Doug Bidwell
-
IBM i PTF Guide, Volume 27, Number 17
April 28, 2025 Doug Bidwell
Just a reminder that as part of the April 8 announcements, IBM Software Support content is changing to require entitlement check for software patches. See more at this link, but the gist of it is that IBM Software Support Troubleshooting, Question & Answer, and How To documents are changing to require entitlement. This means that you will be required to log on with an IBMid that has proper entitlement before viewing the entire document.
Also this week, there is Security Bulletin: IBM WebSphere Application Server is vulnerable to server-side request forgery (CVE-2025-27907), which you can find out more about …
Read more -
IBM i PTF Guide, Volume 27, Number 16
April 23, 2025 Doug Bidwell
This week, we bring you two security vulnerabilities and an import HIPER for firmware updates for Power Systems iron. Let’s start with the firmware.
There is new microcode for Firmware 950 .. 950.D1, which you can find out more about at this link here, and new microcode for Firmware 950 .. 950.E0, which you can read all about at that link there. These are HIPERs and affect the following hardware:
- Power System S914 Server (9009-41A)
- Power System S922 Server (9009-22A)
- Power System S924 Server (9009-42A)
Now for the vulnerabilities. First, we have Security Bulletin: IBM i 7.6 is …
Read more -
IBM i PTF Guide, Volume 27, Number 15
April 14, 2025 Doug Bidwell
There are so many announcements, and one of the big ones is ACS 1.1.9.8! We downloaded the new ACS and we have used this for a day, and so far there are no known issues at this time. We suggest treading lightly with this tool until after general availability on April 18. But it is looking good so far, though!
There is also a new security vulnerability, which is Security Bulletin: IBM i is vulnerable to an out-of-bounds write in NTP services due to multiple vulnerabilities. More information available at this link. The issue can be addressed by applying …
Read more -
IBM i PTF Guide, Volume 27, Number 14
April 8, 2025 Doug Bidwell
If you need a little something to wake you up, or a little night reading before you drift off to sleep, check out the Known Issues And Fix Information database at Big Blue for the IBM platform, which you can see here. The IBM i PTF Guide is meant to save you from having to be familiar with this, of course. But it can’t hurt to be aware of this database.
Here is the rundown of PTF Groups by IBM i release level since we last published:
PTF Groups 7.5:
- HIPERs (High Impact/Pervasive)
- Java
- Backup Recovery Solutions
- Content Manager
-
IBM i PTF Guide, Volume 27, Number 13
April 2, 2025 Doug Bidwell
Good day, good people of IBM i Land. This week we start out with two security vulnerabilities and a known issue to beware of the BLOB!
Let’s start with the security vulnerabilities.
First we have Security Bulletin: IBM WebSphere Application Server Liberty is vulnerable to a denial of service due to Netty (CVE-2025-25193), which you can find out more about at this link. IBM WebSphere Application Server Liberty versions 21.0.0.2 through 25.0.0.3 are affected.
Second, we have Security Bulletin: IBM WebSphere Application Server Liberty is vulnerable to a denial of service due to Apache CXF (CVE-2025-23184), and here is …
Read more -
IBM i PTF Guide, Volume 27, Number 12
March 24, 2025 Doug Bidwell
In this week’s IBM i PTF Guide, we contemplate the SF99741 patch and the following note from IBM:
Recent change to contents – IBM Db2 Mirror for i (SF99668 Group PTF) has been removed from the order.
Description: This PTF group includes all PTF groups for the current IBM i release except the Cumulative PTF Package PTF group and WebSphere MQ PTF group. The PTF groups are included by listing them as related PTF groups. Use option 9 (Display related PTF groups) on the Work with PTF Groups (WRKPTFGRP) command to display the included PTF groups. Each time you order …
Read more -
IBM i PTF Guide, Volume 27, Number 11
March 17, 2025 Doug Bidwell
Last week was a busy week for PTF patches, but not for security vulnerabilities. And this week is even quieter, but there are new defective PTF reports this week that you need to keep an eye on, as is usually the case in most weeks.
Here is the rundown of PTF Groups by IBM i release level since we last published:
PTF Groups 7.5:
- None
PTF Groups 7.4:
- MQ for IBM i – v9.0.0/v9.1.0/v9.2.0/v9.3.0
PTF Groups 7.3:
- None
Tip O’ The Week: We are thinking.
New (or Updated) links added to the ‘Links’ tab in The Guide this week:
- None
-
IBM i PTF Guide, Volume 27, Number 10
March 10, 2025 Doug Bidwell
There are new PTF group updates for the current releases of IBM i – that would be 7.3, 7.4, and 7.5 – but not much in the way of the occasional weirdness we see in the software stack or the never-ending stream of security vulnerabilities. Take it while you can get it. . . .
Here is the rundown of PTF Groups by IBM i release level since we last published:
PTF Groups 7.5:
- HIPERs (High Impact/Pervasive)
- Security
- IBM MQ for IBM i – v9.2.0/v9.3.0
- PowerHA Tools for IBM i – Full System FlashCopy (FSFC)
- PowerHA Tools for IBM i
-
IBM i PTF Guide, Volume 27, Number 9
March 3, 2025 Doug Bidwell
If you are using Rational Developer for i to create applications and your company uses the Singularity endpoint manager from SentinelOne, then you might be having an issue.
According to this notice from IBM, after updating Windows 11 to 24H2, Rational Developer for i 9.8.0.3 may be ended abruptly by SentinelOne. IBM adds: “There may be a Java dialogue left showing “Java was started but returned exit code=-1073741571” and the Windows event viewer will show that the problem happened in ntdll.dll.” The temporary workaround is to revert to Windows 11 23H2 or whitelist RDI in SentinelOne until IBM figures …
Read more -
IBM i PTF Guide, Volume 27, Number 8
February 24, 2025 Doug Bidwell
Two big security vulnerabilities greet you as you start your week. First, we have Security Bulletin: This Power System update is being released to address CVE-2023-52881, which you can find out more about here. We don’t see issues with baseboard management controllers very often, so pay attention to this one.
The affected releases are:
Affected Product(s) Version(s)
OPENBMC FW1060.00 – FW1060.20
OPENBMC OP940.00 – OP940.70
HMC OP940.00 – OP940.72
OPENBMC OP910.00 – OP910.90
Second, we have Security Bulletin: IBM i is vulnerable to a user gaining elevated privileges due to an unqualified library call [CVE-2024-55898]. You can find out …
Read more