPECIFY A LOG LEVEL |
| IT44826 | DATAPOWER MIGHT RELOAD WITH HTTP CLIENT TRAFFIC |
| IT44843 | APIC GATEWAY EXTENSION OR POLICY ZIP CREATED ON WINDOWS OS CANNOT BE IMPORTED TO THE GATEWAY |
| IT44844 | PROBE MIGHT NOT RELEASE ALL MEMORY WHEN STARTED AND THEN STOPPED |
| IT44845 | DATAPOWER OR APIC USE OF JSONATA $MATCH FUNCTION MIGHT CAUSE MEMORY GROWTH |
| IT44846 | USE OF $APICTX JSONATA FUNCTION MIGHT RESTART DATAPOWER |
| IT44861 | USER-DEFINED POLICY IN A MULTI-NODE CLUSTER MIGHT NOT BE ADVERTISED TO APIM |
| IT44874 | APIC GATEWAY SERVICE MIGHT LOG INCORRECT ERROR MESSAGES |
| IT44875 | DATAPOWER SCP FILE COPY COMMAND MIGHT LEAK INTERNAL RESOURCES CAUSING INABILITY TO CREATE OR ACCEPT NEW CONNECTIONS |
| IT44877 | DATAPOWER XML PARSER FAILS TO PARSE IF ENTITY REFERENCE HAS SPECIFIC SIZE IN RELATION TO INTERNAL BUFFERS |
| IT44903 | API CONNECT API RESULT ACTION MIGHT NOT RETURN ALL MEMORY IF THERE IS AN ERROR DURING THE TRANSACTION |
| IT44916 | PAYLOAD/DATA IS GETTING PRINTED IN ACTIVITY LOGS |
| IT44923 | MULTISTEP RULE CALLED FROM API GATEWAY CALLRULE FUNCTION DOES NOT PROPAGATE STATUS CODE AND REASON PHRASE |
| IT44953 | TLS PROFILE REPORTED TO GO DOWN AFTER A RESTART OF DATAPOWER GATEWAY. |
| IT44962 | OAI YAML WITHOUT COMPONENTS SECTION CAUSES TYPEERROR: CANNOT READ PROPERTIES OF UNDEFINED (READING SCHEMAS) |
| IT44963 | APIS NOT PUBLISHING AFTER UPGRADE ERROR: MAXIMUM CALL STACK SIZE EXCEEDED |
| IT44965 | INVALID JSONATA EXPRESSION IN EXTRACT POLICY MIGHT CAUSE DATAPOWER TO RESTART |
| IT44967 | DATAPOWER RMI CREATEPROBECAPTURE REQUEST MIGHT FAIL DUE TO DUPLICATE NAME |
| IT44969 | DATAPOWER MIGHT RESTART WHEN APIC ASSEMBLY LOG TRIES TO SEND NON-JSON DATA |
| IT44976 | TIMING WINDOW WHERE SOMEHOW PUBSUB RUNS PRIOR TO UPDATING THE SNAPSHOT |
| IT44978 | GATEWAYPEERINGCLUSTERSTATUS MIGHT NOT RELEASE ALL MEMORY |
| IT44979 | PROBE MAXIMUM CAPTURE COUNT LOWERED TO 1000 FROM 64K |
| IT44981 | API PROBE CAPTURE WITH REQUIRE DEBUG HEADER TRUE CAPTURES TRANSACTIONS THAT DO NOT HAVE THE CORRECT HEADER |
| IT44987 | POLICYTITLE PROPERTY OF ERROR OBJECT DOES NOT HAVE VALUE IN GLOBAL ERROR RULE |
| IT44988 | DATAPOWER STORE:ENCRYPT/DECRYPT.XSL FAILS TO COMPILE WHEN STRICT COMPILE OPTION IS SELECTED |
| IT44990 | CHANGE ORDERING OF API-RESULT IN GLOBAL FINALLY RULE TO ALLOW USERS TO SET CUSTOM HEADERS OR DATA |
| IT44991 | DATAPOWER AS4 MESSAGE WITH ENCRYPTED PAYLOAD IN SOAP BODY MIGHT FAIL TO DECRYPT ACCORDING TO SPECIFICATION |
| IT44992 | MODIFYING DATAPOWER GATEWAY PEERING OBJECTS MIGHT NOT CLOSE ALL EXISTING CONNECTIONS LEADING TO UNEXPECTED ERRORS |
