IV43582: SECURITY VULNERABILITY IN "IBSTAT" COMMAND APPLIES TO AIX 6100-06

A fix is available

Subscribe

You can track all active APARs for this component.

APAR status

  • Closed as program error.

Error description

  • The "ibstat" command has a security vulnerability that
    can
    allow a non-privileged user to run malicious code with
    privileged authority.
    

Local fix

Problem summary

  • The "ibstat" command allows a non-privileged user to run
    malicious code with privileged authority.
    

Problem conclusion

  • Fixed the vulnerability
    

Temporary fix

Comments

  • 6100-06 - use AIX APAR IV43582
    6100-07 - use AIX APAR IV43106
    6100-08 - use AIX APAR IV43580
    6100-09 - use AIX APAR IV43657
    6100-09 - use AIX APAR IV43657
    7100-00 - use AIX APAR IV43562
    7100-01 - use AIX APAR IV43539
    7100-02 - use AIX APAR IV43561
    

APAR Information

  • APAR number

    IV43582

  • Reported component name

    AIX 610 STD EDI

  • Reported component ID

    5765G6200

  • Reported release

    610

  • Status

    CLOSED PER

  • PE

    NoPE

  • HIPER

    NoHIPER

  • Submitted date

    2013-06-03

  • Closed date

    2013-06-03

  • Last modified date

    2013-11-21

  • APAR is sysrouted FROM one or more of the following:

    IV43106

  • APAR is sysrouted TO one or more of the following:

Fix information

  • Fixed component name

    AIX 610 STD EDI

  • Fixed component ID

    5765G6200

Applicable component levels

  • R610 PSY U857762

       UP13/08/01 I 1000

PTF to Fileset Mapping



Rate this page:

(0 users)Average rating

Document information


More support for:

AIX Enterprise Edition

Software version:

610

Operating system(s):

AIX

Reference #:

IV43582

Modified date:

2013-11-21

Translate my page

Machine Translation

Content navigation