OA66791: UNABLE TO ADD A PRODUCT ID FOR A PRODUCT

Obtain the fix for this APAR.

APAR status

• Closed as program error.

Error description

• If a product name contains the word UPDATE you cannot at a
  product ID to it
  

Local fix

• N/A
  

Problem summary

• ****************************************************************
  * USERS AFFECTED: All IBM Z Software Asset Management V8.2     *
  *                 and V8.3 customers.                          *
  ****************************************************************
  * PROBLEM DESCRIPTION: The analyzer engine prevented the use   *
  *                      of SQL reserved words as parameters     *
  *                      in the input fields.                    *
  *                      In some instances, incorrect params     *
  *                      were included in the report footer.     *
  *                      No error message was displayed when     *
  *                      it was not possible to define a new     *
  *                      Vue product.                            *
  *                      When using custom reports it was not    *
  *                      possible to select more than one        *
  *                      repository.                             *
  ****************************************************************
  * RECOMMENDATION: N/A                                          *
  ****************************************************************
  If an SQL reserved word like Update/Delete/Insert was used in
  a parameter, the request was not processed to prevent SQL
  injection, even if the word was preceded by other characters
  (like rc/update).
  Regardless of whether all URL parameters were used by the
  online report, they were still presented in the footer,
  leading to possible errors if used in the batch analyzer.
  Whenever it was not possible to define a new Vue product, the
  engine did not present any error, even if the operation could
  not be executed.
  When using custom reports, the user cannot select more than one
  report at a time.
  

Problem conclusion

• The analyzer engine now filters only exact matches of reserved
  SQL words.
  Unused parameters in the online reports are no longer
  displayed in the report footer.
  An error message is now presented if it is not possible to
  add a new Vue product.
  The error that prevented multiselection for the repositories
  in the custom reports has been fixed.
  

Temporary fix

Comments

APAR Information

• APAR is sysrouted FROM one or more of the following:

• APAR is sysrouted TO one or more of the following:

  UJ95903 UJ95904

Modules/Macros

• HSICANLZ HSIRAPI  HSIRAPMI HSIRAPMS HSIRJS   HSIRLOGN HSIRMENU
  HSIRSOWN HSIRSPRD HSIRSVUE HSISCAN1
  

Fix information

• Fixed component name

  TIV ASSET DISC

• Fixed component ID

  5698B39TD

Applicable component levels

• R820 PSY UJ95904

     UP24/09/17 P F409

• R830 PSY UJ95903

     UP24/09/17 P F409

Fix is available

• Select the PTF appropriate for your component level. You will be required to sign in. Distribution on physical media is not available in all countries.