| IT45033 | RESTARTING APIC-GW-SERVICE OR CHANGING ANALYTICS WHILE CATALOG UPDATES ARE PROCESSING MIGHT CAUSE UPDATES TO BE LOST |
| IT45034 | MEDIUM SEVERITY VULNERABILITY IN NODE.JS (CVE-2023-38552, CVE-2023-39333) |
| IT45039 | DATAPOWER MEMORY STATUS PROVIDER UPDATED FOR 10.5.3 |
| IT45057 | DATAPOWER API GATEWAY MIGHT RELOAD WHEN MULTIPLE ASSEMBLY-LOG POLICIES WITH GATHER-AND-SEND MODE ENABLED ARE ENFORCED IN ONE TRA |
| IT45065 | LOW SEVERITY VULNERABILITY IN REDIS (CVE-2023-45145) |
| IT45068 | MEDIUM SEVERITY VULNERABILITY IN NET-SNMP (CVE-2022-44792, CVE-2022-44793) |
| IT45213 | MEDIUM SEVERITY VULNERABILITY (CVE-2023-46177) |
| IT45493 | DATAPOWER B2B GATEWAY CPA FILE IMPORT FAILS DUE TO ADD AND WRITE PERMISSION |
10.5.2
Release date: 29 September 2023
Last modified: 29 September 2023
Status: Available
APAR | Description |
| IT43409 | REGISTRATION OF A SELF BALANCED SERVICE MIGHT FAIL |
| IT43445 | DATAPOWER USER ACCOUNT IS NOT LOCKED EVEN WHEN WRONG PASSWORD IS USED TOO MANY TIMES |
| IT43681 | DATAPOWER HTTP/2 DOES NOT ALLOW USER TO SET THE ':AUTHORITY' HEADER |
| IT43699 | DATAPOWER X3 APPLIANCES HAVE A POTENTIAL MEMORY ISSUE IN THE BMC CODES THAT MIGHT CAUSE THE BMC RESET ITSELF |
| IT43813 | AMQP CONNECTION HANDLING CAUSES UNEXPECTED RELOAD ON DATAPOWER |
| IT43814 | IN APIGW APIM.GETVARIABLE(REQUEST.PARAMETERS) SHOULD NOT RETURN PARAMETERS WHICH LOCATION IS HEADER |
| IT43839 | TOPIC STRINGS GREATER THAN 48 CHARACTERS LONG DO NOT WORK WITH DATAPOWER MQ V9+ CLIENT. |
| IT43850 | CHILD ELEMENTS MIGHT BE MISSING FROM RECEIPT WHEN PROCESSING AN AS4 MESSAGE WITH A ONE-WAY/PUSH MEP EXCHANGE |
| IT43871 | APIC-GW-SERVICE IS IN PENDING STATE. |
| IT43873 | DATAPOWER MIGHT GENERATE UNRELATED ERROR MESSAGES IF AN SNMP QUERY IS MADE ON AN INVALID OR UNLICENSED OBJECT |
| IT43890 | INVOKE_1.5.0 AND PROXY_1.5.0 POLICIES SHOULD NOT ATTEMPT TO PARSE A MULTIPART RESPONSE BODY |
| IT43907 | APIGW DEBUG PROBE TEMPORARY FILE TEMPORARY://APIGATEWAY-TID_*, IS NOT DELETED AND PILL UP |
| IT43915 | APIGW ASSEMBLY FUNCTION PARAMETER SUBSTITUTION CANT GET A DECODED VALUE |
| IT43917 | DPOD LOG DOES NOT SHOW SPACE NAME AS API DEBUG PROBE DOES |
| IT43919 | TLS PROFILES AT ORG AND CLOUD LEVEL MIGHT COLLIDE |
| IT43924 | APIC GATEWAY SECONDARY PEER NOT RESET |
| IT43925 | DATAPOWER GWS CANNOT FIND DEPENDENCY |
| IT43927 | DATAPOWER PARAMETERS DUPLICATE IN USER AGENT FOR BASIC AUTH CAUSING LARGER CONFIGURATION AND OVERHEAD |
| IT43933 | POTENTIAL DENIAL OF SERVICE VULNERABILITY IN OPENSSL (CVE-2023-2650) |
| IT43934 | APIC GATEWAY DOES NOT PROCESS JSONATA $$ CORRECTLY |
