PTF Archives - Page 16 of 44

IBM Puts The Finishing Touches On PowerHA For IBM i 7.5

August 15, 2022 Alex Woodie

If you have been waiting to use the new release of PowerHA SystemMirror for IBM i 7.5, then we have good news for you: IBM has finally completed the paperwork necessary to enable customers to actually get it.

Unless you have a soft spot in your heart for IBM product IDs and feature codes (we know you’re out there), the August 9 software announcement doesn’t have a whole lot of actionable information. IBM says that it has updated the product “with the necessary product IDs and feature codes to complete the required ordering and upgrade structure,” which is IBM-speak for …
Read more
IBM i PTF Guide, Volume 24, Number 33

August 15, 2022 Doug Bidwell

First up, IBM has tweaked its temporary additional use policy for Power Systems software for migrations to Power E1080, Power E1050, and Power S1024 servers. You can read about it here.

Here is the significance of this. When you do an upgrade, you get 70 days from install to use the systems software for free. That can be extended once for 40 days, and then that can be extended again, once, for 3 days. After that, you have to beg for more if you need more time to do the upgrade. IBM doesn’t care about partitions, it’s the host …
Read more
IBM i PTF Guide, Volume 24, Number 32

August 8, 2022 Doug Bidwell

It has been a very quiet week on the PTF front for IBM i, which is a good thing after several weeks of lots of security vulnerabilities and other tweaks to the system.

Just a reminder that we have moved V7R1M0 from the weekly update to the archive. Anything new we are informed of that impacts IBM i 7.1, we will post here in the What’s NEW! Section at the top of the story. Also, if you have any IBM i 7.1 requests going forward, we will do our best to provide responses for. Thank you for your readership and …
Read more
IBM i PTF Guide, Volume 24, Number 31

August 3, 2022 Doug Bidwell

As often happens with systems software these days, there are a bunch of new security vulnerabilities with the IBM i stack that you need to be aware of.

First, there is Security Bulletin: OpenSSL for IBM i is vulnerable to arbitrary command execution (CVE-2022-2068), which you can find out more about at this link. The IBM i PTF numbers contain the fix for the vulnerability:
```
IBM i Release	5733-SC1	PTF Number
7.5		SI80588
		7.4, 7.3, 7.2	SI80587
```
Then there is Security Bulletin: IBM WebSphere Application Server Liberty is vulnerable to Identity Spoofing (CVE-2022-22476), which you can find out more …
Read more
IBM i PTF Guide, Volume 24, Number 30

July 25, 2022 Doug Bidwell

Just to keep you on your toes, we have to catch you up on a recent Security Bulletin: IBM WebSphere Application Server is vulnerable to Cross-site Scripting (CVE-2022-22477), which you can find out more about here. IBM WebSphere Application Server 9.0 and IBM WebSphere Application Server 8.5 are both affected by this security vulnerability. This vulnerability follows five vulnerabilities in last week’s issue.

Please note that we will be moving V7R1M0 from weekly update to archive. Anything new we are informed of that impacts IBM i 7.1, we will post here in the What’s NEW! Section at the top …
Read more
IBM i PTF Guide, Volume 24, Number 29

July 20, 2022 Doug Bidwell

Please note that we will be moving V7R1M0 from weekly update to archive. Anything new we are informed of that impacts IBM i 7.1, we will post here in the What’s NEW! Section at the top of the story. Also, if you have any IBM i 7.1 requests going forward, we will do our best to provide responses for. Thank you for your readership and support!

To begin with, there are Save and Restore Enhancements for IBM i 7.5, which you can find out more about here. RSTUSRPRF USRPRF(*ALL) no longer requires a dedicated system. The progress message displayed …
Read more
More IBM i Security Flaws Revealed

July 13, 2022 Alex Woodie

The summer slowdown might have started in your particular business, but things are just getting warmed up IBM security researchers, who disclosed a series of new vulnerabilities across IBM i products over the past couple of weeks, including IBM i Merlin, WAS Liberty, OpenSSL, the Digital Certificate Manager, and Zlib.

On June 27, IBM disclosed that the collection of open source and proprietary tools and technology it’s brought together as IBM i Modernization Engine for Lifecycle Integration (Merlin) suffers from no fewer than 16 separate security flaws.

Among the most series of these flaws is a CVE-2022-22965, a data binding …
Read more
IBM i PTF Guide, Volume 24, Number 28

July 13, 2022 Doug Bidwell

It has been quiet week in Lake Bugsbegone. The corn tassels are popping out of the stalks and you can hear them rustle in the wind, crinkly from lack of rain. Off in the distance, a rooster is crowing in the still of the afternoon, and a lone cow is lowing, unhappy with the dry cud. Rain will come soon enough, and then we will all be busy mowing the hay, with sweet corn for dinner. Take your downtime when you have it, and in the shade at that.

Here is the rundown of PTF Groups by IBM i release …
Read more
IBM i PTF Guide, Volume 24, Number 26

June 29, 2022 Doug Bidwell

There have been some remediations for some issues with the MQSeries message queuing middleware for the IBM i platform, including IBM MQ Version 9.2.4 CD and IBM MQ Version 9.2.5 CD. You can find out more here. As for remediation or fixes, this issue was resolved under APAR IT40453. Upgrade to IBM MQ Version 9.3, there are no workarounds and mitigations.

And then, of course, there is a new security vulnerability. Check out Security Bulletin: IBM MQ is vulnerable to multiple Eclipse Jetty issues, so please see more at this link, and see CVE-2021-28169, CVE-2021-34428, CVE-2021-28163, CVE-2021-28164, CVE-2021-34429, …
Read more
IBM i PTF Guide, Volume 24, Number 25

June 22, 2022 Doug Bidwell

It is beginning to feel a bit a bit like Groundhog Day at the IBM i PTF Guide. Yet more security vulnerabilities are surfacing in the IBM i platform. While the number of new security bulletins for IBM i is nowhere near what we see with Windows Server and Linux platforms, it has become a constant game of Whack-a-mole. So get out your rubber mallet and get the Aspercreme ready to fight tendonitis. . . .

First, we have Security Bulletin: IBM WebSphere Application Server Liberty for IBM i is vulnerable to identity spoofing and port status query (CVE-2022-22475 …
Read more

Previous Articles Next Articles

Content archive

Recent Posts

Subscribe

Pages

Search