• IBM i PTF Guide, Volume 24, Number 28

  July 13, 2022 Doug Bidwell

  It has been quiet week in Lake Bugsbegone. The corn tassels are popping out of the stalks and you can hear them rustle in the wind, crinkly from lack of rain. Off in the distance, a rooster is crowing in the still of the afternoon, and a lone cow is lowing, unhappy with the dry cud. Rain will come soon enough, and then we will all be busy mowing the hay, with sweet corn for dinner. Take your downtime when you have it, and in the shade at that.

  Here is the rundown of PTF Groups by IBM i release …

  Read more

• IBM i PTF Guide, Volume 24, Number 26

  June 29, 2022 Doug Bidwell

  There have been some remediations for some issues with the MQSeries message queuing middleware for the IBM i platform, including IBM MQ Version 9.2.4 CD and IBM MQ Version 9.2.5 CD. You can find out more here. As for remediation or fixes, this issue was resolved under APAR IT40453. Upgrade to IBM MQ Version 9.3, there are no workarounds and mitigations.

  And then, of course, there is a new security vulnerability. Check out Security Bulletin: IBM MQ is vulnerable to multiple Eclipse Jetty issues, so please see more at this link, and see CVE-2021-28169, CVE-2021-34428, CVE-2021-28163, CVE-2021-28164, CVE-2021-34429, …

  Read more

• IBM i PTF Guide, Volume 24, Number 25

  June 22, 2022 Doug Bidwell

  It is beginning to feel a bit a bit like Groundhog Day at the IBM i PTF Guide. Yet more security vulnerabilities are surfacing in the IBM i platform. While the number of new security bulletins for IBM i is nowhere near what we see with Windows Server and Linux platforms, it has become a constant game of Whack-a-mole. So get out your rubber mallet and get the Aspercreme ready to fight tendonitis. . . .

  First, we have Security Bulletin: IBM WebSphere Application Server Liberty for IBM i is vulnerable to identity spoofing and port status query (CVE-2022-22475 …

  Read more

• Getting A Firm Handle On Power Systems And Storage Firmware

  June 15, 2022 Richard Warren

  Back in the old days of the AS/400 and the iSeries, most customers had a single box or maybe two, one for production applications and databases and one for development of high availability. And everything that box needed was inside of itself.

  And at most, you applied two kinds of PTFs – those for the operating system and those for the microcode – to the machine, and you did that maybe once or twice a year and every once in a while you might add some group PTFs to update security or other important features.

  But the world has changed …

  Read more

• IBM i PTF Guide, Volume 24, Number 24

  June 15, 2022 Doug Bidwell

  If it seems like just about every week there is a security vulnerability within the broad and deep expanse of the IBM i platform, well it isn’t just seeming like that. It is like that. And this week we start out with four news ones that you have to contend with in the IBM i PTF Guide.

  First, we have Security Bulletin: Due to use of Spring Framework, IBM Db2 Web Query for i is vulnerable to unprotected fields (CVE-2022-22968), remote code execution (CVE-2022-22965), and denial of service (CVE-2022-22950). Find out more about that at this link. Here …

  Read more

• IBM i PTF Guide, Volume 24, Number 23

  June 8, 2022 Doug Bidwell

  Welcome to this week’s edition of the IBM i PTF Guide. We start out with a correction to the Technology Refresh tab in the spreadsheet, where the “LIC Resave” values that were for 7.4 TR6 and 7.3 TR12 were based on an IBM site that was itself incorrect. That site has since been corrected, and now we have corrected the information in the sheet. Many thanks to Jeff at IBM for catching this!

  And now, a bevy of Security Bulletins – four different vulnerabilities that affect the IBM i platform, to be specific.

  First, we have Security Bulletin: IBM …

  Read more

• IBM i PTF Guide, Volume 24, Number 22

  June 1, 2022 Doug Bidwell

  Well, there is a lot of stuff going on with IBM i PTFs this week, with cumulative patch rollups, or Cumes as we call them, Technology Refreshes, and other goodies. Specifically, IBM i 7.3 and IBM i 7.2 have Cume rollups, as well as their respective TR6 and TR12 updates of new functionality.

  There are also two new security vulnerabilities. First, there is Security Bulletin: IBM Navigator for i is vulnerable to an SQL injection (CVE-2022-22495), which you can read about at this link. The patches for this vulnerability are as follows:

  IBM i Release	HTTP Server for i 

  …

  Read more

• IBM i PTF Guide, Volume 24, Number 21

  May 25, 2022 Doug Bidwell

  Not to give you any work to do, but I am going to give you some work to do. There is a new service pack for system firmware level MH1010, and this service pack, which you can read about here, addresses a HIPER issue. Next, compression with the ZLIB algorithm with Geographic Mirroring synchronization is coming soon! You can find out more about it at this link. And finally, check out the infrastructure changes that are coming to IBM Electronic Fix Distribution / IBM Fix Central system, which might necessitate customer firewall and proxy setting changes, which you …

  Read more

• IBM i PTF Guide, Volume 24, Number 20

  May 18, 2022 Doug Bidwell

  It was busy last week in the world of PTFs, but this week it is pretty quiet, excepting a few things. Which is good, because maybe you are not quite yet caught up anyway, right? It has been a long four years since we have new machines to play with, and we’re looking forward to getting our hands on IBM i 7.5 and, more importantly, seeing what kind of machines and deals that IBM will be making with the Power10 machines in July.

  Here is the rundown of PTF Groups by IBM i release level since we last published, with …

  Read more

• IBM i 7.3 TR12: The Non-TR Tech Refresh

  May 16, 2022 Alex Woodie

  The launches of IBM i version 7.5 and 7.4 Technology Refresh 6 a few of weeks ago garnered a lot of attention from the IBM i community, thanks to the new capabilities they bring to the platform. But IBM is also bringing some of the same enhancements to IBM i 7.3. And while it is bundling the PTFs that deliver the enhancements for version 7.3 in a package labeled TR12, it is not an official TR, IBM officials say.

  IBM plans to release IBM i 7.3 TR12 on May 24, according to IBM i TR page for version 7.3 on …

  Read more

Previous Articles Next Articles