| IT43943 | THE VARIABLE SUBSTITUTION DOES NOT CURRENTLY CHECK THE REPLACEMENT VALUE TO DETERMINE IF THERE ARE VARIABLES INSIDE OF IT |
| IT43951 | DATAPOWER RBM ACCESS PROFILES WHICH ALLOW LOGIN THROUGH RMI MIGHT NO LONGER WORK AS EXPECTED |
| IT43952 | DATAPOWER GENERATES TWO R4 RECORDS |
| IT43980 | PROBLEM WITH PREFLOW GLOBAL POLICY IN V10 |
| IT43995 | API GATEWAY DOES NOT RETURN RESPONSE BODY FROM BACKEND FOR REQUESTS WITH OPTIONS METHOD |
| IT43997 | DATAPOWER MIGHT RESTART IF APIC API COLLECTION HAS API RULE WITH NO ACTIONS |
| IT44042 | THE X-CLIENT-IP HEADER SHOULD NOT SEND BACK TO THE CLIENT IN THE ERROR RESPONSE |
| IT44112 | TIMING SIDE-CHANNEL IN GSKIT (CVE-2023-32342) FOR DATAPOWER |
| IT44114 | PROVIDE MITIGATION FOR MULTIPLE CVES |
| IT44115 | DATAPOWER SSHD TASK ENCOUNTERED CHANNEL ERROR. |
| IT44126 | PARSE OAUTH REQUEST SCOPE VALUES FOR EXTRA WHITESPACE |
| IT44143 | C org creating incorrectly drives config sequence execution |
| IT44145 | ADD FRAME-ANCESTORS: 'SELF' DIRECTIVE IN CONTENT-SECURITY-POLICY |
| IT44161 | APIC API PROBE OPERATIONAL STATE INCORRECT WHEN MISCONFIGURED |
| IT44162 | APIC API CALL MIGHT RETURN UNAUTHORIZED HTTP RESPONSE IF 2 PATHS IN THE API HAVE DIFFERENT SECURITY REQUIREMENTS |
| IT44164 | SSH SESSIONS USING THE REDIRECTION OPERATOR MIGHT NOT HANDLE THE SHELL LOGIN COMMAND PROPERLY |
| IT44165 | APIC API ROUTING WILL FAIL IF URI IS ENCODED BUT THE API PATH IS NOT |
| IT44179 | API CONNECT SAAS OAUTH2 REDIRECT URL |
| IT44196 | API GATEWAY MIGHT RETURN UNEXPECTED 404 ERRORS FOR SOAP 1.2 REQUESTS |
| IT44208 | API GATEWAY : UNABLE TO USE THE OAUTH SHARED SECRET FOR REGISTERING A GATEWAY SERVICE SET IN THE API MANAGEMENT SERVERS CLOUD |
| IT44231 | CERTIFICATE MISMATCH ERROR IN DATAPOWER LOGS |
| IT44237 | MQ OBJECT IS DOWN WHEN 20-LENGTH MQCHANNEL NAME IS SET |
| IT44240 | WSDL APIS THAT ARE SINGLE FILES MIGHT TRIGGER API GATEWAY UPDATES EVEN IF UNCHANGED |
| IT44254 | ENHANCED STABILITY IN NEW UI |
| IT44262 | GATEWAY PEERING OBJECT CANNOT BE ASSIGNED TO ANYTHING ELSE AFTER BEING ASSIGNED TO PROBE-SETTINGS |
| IT44265 | APIC SUBSCRIBERS RMI STATUS PROVIDER CALL DOES NOT RETURN CONSISTENT RESULTS |
| IT44266 | DATAPOWER PROBE MIGHT RESTART DEVICE FOR CERTAIN RULE CONFIGURATIONS |
| IT44280 | APIC WEBHOOKS CANNOT BE PROCESSED EVEN AFTER MISCONFIGURATION IS CORRECTED |
| IT44281 | DATAPOWER MQ CLIENT ADDS SUPPORT FOR TLS 1.3 CIPHERS |
| IT44293 | APIC GATEWAY PEERING GROUP WHEN IN CLUSTER MODE SHOULD NOT BE OPERATIONAL STATE UP IF PEER IP ADDRESSES ARE DUPLICATED |
| IT44330 | DP MIGHT RELOAD BEFORE THROTTLE IS TRIGGERED |
