Doug Bidwell

• IBM i PTF Guide, Volume 26, Numbers 48 Through 50

  January 13, 2025 Doug Bidwell

  With The Four Hundred on hiatus for the holidays in late December and early January, we are playing catch up with editions of the IBM i PTF Guide. This week, we will close out 2024 with the final three editions put together in December.

  Let’s start with Volume 26, Number 48, which came out December 7. It starts with Security Bulletin: Vulnerability in IBM Java SDK affect IBM WebSphere Application Server and IBM WebSphere Application Server Liberty due to October 2024 CPU, which you can learn more about here. The affected products include WebSphere Application Server 8.5 and …

  Read more

• IBM i PTF Guide, Volume 26, Number 47

  December 9, 2024 Doug Bidwell

  Just a reminder: For the first time in a long, long while there are pre-requisites for a Technology Refresh. Sorting out the contingencies will keep us busy for a while. Here’s the word from IBM: OSP-Technology Refresh : Prereq licensed internal code PTFs, which you can find out more about at this link. These are the pre-reqs for the Technology Refreshes:

  • IBM i 7.5: SJ02898
  • IBM i 7.4: SJ02897

  Now there is another issue you need to be aware of. Specifically: Potential to render new Feature Code EN24 / EN26 CCIN EC2A adapters inoperable, which you can find out …

  Read more

• IBM i PTF Guide, Volume 26, Number 46

  December 4, 2024 Doug Bidwell

  First time in a long, long while there are pre-requisites for a Technology Refresh. Sorting out the contingencies will keep us busy for the rest of the year!

  Here’s the word from IBM: OSP-Technology Refresh : Prereq licensed internal code PTFs, which you can find out more about at this link. These are the pre-reqs for the Technology Refreshes:

  • IBM i 7.5: SJ02898
  • IBM i 7.4: SJ02897

  There are also a number of other issues – three to be specific – that have been reported to Big Blue and that have been issued tweaks to correct them. They are …

  Read more

• IBM i PTF Guide, Volume 26, Number 45

  December 2, 2024 Doug Bidwell

  It was pretty quiet in PTF Land just after The Four Hundred went on publishing hiatus, and we are still playing catch up getting out the sequential changes to the IBM i patch stack and any security vulnerabilities you may need to be aware of.

  The good news this time around is that we have not run across any security issues. So carry on, and have a look at the High Impact/Pervasive (HIPER) and security patches that have been put out for IBM i 7.3, IBM i 7.4, and IBM i 7.5.

  Here is the rundown of PTF Groups by …

  Read more

• IBM i PTF Guide, Volume 26, Number 44

  November 11, 2024 Doug Bidwell

  The number of patches slowed down last week, and we are not sure if that had anything to do with the election in the United States, but what we do know is we all got a break. And we will take it, and then get back to work.

  There are a number of security vulnerabilities with WebSphere middleware, an issue with drive logging, and several fixes for TGTRLS in the RPG compilers.

  First, we have Security Bulletin: IBM WebSphere Application Server is vulnerable to an XML External Entity Injection (XXE) vulnerability (CVE-2024-45086), which you can read about here. This …

  Read more

• IBM i PTF Guide, Volume 26, Number 43

  November 6, 2024 Doug Bidwell

  It is one of those quite weeks in PTF Land, and that is not surprising given the election that was underway as we went to press with this edition of The Four Hundred. This week, there are a bunch of PTF patches for the core IBM i releases that are still supported by Big Blue, but no security vulnerabilities that we could find and no weird things, either. Go figure.

  Here is the rundown of PTF Groups by IBM i release level since we last published:

  PTF Groups 7.5:

  • Memo to Users
  • RPG Café
  • PowerHA Tools for IBM i

  …

  Read more

• IBM i PTF Guide, Volume 26, Number 42

  November 4, 2024 Doug Bidwell

  Welcome to this week’s edition of the IBM i PTF Guide. Just a note of explanation to start off. In the Defective PTF section below, we only show you the first one for each release. Often there are more than one. If there is a new one that you haven’t encountered before, please follow the link in the Guide (for your release level) to get the complete list of defectives. And please review the special instructions – things sometimes become more complex the deeper you dig, especially with defectives.

  Now, here is a bug for you in PowerHA. Some …

  Read more

• IBM i PTF Guide, Volume 26, Number 41

  October 21, 2024 Doug Bidwell

  Don’t get hyper about HIPERs, but there are some issues you need to deal with if you have moved to IBM i 7.5. High Impact / Highly Pervasive (HIPER) Issue Potential undetected data loss can occur on LPARs using NPIV with certain Fibre Channel adapters. Potential undetected data loss can occur on LPARs using NPIV over Fibre Channel adapters with the following Feature Codes:  EN1E/EN1F, EN1G/EN1H, EN1J/EN1K, EN2L/EN2M, and EN2N/EN2P.

  You can read about this HIPER PTF at this link.

  Now, there are also two security vulnerabilities on this week’s To Do list.

  First, we have Security Bulletin: IBM …

  Read more

• IBM i PTF Guide, Volume 26, Number 40

  October 14, 2024 Doug Bidwell

  First off this week, there is a security vulnerability for you to deal with in your IBM i systems. Specifically, we have Security Bulletin: Vulnerability in MD5 Signature and Hash Algorithm affects IBM i (CVE-2015-7575), which you can read more about here. IBM i releases 6.1, 7.1. and 7.2 are supported and will be fixed as follows:

  5770-999, 5770-SS1:

  • Release 6.1.1 – MF60292
  • Release 7.1 – SI59229, MF61242, MF60291
  • Release 7.2 – SI59230, MF61243, MF60290

  5770-UME:

  • CIM 1.3: SI59244
  • CIM 1.4: SI59193

  Also, be aware of changes to data upload for IBM Support – Preparing customer firewalls and proxies …

  Read more

• IBM i PTF Guide, Volume 26, Number 39

  October 9, 2024 Doug Bidwell

  Brace yourself, there is lots of stuff going on in PTF Land this week. To begin with, there are three security vulnerabilities.

  First, we have Security Bulletin: IBM HTTP Server (powered by Apache) for IBM i is vulnerable to a remote attacker causing a denial of service, executing arbitrary code, and mapping URLs to filesystem locations due to multiple vulnerabilities. You can find out more about this vulnerability at this link. The patches are as follows, by release:

  7.5	SJ01738
  	SJ02179
  7.4	SJ01739
  	SJ02177
  7.3	SJ01752
  	SJ02176
  7.2	SJ01751
  	SJ02130
  

  Second, we have Security Bulletin: IBM i (V6.1, 7.1, …

  Read more

Previous Articles Next Articles