PI96685: Information disclosure in Apache Commons HttpClient used by WebSphere Application Server (CVE-2012-5783)

Download

Abstract

PI96685: Information disclosure in Apache Commons HttpClient used by WebSphere Application Server.

Download Description

PI96685 resolves the following problem:

ERROR DESCRIPTION:
Information disclosure in Apache Commons HttpClient used by WebSphere Application Server (CVE-2012-5783)

PROBLEM SUMMARY:
Information disclosure in Apache Commons HttpClient used by WebSphere Application Server.

PROBLEM CONCLUSION:
Confidential for Security Integrity ifix.

THE FOLLOWING FIXES ARE PROVIDED:
7.0.0.43-WS-WAS-IFPI96685.pak applies to fix packs 7.0.0.43 through 7.0.0.45.
8.0.0.14-WS-WASProd-IFPI96685.zip applies to WebSphere traditional fix packs 8.0.0.14 through 8.0.0.15.
8.0.0.14-WS-WASEmbedded-IFPI96685.zip applies to Embedded WebSphere fix packs 8.0.0.14 through 8.0.0.15.
8.0.0.14-WS-WASProd-IFPI96685.zip applies to fix packs 8.0.0.14 through 8.0.0.15.
8.5.5.12-WS-WASProd-IFPI96685.zip applies to fix packs 8.5.5.12 through 8.5.5.13.
9.0.0.6-WS-WASProd-IFPI96685.zip applies to fix packs 9.0.0.6 through 9.0.0.7.

Prerequisites

Please download the UpdateInstaller below to install this fix.

[{"PRLabel":"UpdateInstaller","PRLang":"US English","PRSize":"7250000","PRPlat":{"label":"AIX","code":"PF002"},"PRURL":"http://www.ibm.com/support/docview.wss?rs=180&uid=swg21205991"}]

Installation Instructions

Please review the readme.txt for detailed installation instructions.

[{"INLabel":"V70 Readme","INLang":"US English","INSize":"4836","INURL":"ftp://public.dhe.ibm.com/software/websphere/appserv/support/fixes/PI96685/7.0.0.45/readme.txt"},{"INLabel":"V80 Readme","INLang":"US English","INSize":"2147","INURL":"ftp://public.dhe.ibm.com/software/websphere/appserv/support/fixes/PI96685/8.0.0.15/readme.txt"},{"INLabel":"V85 Readme","INLang":"US English","INSize":"2176","INURL":"ftp://public.dhe.ibm.com/software/websphere/appserv/support/fixes/PI96685/8.5.5.13/readme.txt"},{"INLabel":"V90 Readme","INLang":"US English","INSize":"2089","INURL":"ftp://public.dhe.ibm.com/software/websphere/appserv/support/fixes/PI96685/9.0.0.7/readme.txt"}]

          [{"DNLabel":"7.0.0.43-WS-WAS-IFPI96685","DNDate":"05-15-2018","DNLang":"US English","DNSize":"23429","DNPlat":{"label":"AIX","code":"PF002"},"DNURL":"http://www.ibm.com/support/fixcentral/swg/selectFixes?parent=ibm/WebSphere&product=ibm/WebSphere/WebSphere Application Server&release=All&platform=All&function=fixId&fixids=7.0.0.43-WS-WAS-IFPI96685&includeSupersedes=0","DNURL_FTP":"","DDURL":null},{"DNLabel":"8.0.0.14-WS-WASProd-IFPI96685","DNDate":"05-15-2018","DNLang":"US English","DNSize":"270692","DNPlat":{"label":"AIX","code":"PF002"},"DNURL":"http://www.ibm.com/support/fixcentral/swg/selectFixes?parent=ibm/WebSphere&product=ibm/WebSphere/WebSphere Application Server&release=All&platform=All&function=fixId&fixids=8.0.0.14-WS-WASProd-IFPI96685&includeSupersedes=0","DNURL_FTP":"","DDURL":null},{"DNLabel":"8.5.5.12-WS-WASProd-IFPI96685","DNDate":"05-15-2018","DNLang":"US English","DNSize":"272071","DNPlat":{"label":"AIX","code":"PF002"},"DNURL":"http://www.ibm.com/support/fixcentral/swg/selectFixes?parent=ibm/WebSphere&product=ibm/WebSphere/WebSphere Application Server&release=All&platform=All&function=fixId&fixids=8.5.5.12-WS-WASProd-IFPI96685&includeSupersedes=0","DNURL_FTP":"","DDURL":null},{"DNLabel":"9.0.0.6-WS-WASProd-IFPI96685","DNDate":"05-15-2018","DNLang":"US English","DNSize":"271479","DNPlat":{"label":"AIX","code":"PF002"},"DNURL":"http://www.ibm.com/support/fixcentral/swg/selectFixes?parent=ibm/WebSphere&product=ibm/WebSphere/WebSphere Application Server&release=All&platform=All&function=fixId&fixids=9.0.0.6-WS-WASProd-IFPI96685&includeSupersedes=0","DNURL_FTP":"","DDURL":null},{"DNLabel":"8.0.0.14-WS-WASEmbeded-IFPI96685","DNDate":"07 Aug 2018","DNLang":"English","DNSize":"261,461","DNPlat":{"label":"AIX","code":"PF002"},"DNURL":"http://www.ibm.com/support/fixcentral/swg/selectFixes?parent=ibm/WebSphere&product=ibm/WebSphere/WebSphere%20Application%20Server&release=All&platform=All&function=fixId&fixids=8.0.0.14-WS-WASEmbeded-IFPI96685&includeSupersedes=0","DNURL_FTP":"","DDURL":null}]
          

Technical Support

Contact IBM Support using SR (http://www.ibm.com/software/support/probsub.html), visit the WebSphere Application Server support web site (http://www.ibm.com/software/webservers/appserv/was/support/), or contact 1-800-IBM-SERV (U.S. only).

[{"Product":{"code":"SSEQTP","label":"WebSphere Application Server"},"Business Unit":{"code":"BU053","label":"Cloud & Data Platform"},"Component":"General","Platform":[{"code":"PF002","label":"AIX"},{"code":"PF010","label":"HP-UX"},{"code":"PF012","label":"IBM i"},{"code":"PF013","label":"Inspur K-UX"},{"code":"PF016","label":"Linux"},{"code":"PF027","label":"Solaris"},{"code":"PF033","label":"Windows"},{"code":"PF035","label":"z\/OS"}],"Version":"7.0.0.43;7.0.0.45;8.0.0.14;8.0.0.15;8.5.5.12;8.5.5.13;9.0.0.6;9.0.0.7","Edition":"Base;Network Deployment;Single Server","Line of Business":{"code":"LOB45","label":"Automation"}}]

Problems (APARS) fixed
PI96685

Was this topic helpful?

Document Information

Modified date:
08 August 2018

UID

swg24044989

Tips