• IBM i PTF Guide, Volume 20, Number 49

  December 12, 2018 Doug Bidwell

  Well, there is not much going on this week in IBM i PTF Land. There are no new groups, just a bunch of security vulnerabilities. To be precise, there is a Security Bulletin: Vulnerabilities CVE-2018-5407 and CVE-2018-0734 in OpenSSL that affect IBM i.

  The PTFs to fix these vulnerabilities are:

  • Release 7.2 and 7.3: SI68727
  • Release 7.1: SI68726

  For further information, check out this link.

  New Links this week: Sorry, nothing new here, either. Ho, Ho, Ho!

  The Guide at a glance: There are no new defectives this week (12/08), going for a new record! Here is the defective …

  Read more

• IBM i PTF Guide, Volume 20, Number 48

  December 5, 2018 Doug Bidwell

  There is a new HIPER group, but no Security group, that is new on all three supported releases (V7R3, V7R2, and V7R1).

  Just a reminder that between May 19 and 22 next year, the POWERUp19 conference, formerly known as the COMMON conference, is heading to the Disneyland Resort in Anaheim, California. With over 300 sessions for Power Systems and IBM i education, you can keep your skills up-to-date by creating a custom schedule based on your specific needs. Find out more details at https://www.common.org/events/powerup/.

  There are recommended fixes for Electronic Services. I just spent a full week working through …

  Read more

• IBM i PTF Guide, Volume 20, Numbers 46 And 47

  November 28, 2018 Doug Bidwell

  It is catchup week (is that ketchup or catsup?) here at the IBM i PTF Guide, with the hiatus that The Four Hundred took during the Thanksgiving holiday in America. So today you get two for the price of one.

  In Number 46 of the Guide, we see that there is a new version of Access Client Solutions, Build 1.1.8.1, as of November 12! Fun stuff!

  There were also HIPERs and Security groups for all three current IBM i releases – yep, that means V7R1, too, as well as V7R2 and V7R3.

  New Links that week: Nagios system …

  Read more

• IBM i PTF Guide, Volume 20, Number 44

  November 7, 2018 Doug Bidwell

  Hello fellow residents of IBM i Land. In this week’s edition of the IBM i PTF Guide, there are new HIPER PTFs for all releases – that’s IBM i 7.1, 7.2, and 7.3 – and there is a new Security group for IBM i 7.3. It is rather sparse this week, and we suspect it will kick up next week. So enjoy the relatively easy week of IBM i patching.

  At a glance defective PTFs: There are no new defectives this week (11/01), looking good so far!

  Defective PTF rundown (The last defective for each release):
  
  	Defect		Defective	APAR	

  …

  Read more

• IBM i PTF Guide, Volume 20, Number 41

  October 17, 2018 Doug Bidwell

  The PTF Guide at IT Jungle has been keeping IBM i users up-to-date on Individual, Group, and Cumulative PTFs for many, many years. But this guide is only helpful if you use it, so please take the time to make sure you are current on your PTFs. The PTFs on this page go back over two years, which is hopefully a lot further back you’re you would need to go. OK, lecture over. Now for what’s new! This week was saw a Security Bulletin for Vulnerability CVE-2018-11763 in the IBM i HTTP Server that affects IBM i. However there were …

  Read more

• IBM i PTF Guide, Volume 20, Number 40

  October 10, 2018 Doug Bidwell

  There’s been some action on the PTF front with HIPERs and Security Groups for all releases this week. We also see that MGTools is updating again, with new stuff every week or two there. Again, there were no new links this week, but keep checking our handy guide to make sure you are staying up to date.

  Quick sidebar on some interesting messages you’ll hear when you call IBM Service for support. It seems there won’t be any phone support for Sev2 and lower after October 15. We’re guessing that will result in an uptick in number of Sev 1, …

  Read more

• IBM i PTF Guide, Volume 20, Number 39

  October 3, 2018 Doug Bidwell

  Readers of IT Jungle already know what’s been happening in the IBM i ecosystem, so let’s take a look at what’s new in PTF Land this week. As we all know, IBM i 6.1 extended support ended on September 30, but post life cycle options are now available so contact your next level of support for further information. ECS also has new recommended fixes for both 7.3 and 7.2, so please check the link in our guide for details. We did not get any new defectives for the week of September 29, but here is the rundown on the last …

  Read more

• The Herculean Task Of Applying Spectre/Meltdown Patches

  October 1, 2018 Timothy Prickett Morgan

  The Spectre and Meltdown speculative execution vulnerabilities are, as our resident chief technology officer and author of the weekly IBM i PTF Guide, Doug Bidwell, is fond of saying, the gift that just keeps on giving.

  We had the shock of finding out in January that there were vulnerabilities in all processor architectures that use speculative execution in their instruction chewing engines – that means all existing processors, by the way. There are none that do not use this very useful architectural feature. And then we had the wait to see what the industry would do to patch these …

  Read more

• IBM i PTF Guide, Volume 20, Number 38

  September 26, 2018 Doug Bidwell

  Hello good people of IBM i Land. There are HIPER and Security PTFs on all three releases this week: That’s IBM i 7.3, 7.2, and 7.1. So dig in and have a gander at the spreadsheet and figure out what to do.

  Here are the important links this week:

  • Ethernet How to Temporarily Enable or Disable Large Send Offload (LSO) on the IBM i
  • Security All Security Bulletins for IBM i
  • Security Apache on IBM i Security Updates
  • Security Java on IBM i security updates
  • Security Vulnerabilities for OpenSSL on IBM i
  • Security Vulnerabilities for OpenSSH on IBM i

  The …

  Read more

• Serious Security Vulns Patched In IBM i

  September 19, 2018 Alex Woodie

  No good deed goes unpunished. Such as it is with cybersecurity, which demands unceasing attention paid to a never-ending stream of flaws and patches as the cost of remaining off the front page. To that end, IBM patched several more security flaws in IBM i last week, including two serious flaws in Node.js, five critical vulnerabilities in Samba, and one moderate flaw in OpenSSH.

  It’s easy to get lulled into a false state of security on the IBM i server, thanks to its unique architecture, cryptic file names, and reputation for strong security. It’s hard enough to find programmers, administrators, …

  Read more

Previous Articles Next Articles