IC59994: TSM WEB CLIENT BUFFER OVERRUN SECURITY VULNERABILITY

Subscribe

You can track all active APARs for this component.

APAR status

  • Closed as program error.

Error description

  • Buffer overrun vulnerability in the TSM client Web GUI
    

Local fix

Problem summary

  • ****************************************************************
    * USERS AFFECTED: All 5.1.x, 5.2.x, 5.3.x, 5.4.x, and 5.5.x    *
    *                 clients that support the Web GUI             *
    ****************************************************************
    * PROBLEM DESCRIPTION: See Error Description                   *
    ****************************************************************
    * RECOMMENDATION: Apply fixing level when available. This      *
    *                 problem is currently projected to be fixed   *
    *                 in the following levels:                     *
    *                                                              *
    *                 - 5.1.8.3: Tru64                             *
    *                                                              *
    *                 - 5.2.5.4: AIX 32-bit, HP PA-RISC, Solaris,  *
    *                   Windows x32                                *
    *                                                              *
    *                 - 5.3.6.6: AIX 32-bit, HP PA-RISC, Linux     *
    *                   x86, Solaris, Windows x32, Windows x64,    *
    *                   and TSM Express 5.3.6.6 client package     *
    *                                                              *
    *                 - 5.4.2.7: All platforms                     *
    **
    *                 - 5.5.2.0: All platforms                     *
    ****************************************************************
    *
    

Problem conclusion

  • The problem has been fixed so it no longer occurs.
    

Temporary fix

Comments

  • jad, 30 April 2009, updated with 5.4.2.7 level
    

APAR Information

  • APAR number

    IC59994

  • Reported component name

    TSM CLIENT

  • Reported component ID

    5698ISMCL

  • Reported release

    55W

  • Status

    CLOSED PER

  • PE

    NoPE

  • HIPER

    NoHIPER

  • Special Attention

    NoSpecatt

  • Submitted date

    2009-02-12

  • Closed date

    2009-02-24

  • Last modified date

    2009-05-01

  • APAR is sysrouted FROM one or more of the following:

  • APAR is sysrouted TO one or more of the following:

    PK85190

Modules/Macros

  • DSMAGENT
    

Fix information

  • Fixed component name

    TSM CLIENT

  • Fixed component ID

    5698ISMCL

Applicable component levels

  • R51T PSY

       UP

  • R52A PSY

       UP

  • R52H PSY

       UP

  • R52S PSY

       UP

  • R52W PSY

       UP

  • R53A PSY

       UP

  • R53H PSY

       UP

  • R53L PSY

       UP

  • R53O PSY

       UP

  • R53S PSY

       UP

  • R53W PSY

       UP

  • R54A PSY

       UP

  • R54D PSY

       UP

  • R54E PSY

       UP

  • R54F PSY

       UP

  • R54H PSY

       UP

  • R54I PSY

       UP

  • R54L PSY

       UP

  • R54M PSY

       UP

  • R54N PSY

       UP

  • R54P PSY

       UP

  • R54S PSY

       UP

  • R54W PSY

       UP

  • R54X PSY

       UP

  • R55A PSY

       UP

  • R55D PSY

       UP

  • R55E PSY

       UP

  • R55F PSY

       UP

  • R55H PSY

       UP

  • R55I PSY

       UP

  • R55L PSY

       UP

  • R55M PSY

       UP

  • R55N PSY

       UP

  • R55P PSY

       UP

  • R55S PSY

       UP

  • R55T PSY

       UP

  • R55W PSY

       UP

  • R55Z PSY

       UP



Rate this page:

(0 users)Average rating

Add comments

Document information


More support for:

Tivoli Storage Manager

Software version:

55W

Reference #:

IC59994

Modified date:

2009-05-01

Translate my page

Machine Translation

Content navigation