• IBM i PTF Guide, Volume 26, Number 4

  January 29, 2024 Doug Bidwell

  OK, here’s a weird one and one that we have helped several customers sort out in the past few days and heard about from other business partners. There is a defective PTF for IBM i 7.4 that when applied with other software patches can cause the QSYS file system at the heart of the IBM i platform to magically disappear.

  Ooooof! Kinda hits you right in the solar plexus when you think about it. . . .

  This one is number 50 on the defective PTF list for IBM i 7.4, which you can read about at this link and …

  Read more

• IBM i PTF Guide, Volume 26, Number 2

  January 17, 2024 Doug Bidwell

  As odd as it may seem, this week there are HIPER and security patches available for IBM i 7.2, which has long since been off standard and now extended maintenance.

  First, there is a defective PTF for IBM i 7.2, which was noted on January 10.

  • LICENSED PROGRAM = 5798FAX
  • APAR NUMBER: SE81023
  • RECOMMENDATION: Apply fixing PTF xxxxxxx when it becomes available, or remove PTF SI85576, or use the SNDFAX command instead of the SBMFAX command.

  There is also an IBM i 7.2 Group HIPER, level 240, which is SF99719 and which you can find out more about here, …

  Read more

• IBM i PTF Guide, Volume 26, Number 1

  January 15, 2024 Doug Bidwell

  Well, there are two new security vulnerabilities in the IBM i stack, as we report elsewhere in this issue of The Four Hundred. And there is also an update to the System Planning Tool. Let’s do the latter first and the former last.

  The System Planning Tool, version 6.23.340, is now available for download at this link. The System Planning Tool is used by customers and business partners to build valid system configurations for Power Systems machines and their software stacks. You can look at the release notes for various SPT generations here.

  Now on to the …

  Read more

• IBM i PTF Guide, Volume 25, Numbers 51, 52, And 53

  January 10, 2024 Doug Bidwell

  With a holiday that started on December 15, the good folks at IT Jungle have a bit of catching up to do with the IBM i PTF Guide, which just kept rolling through 53 editions in 2023. (Yes, we know there are only 52 weeks in a year, but the way the days line up, you can get an extra edition of the Guide in a year.)

  In Volume 25, Number 51, we had Security Bulletin: IBM WebSphere Application Server Liberty for IBM i is vulnerable to denial of service due to a flaw in handling multiplexed streams (CVE-2023-44487), …

  Read more

• IBM i PTF Guide, Volume 25, Number 50

  December 11, 2023 Doug Bidwell

  Well, there are two new security vulnerabilities in the IBM i stack, as we report elsewhere in this issue of The Four Hundred. And there is also an update to the System Planning Tool. Let’s do the latter first and the former last.

  The System Planning Tool, version 6.23.340, is now available for download at this link. The System Planning Tool is used by customers and business partners to build valid system configurations for Power Systems machines and their software stacks. You can look at the release notes for various SPT generations here.

  Now on to the …

  Read more

• IBM i PTF Guide, Volume 25, Number 49

  December 6, 2023 Doug Bidwell

  Welcome back to having to worry about security vulnerabilities and PTF patches. This week, there are two security vulnerabilities, a set of patches for IBM i 7.2, and HIPERS for IBM i 7.4 and IBM i 7.5 – among other things. Let’s do the vulnerabilities to start.

  First, we have Security Bulletin: IBM Java SDK and IBM Java Runtime for IBM i are vulnerable to a remote attacker causing integrity impacts due to the libraries component (CVE-2023-22049), which you can find out more about here. The IBM i PTF Group numbers contain the fix for the vulnerability. Future PTF …

  Read more

• IBM i PTF Guide, Volume 25, Number 48

  December 4, 2023 Doug Bidwell

  It was the Thanksgiving holiday in the United States when we put together this issue of the IBM i PTF Guide, and you can be thankful that not much was going on. If we know one thing, we know that it will not stay that way. In the meantime, there are a few things to take a look at. We will see how the rest of the year plays out.

  Here is the rundown of PTF Groups by IBM i release level since we last published:

  PTF Groups 7.5:

  • Nothing

  PTF Groups 7.4:

  • Nothing

  PTF Groups 7.3:

  • Nothing

  Tip …

  Read more

• IBM i PTF Guide, Volume 25, Number 47

  November 27, 2023 Doug Bidwell

  Happy Belated Thanksgiving, welcome back to work, and pass the turkey and cranberry sauce leftovers if you don’t mind.

  Speaking of leftovers, there are some new patches for IBM i 7.2, which were updated on November 14. You can check out SF99719 720 Group HIPER – level 237 at this link and SF99718 720 Group Security – level 126 at that link.

  There is also a security vulnerability you need to be aware of, specifically Security Bulletin: Multiple Vulnerabilities in IBM Java SDK affect IBM WebSphere Application Server and IBM WebSphere Application Server Liberty due to the October 2023 …

  Read more

• IBM i PTF Guide, Volume 25, Number 46

  November 13, 2023 Doug Bidwell

  There’s a bunch of stuff going on this week in IBM i PTF Land. So let’s just get to it.

  First, we have a security vulnerability, which you can find out more about in Security Bulletin: IBM i is vulnerable due to a flaw in Samba which could allow an attacker to bypass security restrictions (CVE-2023-4091), located at this link. The issues can be fixed by applying a PTF to IBM i. IBM i releases 7.4, 7.3, and 7.2 will be fixed. The IBM i PTF number for 5770-SS1 contains the fix for the vulnerability.

  IBM i Release	5770-SS1 

  …

  Read more

• IBM i PTF Guide, Volume 25, Number 45

  November 6, 2023 Doug Bidwell

  What is new this week, you ask? Well, in IBM i PTF Land, there is a PTF patch for IBM i 7.2 – yeah, you heard that right – that was released on Halloween day and that addresses a security vulnerability that was made public on October 6 (CVE-2023-40377) relating to IBM Backup, Recovery & Media Services for i. Because of this flaw, the IBM i stack is vulnerable to a local privilege escalation, which is not a good thing.

  The security vulnerability patch is being made available even though IBM i 7.2 was taken off regular Software Maintenance on …

  Read more

Previous Articles Next Articles