| IT44336 | DATAPOWER 10GB NETWORK MODULE FAILURE MIGHT ALSO CAUSE 40GB MODULE FAILURE ON X3 |
| IT44338 | DATAPOWER QUOTA ENFORCEMENT KEYS MIGHT NOT BE REMOVED AFTER SERVER IS MODIFIED/RESTARTED |
| IT44339 | APIC GATEWAY SERVICE MIGHT LEAK TEMPORARY FILES IF FILE SYSTEM IS FULL |
| IT44340 | APIC ASSEMBLY FUNCTION MIGHT BE IN OPERATIONAL STATE UP EVEN IF PARAMETERS ARE MISCONFIGURED |
| IT44341 | APIC DEVICE MIGHT RESTART WHILE ROUTING A REQUEST IF API DEFINITION IS MISSING ASSEMBLY |
| IT44351 | USE OF JAEGER TRACING CAUSES V5 EMULATED POLICIES TO FAIL |
| IT44380 | ALLOW WEBSOCKET PROTOCOLS IN OAI3 |
| IT44381 | DATAPOWER FORCES CLOUD POLICY UPDATE. |
| IT44382 | GATEWAY POD RESTART AFTER FIRMWARE UPGRADE. |
| IT44383 | SUBSCRIPTION LOSS AFTER UPDATES. |
| IT43987 | OTHER SENSOR OUTPUT ON AN 8496 HAS A WRONG NAME |
| IT44408 | X-CLIENT-CERTIFICATE HEADER FAILS WITH BEGIN/END CERTIFICATE TAG |
| IT44470 | TEST HARDWARE DID NOT SHOW POWER SUPPLY FAILURE |
| IT44481 | DATAPOWER TLS SNI SERVER OBJECT DOES NOT USE CORRECT CIPHER SUITES |
| IT44482 | GATEWAY PEERING CLUSTER STATUS DISPLAY CAN HANG |
| IT44534 | SQL QUERY TIMES OUT WHEN TRACE IS ENABLED |
| IT44544 | DATAPOWER SECURE RESTORE ON TENANT BREAK LOGIN TO UI |
| IT44588 | UPDATE GO LIBRARY TO 1.20.8 |
| IT44605 | DATAPOWER EXTENSION FUNCTION DP:AUTH-INFO SHOULD INDICATE IF NO SERVICE WAS PRESENTED IN RESULT XML NODE |
| IT44630 | CREATING APIC PROBE CAPTURE SETTING MIGHT RESTART DATAPOWER |
| IT44649 | DENIAL OF SERVICE VULNERABILITY IN NODE SEMVER PACKAGE |
| IT44654 | UPDATE NODE.JS TO ADDRESS MULTIPLE CVES |
| IT45049 | DATAPOWER SENDS GRAPHQL JSON PAYLOAD WITH AN ADDITIONAL KEY "OPERATIONTYPE", WHICH IS NOT TO THE STANDARD |
10.5.1
Release date: 7 June 2023
Last modified: 7 June 2023
Status: Available
APAR | Description |
| IT39216 | DATAPOWER ON DOCKER DOES NOT SAVE SNMP COMMUNITIES OR CUSTOM WEBGUI USER AGENT |
| IT41799 | ZE IT41039 FIX APAR - RELOAD MIGHT OCCUR WHEN URLOPEN HAS INCORRECT ENDPOINT SYNTAX |
| IT43125 | HTTP/2 BASED CLIENTS USING AN EXPECT HEADER WITH A VALUE OF 100-CONTINUE CAN CAUSE RELOAD |
| IT43150 | APIC GATEWAY MIGHT RESTART WHEN USING API DEBUG PROBE AND A GATEWAYSCRIPT ASSEMBLY IN THE GLOBAL ERROR RULE |
| IT43251 | APIC DURING DRR WITH A LARGE AMOUNT OF CATALOGS, THERE MIGHT BE A TEMPORARILY INCONSISTENT CATALOG LIST |
| IT43506 | FORMAT OF CONTEXT VARIABLE OAUTH.VERIFIED_ACCESS_TOKEN.NOT_BEFORE IS NOT CORRECT |
| IT43513 | APIC GATEWAY MIGHT RESTART WHEN GATEWAYSCRIPT THROWS AN ERROR SETTING MESSAGE HEADERS |
| IT43593 | CONTEXT VARIABLE REQUEST.URI RETURNS INCORRECT URL IF USING HTTP/2 |
