IBM i PTF Guide, Volume 19, Numbers 13 And 14
April 19, 2017 Doug Bidwell
IT Jungle took a hiatus with the Wednesday edition of The Four Hundred last week, so this week we are publishing two issues of the IBM i PTF Guide at the same time.
In Volume 19, Number 14, Content Manager was the only new group with fixes during the week, so there was not much happening in the world of PTFs ahead of the Easter holiday. (And probably for that very reason.) When this happens – the “doldrums of fixes” – it generally means that there will be a deluge in the near future. We would like to urge you to install the QMGTOOLS on your system, and take advantage of the new PTF menu. Great stuff that! And more to come –keep an eye on it in the coming weeks.
In Volume 19, Number 13, IBM put out HIPERs and Security patches for that week. It is always wise to put on HIPERs. The Security updates include ISC releasing CVE-2016-9131, CVE-2016-9444, and CVE-2017-3135.
- CVE-2016-9131: A malformed query response received by a recursive server in response to a query of RTYPE ANY could trigger an assertion failure while named is attempting to add the RRs in the query response to the cache.
- CVE-2016-9444: An unusually-formed answer containing a DS resource record could trigger an assertion failure.
- CVE-2017-3135: Under some conditions when using both DNS64 and RPZ to rewrite query responses, query processing can resume in an inconsistent state leading to either an INSIST assertion failure or an attempt to read through a NULL pointer.
HIPER and Security PTFs are release every other Tuesday, if there are fixes in these areas.
For you convenience, here is the archive of the guides for the past several years: