IBM Support

MA47305 - LIC Mitigate Spectre and Meltdown vulnerabilities in programs

Subscribe to this APAR

By subscribing, you receive periodic emails alerting you to the status of the APAR, along with a link to the fix after it becomes available. You can track this item individually or track all items by product.

Notify me when this APAR changes.

Notify me when an APAR for this component changes.

APAR (Authorized Program Analysis Report)

Abstract

LIC Mitigate Spectre and Meltdown vulnerabilities in programs

Error Description

IBM has released this PTF in response to CVE-2017-5753,        
CVE-2017-5715, CVE-2017-5754, and CVE-2018-3639.                

Problem Summary

IBM has released this PTF in response to CVE-2017-5753,        
CVE-2017-5715, CVE-2017-5754, and CVE-2018-3639.                

Problem Conclusion

Spectre and Meltdown vulnerabilities could allow untrusted      
programs to obtain unauthorized access to data as described in  
CVE-2017-5753, CVE-2017-5715, CVE-2017-5754, and CVE-2018-3639.
These vulnerabilities can be mitigated by applying this PTF and
taking further actions described in the Special Instructions    
section. Run-time performance may be affected if you choose to  
take those further actions.                                    
                                                               
This PTF should be applied along with all other PTFs provided in
response to these vulnerabilities. See the IBM i Security      
Bulletin for that list of PTFs:                                
www.ibm.com/support/docview.wss?uid=nas8N1022433                

Temporary Fix

Comments

Spectre and Meltdown vulnerabilities could allow untrusted      
programs to obtain unauthorized access to data as described in  
CVE-2017-5753, CVE-2017-5715, CVE-2017-5754, and CVE-2018-3639.
These vulnerabilities can be mitigated by applying this PTF and
taking further actions described in the Special Instructions    
section. Run-time performance may be affected if you choose to  
take those further actions.                                    
                                                               
This PTF should be applied along with all other PTFs provided in
response to these vulnerabilities. See the IBM i Security      
Bulletin for that list of PTFs:                                
www.ibm.com/support/docview.wss?uid=nas8N1022433                

Circumvention


None                                                            

PTFs Available

Affected Modules


         
         

Affected Publications

Summary Information

Status............................  CLOSED PER
HIPER.............................  Yes
Component.........................  9400DG300
Failing Module....................  RCHMGR
Reported Release..................  R710
Duplicate Of......................  




IBM i Support

IBM disclaims all warranties, whether express or implied, including, but not limited to, the implied warranties of merchantability and fitness for a particular purpose. By furnishing this document, IBM grants no licenses to any related patents or copyrights. Copyright © 1996,1997,1998, 1999, 2000, 2001, 2002, 2003, 2004, 2005, 2006, 2007, 2008, 2009, 2010, 2011, 2012, 2013, 2014, 2015, 2016, 2017, 2018, 2019, 2020, 2021, 2022, 2023, 2024 IBM Corporation. Any trademarks and product or brand names referenced in this document are the property of their respective owners. Consult the Terms of use link for trademark information

[{"Business Unit":{"code":"BU058","label":"IBM Infrastructure w\/TPS"},"Platform":[{"code":"PF012","label":"IBM i"}],"Version":"7.1.0; 7.2.0; 7.3.0","Product":{"code":"SWG60","label":"IBM i"},"Component":"9400DG3","Edition":"","Line of Business":{"code":"LOB57","label":"Power"}}]

Document Information

Modified date:
11 January 2024

Page Feedback