• The Four Hundred
  • Subscribe
  • Media Kit
  • Contributors
  • About Us
  • Contact
Menu
  • The Four Hundred
  • Subscribe
  • Media Kit
  • Contributors
  • About Us
  • Contact

Doug Bidwell

  • IBM i PTF Guide, Volume 24, Number 32

    August 8, 2022 Doug Bidwell

    It has been a very quiet week on the PTF front for IBM i, which is a good thing after several weeks of lots of security vulnerabilities and other tweaks to the system.

    Just a reminder that we have moved V7R1M0 from the weekly update to the archive. Anything new we are informed of that impacts IBM i 7.1, we will post here in the What’s NEW! Section at the top of the story. Also, if you have any IBM i 7.1 requests going forward, we will do our best to provide responses for. Thank you for your readership and …

    Read more
  • IBM i PTF Guide, Volume 24, Number 31

    August 3, 2022 Doug Bidwell

    As often happens with systems software these days, there are a bunch of new security vulnerabilities with the IBM i stack that you need to be aware of.

    First, there is Security Bulletin: OpenSSL for IBM i is vulnerable to arbitrary command execution (CVE-2022-2068), which you can find out more about at this link. The IBM i PTF numbers contain the fix for the vulnerability:

    IBM i Release	5733-SC1	PTF Number
    7.5		SI80588
    		7.4, 7.3, 7.2	SI80587
    

    Then there is Security Bulletin: IBM WebSphere Application Server Liberty is vulnerable to Identity Spoofing (CVE-2022-22476), which you can find out more …

    Read more
  • IBM i PTF Guide, Volume 24, Number 30

    July 25, 2022 Doug Bidwell

    Just to keep you on your toes, we have to catch you up on a recent Security Bulletin: IBM WebSphere Application Server is vulnerable to Cross-site Scripting (CVE-2022-22477), which you can find out more about here. IBM WebSphere Application Server 9.0 and IBM WebSphere Application Server 8.5 are both affected by this security vulnerability. This vulnerability follows five vulnerabilities in last week’s issue.

    Please note that we will be moving V7R1M0 from weekly update to archive. Anything new we are informed of that impacts IBM i 7.1, we will post here in the What’s NEW! Section at the top …

    Read more
  • IBM i PTF Guide, Volume 24, Number 29

    July 20, 2022 Doug Bidwell

    Please note that we will be moving V7R1M0 from weekly update to archive. Anything new we are informed of that impacts IBM i 7.1, we will post here in the What’s NEW! Section at the top of the story. Also, if you have any IBM i 7.1 requests going forward, we will do our best to provide responses for. Thank you for your readership and support!

    To begin with, there are Save and Restore Enhancements for IBM i 7.5, which you can find out more about here. RSTUSRPRF USRPRF(*ALL) no longer requires a dedicated system. The progress message displayed …

    Read more
  • IBM i PTF Guide, Volume 24, Number 28

    July 13, 2022 Doug Bidwell

    It has been quiet week in Lake Bugsbegone. The corn tassels are popping out of the stalks and you can hear them rustle in the wind, crinkly from lack of rain. Off in the distance, a rooster is crowing in the still of the afternoon, and a lone cow is lowing, unhappy with the dry cud. Rain will come soon enough, and then we will all be busy mowing the hay, with sweet corn for dinner. Take your downtime when you have it, and in the shade at that.

    Here is the rundown of PTF Groups by IBM i release …

    Read more
  • IBM i PTF Guide, Volume 24, Number 26

    June 29, 2022 Doug Bidwell

    There have been some remediations for some issues with the MQSeries message queuing middleware for the IBM i platform, including IBM MQ Version 9.2.4 CD and IBM MQ Version 9.2.5 CD. You can find out more here. As for remediation or fixes, this issue was resolved under APAR IT40453. Upgrade to IBM MQ Version 9.3, there are no workarounds and mitigations.

    And then, of course, there is a new security vulnerability. Check out Security Bulletin: IBM MQ is vulnerable to multiple Eclipse Jetty issues, so please see more at this link, and see CVE-2021-28169, CVE-2021-34428, CVE-2021-28163, CVE-2021-28164, CVE-2021-34429, …

    Read more
  • IBM i PTF Guide, Volume 24, Number 25

    June 22, 2022 Doug Bidwell

    It is beginning to feel a bit a bit like Groundhog Day at the IBM i PTF Guide. Yet more security vulnerabilities are surfacing in the IBM i platform. While the number of new security bulletins for IBM i is nowhere near what we see with Windows Server and Linux platforms, it has become a constant game of Whack-a-mole. So get out your rubber mallet and get the Aspercreme ready to fight tendonitis. . . .

    First, we have Security Bulletin: IBM WebSphere Application Server Liberty for IBM i is vulnerable to identity spoofing and port status query (CVE-2022-22475 …

    Read more
  • IBM i PTF Guide, Volume 24, Number 24

    June 15, 2022 Doug Bidwell

    If it seems like just about every week there is a security vulnerability within the broad and deep expanse of the IBM i platform, well it isn’t just seeming like that. It is like that. And this week we start out with four news ones that you have to contend with in the IBM i PTF Guide.

    First, we have Security Bulletin: Due to use of Spring Framework, IBM Db2 Web Query for i is vulnerable to unprotected fields (CVE-2022-22968), remote code execution (CVE-2022-22965), and denial of service (CVE-2022-22950). Find out more about that at this link. Here …

    Read more
  • IBM i PTF Guide, Volume 24, Number 23

    June 8, 2022 Doug Bidwell

    Welcome to this week’s edition of the IBM i PTF Guide. We start out with a correction to the Technology Refresh tab in the spreadsheet, where the “LIC Resave” values that were for 7.4 TR6 and 7.3 TR12 were based on an IBM site that was itself incorrect. That site has since been corrected, and now we have corrected the information in the sheet. Many thanks to Jeff at IBM for catching this!

    And now, a bevy of Security Bulletins – four different vulnerabilities that affect the IBM i platform, to be specific.

    First, we have Security Bulletin: IBM …

    Read more
  • IBM i PTF Guide, Volume 24, Number 22

    June 1, 2022 Doug Bidwell

    Well, there is a lot of stuff going on with IBM i PTFs this week, with cumulative patch rollups, or Cumes as we call them, Technology Refreshes, and other goodies. Specifically, IBM i 7.3 and IBM i 7.2 have Cume rollups, as well as their respective TR6 and TR12 updates of new functionality.

    There are also two new security vulnerabilities. First, there is Security Bulletin: IBM Navigator for i is vulnerable to an SQL injection (CVE-2022-22495), which you can read about at this link. The patches for this vulnerability are as follows:

    IBM i Release	HTTP Server for i 
    …

    Read more

Previous Articles

Content archive

  • The Four Hundred
  • Four Hundred Stuff
  • Four Hundred Guru

Recent Posts

  • Power10 Entry Machines: The Power S1024 And Power L1024
  • Thoroughly Modern: Latest IT Trends – Bring Security, Speed, And Consistency To IT With Automation
  • Big Blue Unveils New Scalable VTL For IBM i
  • As I See It: Thank God It’s Thursday
  • IBM i PTF Guide, Volume 24, Number 32
  • JD Edwards Customers Face Support Decisions
  • Security, Automation, and Cloud Top Midrange IT Priorities, Study Says
  • Cleo and SrinSoft in Integration-Modernization Link Up
  • Four Hundred Monitor, August 3
  • IBM i PTF Guide, Volume 24, Number 31

Subscribe

To get news from IT Jungle sent to your inbox every week, subscribe to our newsletter.

Pages

  • About Us
  • Contact
  • Contributors
  • Four Hundred Monitor
  • IBM i PTF Guide
  • Media Kit
  • Subscribe

Search

Copyright © 2022 IT Jungle