Apache Log4j Archives

IBM i PTF Guide, Volume 24, Number 19

May 11, 2022 Doug Bidwell

So here is what’s new. Here is a notice at the top of the Fix Central Home Page: “Your action may be required. IBM will implement infrastructure improvements to electronic fix distribution on June 4, 2022. IP and hostnames will change for servers that support fix delivery. New connections are required. You must configure your firewall and proxy server if you have a firewall in your network, or if your machine uses a proxy server to access the internet. Please see preparing firewalls and proxies.”

And here is another note from the PTF Cume Cover Letter: “IMPORTANT: Permanently apply any …
Read more
IBM i PTF Guide, Volume 24, Number 14

April 6, 2022 Doug Bidwell

Get your PTF patching fingers ready to roll across the keyboard because there are some new security vulnerabilities in the IBM i platform. First up, Security Bulletin: IBM Db2 Web Query for i is vulnerable to denial of service in Apache Commons Compress (CVE-2021-36090), arbitrary code execution in Apache Log4j (CVE-2021-44832), and cross-site scripting in TIBCO WebFOCUS (CVE-2021-35493), which you can learn about here.

Release 2.2.0 can be fixed by upgrading to release 2.2.1 or 2.3.0, depending on your IBM i release level:
- IBM i 7.4: Upgrade to Db2 Web Query for i 2.3.0
- IBM i 7.3: Upgrade to
…
Read more
IBM i PTF Guide, Volume 24, Number 11

March 16, 2022 Doug Bidwell

This Log4j security vulnerability just keeps being more and more pesky. If you haven’t seen it yet, there is an update to a Security Bulletin called Due to use of Apache Log4j, OmniFind Text Search Server for DB2 for i is vulnerable to arbitrary code execution (CVE-2021-4104), which you can read all about at this link.

The patches for each release are described in full here:

OmniFind V1R5M0:
- SI78753
- SI78754
- SI78755
OmniFind V1R4M0
- SI78756
- SI78757
- SI78758
OmniFind V1R3M0
- SI78751
- SI78759
- SI78760
- SI78761
To help you with the Log4j security vulnerability, we have created a supplemental spreadsheet as a companion …
Read more

Content archive

Recent Posts

Subscribe

Pages

Search

IBM i PTF Guide, Volume 24, Number 19

IBM i PTF Guide, Volume 24, Number 14

IBM i PTF Guide, Volume 24, Number 11

Content archive

Recent Posts

Subscribe

Pages

Search