IBM i PTF Guide, Volume 20, Number 5
February 7, 2018 Doug Bidwell
Just a reminder, the Spectre and Meltdown speculative execution security vulnerabilities have been classified by IBM’s Product Security Incident Response Team (PSIRT) as having a “High Severity” level. As far as the Spectre and Meltdown issues go, there is nothing new on the IBM i, Power Systems, or Hardware Management Console (HMC) front. It is what it is.
The HIPER and Security groups for each release were re-released two weeks ago, but only the first of each set below is included in the Security group. So, if you order and download the latest HIPERs and Security groups, you only get one of the two required fixes. Check it out:
Here is a little worksheet to keep it all organized:
|7.1 PTFs||7.2 PTFs||7.3 PTFs|
|no hmc/Power7+ and Power7|
Here is an important thing: Before the WAS v220.127.116.11 and later fix packs can be installed, all WAS profiles as well as the command and new profile defaults will need to be changed to use JDK v7.0 or newer. Please see: http://www-01.ibm.com/support/docview.wss?uid=nas8N1022417 for more.
It is now possible to specify the port range that will be used for Passive and Extended Passive when the IBM i is the sever for FTP and FTPS.
- SI66205 V7R3M0
- SI66204 V7R2M0
- SI66203 V7R1M0
See this link for more on that.
And finally, in PowerSC for i, there is cool stuff for Security from Lab Services! Check it out at this link here.
Below is the archive of the IBM i PTF Guide to help you work through the PTFs in chronological order: