Doug Bidwell
-
IBM i PTF Guide, Volume 24, Number 36
September 12, 2022 Doug Bidwell
Let’s get right into it. There are PDF transform issues with IBM i 7.5. This issue was encountered by our friends in San Diego: Thank you, Nancy, for sharing! They were receiving “Transformation task cancelled due to a print fidelity error” when converting from SCS to PDF. IBM issued the following PTFs to fix the issue:
PTF ID SI79773 5770SS1 SI79689 5770TS1 SI79684 5770TS1
Now, let’s turn to Security Bulletin: Vulnerability in IBM Java SDK affects IBM WebSphere Application Server and IBM WebSphere Application Server Liberty due to July 2022 CPU plus deferred CVE-2021-2163. You can see more at this …
Read more -
IBM i PTF Guide, Volume 24, Number 35
August 29, 2022 Doug Bidwell
Hello good people of IBM i Land. To start off, a reminder that the Memo To Users for supported releases were last updated April 2022. Clients should review the full “What’s New” details to understand recent changes and impact these may have. See the Links tab in the guide to access the Memo for your release, and, check periodically. these should be considered living documents, meaning, they evolve over time, and as such, read frequently!
Also, ADMIN2 is back at 7.5! IBM turned it off at earlier releases to mitigate the log4j vulnerability in those releases. At V7R5 GA, the …
Read more -
IBM i PTF Guide, Volume 24, Number 34
August 22, 2022 Doug Bidwell
New defective PTFs – meaning PTFs to fix bugs in PTFs that should not be there to fix bugs in software that should not have been there in the first place – issued this week by IBM, and we are only now seeing that you could have been misinterpreting the meaning of “defective PTFs” all of these years. It is to fix defects in PTFs, as some of you might not be thinking. Language is not as good at communication as we sometimes give it credit for. There is always some ambiguity in the packets that are exchanged when two …
Read more -
IBM i PTF Guide, Volume 24, Number 33
August 15, 2022 Doug Bidwell
First up, IBM has tweaked its temporary additional use policy for Power Systems software for migrations to Power E1080, Power E1050, and Power S1024 servers. You can read about it here.
Here is the significance of this. When you do an upgrade, you get 70 days from install to use the systems software for free. That can be extended once for 40 days, and then that can be extended again, once, for 3 days. After that, you have to beg for more if you need more time to do the upgrade. IBM doesn’t care about partitions, it’s the host …
Read more -
IBM i PTF Guide, Volume 24, Number 32
August 8, 2022 Doug Bidwell
It has been a very quiet week on the PTF front for IBM i, which is a good thing after several weeks of lots of security vulnerabilities and other tweaks to the system.
Just a reminder that we have moved V7R1M0 from the weekly update to the archive. Anything new we are informed of that impacts IBM i 7.1, we will post here in the What’s NEW! Section at the top of the story. Also, if you have any IBM i 7.1 requests going forward, we will do our best to provide responses for. Thank you for your readership and …
Read more -
IBM i PTF Guide, Volume 24, Number 31
August 3, 2022 Doug Bidwell
As often happens with systems software these days, there are a bunch of new security vulnerabilities with the IBM i stack that you need to be aware of.
First, there is Security Bulletin: OpenSSL for IBM i is vulnerable to arbitrary command execution (CVE-2022-2068), which you can find out more about at this link. The IBM i PTF numbers contain the fix for the vulnerability:
IBM i Release 5733-SC1 PTF Number 7.5 SI80588 7.4, 7.3, 7.2 SI80587
Then there is Security Bulletin: IBM WebSphere Application Server Liberty is vulnerable to Identity Spoofing (CVE-2022-22476), which you can find out more …
Read more -
IBM i PTF Guide, Volume 24, Number 30
July 25, 2022 Doug Bidwell
Just to keep you on your toes, we have to catch you up on a recent Security Bulletin: IBM WebSphere Application Server is vulnerable to Cross-site Scripting (CVE-2022-22477), which you can find out more about here. IBM WebSphere Application Server 9.0 and IBM WebSphere Application Server 8.5 are both affected by this security vulnerability. This vulnerability follows five vulnerabilities in last week’s issue.
Please note that we will be moving V7R1M0 from weekly update to archive. Anything new we are informed of that impacts IBM i 7.1, we will post here in the What’s NEW! Section at the top …
Read more -
IBM i PTF Guide, Volume 24, Number 29
July 20, 2022 Doug Bidwell
Please note that we will be moving V7R1M0 from weekly update to archive. Anything new we are informed of that impacts IBM i 7.1, we will post here in the What’s NEW! Section at the top of the story. Also, if you have any IBM i 7.1 requests going forward, we will do our best to provide responses for. Thank you for your readership and support!
To begin with, there are Save and Restore Enhancements for IBM i 7.5, which you can find out more about here. RSTUSRPRF USRPRF(*ALL) no longer requires a dedicated system. The progress message displayed …
Read more -
IBM i PTF Guide, Volume 24, Number 28
July 13, 2022 Doug Bidwell
It has been quiet week in Lake Bugsbegone. The corn tassels are popping out of the stalks and you can hear them rustle in the wind, crinkly from lack of rain. Off in the distance, a rooster is crowing in the still of the afternoon, and a lone cow is lowing, unhappy with the dry cud. Rain will come soon enough, and then we will all be busy mowing the hay, with sweet corn for dinner. Take your downtime when you have it, and in the shade at that.
Here is the rundown of PTF Groups by IBM i release …
Read more -
IBM i PTF Guide, Volume 24, Number 26
June 29, 2022 Doug Bidwell
There have been some remediations for some issues with the MQSeries message queuing middleware for the IBM i platform, including IBM MQ Version 9.2.4 CD and IBM MQ Version 9.2.5 CD. You can find out more here. As for remediation or fixes, this issue was resolved under APAR IT40453. Upgrade to IBM MQ Version 9.3, there are no workarounds and mitigations.
And then, of course, there is a new security vulnerability. Check out Security Bulletin: IBM MQ is vulnerable to multiple Eclipse Jetty issues, so please see more at this link, and see CVE-2021-28169, CVE-2021-34428, CVE-2021-28163, CVE-2021-28164, CVE-2021-34429, …
Read more