IV43562: SECURITY VULNERABILITY IN "IBSTAT" COMMAND APPLIES TO AIX 7100-00

A fix is available

Subscribe

You can track all active APARs for this component.

APAR status

  • Closed as program error.

Error description

  • The "ibstat" command has a security vulnerability that
    can
    allow a non-privileged user to run malicious code with
    privileged authority.
    

Local fix

Problem summary

  • The "ibstat" command allows a non-privileged user to run
    malicious code with privileged authority.
    

Problem conclusion

  • Fixed the vulnerability
    

Temporary fix

Comments

  • 6100-06 - use AIX APAR IV43582
    6100-07 - use AIX APAR IV43106
    6100-08 - use AIX APAR IV43580
    6100-09 - use AIX APAR IV43657
    6100-09 - use AIX APAR IV43657
    7100-00 - use AIX APAR IV43562
    7100-01 - use AIX APAR IV43539
    7100-02 - use AIX APAR IV43561
    

APAR Information

  • APAR number

    IV43562

  • Reported component name

    AIX V7.1

  • Reported component ID

    5765H4000

  • Reported release

    710

  • Status

    CLOSED PER

  • PE

    NoPE

  • HIPER

    NoHIPER

  • Submitted date

    2013-06-03

  • Closed date

    2013-06-03

  • Last modified date

    2013-11-22

  • APAR is sysrouted FROM one or more of the following:

    IV43106

  • APAR is sysrouted TO one or more of the following:

Fix information

  • Fixed component name

    AIX V7.1

  • Fixed component ID

    5765H4000

Applicable component levels

  • R710 PSY U853850

       UP13/11/22 I 1000

PTF to Fileset Mapping



Rate this page:

(0 users)Average rating

Add comments

Document information


More support for:

AIX Enterprise Edition

Software version:

710

Operating system(s):

AIX

Reference #:

IV43562

Modified date:

2013-11-22

Translate my page

Machine Translation

Content navigation