| IT43641 | COMPILATION OF XSLT THAT USE DPFUNC:ZULU-TIME BY AN XML MANAGER WITH COMPILE OPTIONS POLICY MIGHT FAIL |
| IT43668 | APIC ANALYTICS ENDPOINT MIGHT NOT RETURN ALL MEMORY AFTER A RETRY |
| IT43669 | APIC TO ALLOW USER TO SPECIFY PORTS FOR GATEWAY PEERING MEMBERS IN THE UI |
| IT43674 | CONDITIONAL ACTION PARAMETERS CAN DUPLICATE FOR PATH MATCHING AND MIGHT CAUSE HIGH CPU OR INSTABILITY |
| IT43698 | DATAPOWER MEMORY MANAGEMENT SEGMENTATION MIGHT CAUSE HIGHER THAN EXPECTED CPU USAGE |
| IT43703 | DATAPOWER APPLIANCES MIGHT HAVE UNUSUAL LATENCY WHEN USING DOCUMENT CACHE |
| IT43719 | DATAPOWER SECURE RESTORE FROM FTP FAILS |
| IT43726 | DATAPOWER SNMP SERVICE CAUSES A RELOAD |
| IT43727 | APIC V5E POLICY LIST IN GATEWAY EXTENSION MANIFEST IS NOT VALIDATED PROPERLY |
| IT43729 | APIC REQUEST USING TRACE METHOD MIGHT BE ROUTED INCORRECTLY |
| IT43730 | SCOPE HANDLING REGRESSION |
| IT43755 | VALIDATE POLICY FAILS TO FIND CORRECT WSDL |
| IT43769 | DATAPOWER RELOADS WHEN THE AMQP CLIENT STARTS |
| IT43773 | DATAPOWER MIGHT RESTART WHEN UNABLE TO CALCULATE LOGGING TIMESTAMP |
| IT43803 | APIC GATEWAY MIGHT RESTART IF APPLICATION DOMAIN IS DISABLED/RESTARTED WHEN GATEWAY PEERING IS ACTIVE |
| IT43810 | APIC ANALYTICS ENDPOINT IS DOWN INCORRECTLY |
| IT43841 | APIC OPENTRACING PARAMETERS MISSING FROM EVENTS |
| IT43852 | APIC GATEWAY RESTARTS WHEN RE-PARSING NESTED JSON COMPONENT |
| IT43853 | DATAPOWER MIGHT RESTART WHEN STARTING GATEWAY PEERING WITH MONITOR-PORT OR LOCAL-PORT ALREADY IN USE |
| IT43869 | APIC RATE LIMIT WITH SCALE LIMIT MIGHT USE WRONG VALUE WHEN GATEWAY PEERING GROUP CONNECTION IS DISCONNECTED |
| IT43900 | DATAPOWER HTTP/2 SERVER MIGHT RESTART |
| IT43901 | APIC DISABLING JWT OPTION FOR ANALYTICS IS NOT CORRECTLY PROPAGATED TO GATEWAY |
Change history
Last modified: 29 March 2024
- 29 March 2024: Added fix list for 10.5.4 update package.
- 8 December 2023: Added fix list for 10.5.3 update package.
- 29 September 2023: Added fix list for 10.5.2 update package.
- 7 June 2023: Added fix list for 10.5.1 update package.
Off
Document Location
Worldwide
[{"Type":"MASTER","Line of Business":{"code":"LOB77","label":"Automation Platform"},"Business Unit":{"code":"BU048","label":"IBM Software"},"Product":{"code":"SS9H2Y","label":"IBM DataPower Gateway"},"ARM Category":[{"code":"a8m50000000L0rqAAC","label":"DataPower"}],"ARM Case Number":"","Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"10.5.1;10.5.2;10.5.3"}]
Problems (APARS) fixed
Problems (APARS) fixed
Was this topic helpful?
Document Information
Modified date:
05 January 2026
UID
ibm16997987