IC88864: SECURITY APAR CVE-2012-1718, 3143, 3159, 5081

 

APAR status

  • Closed as program error.

Error description

  • There is a potential security exposure when using IBM InfoSphere
    Streams, which is due to vulnerabilities in IBM Java SE Version
    6 SDK.  Vulnerabilities in the Java Runtime Environment (JRE)
    allow remote attackers to affect confidentiality, integrity, and
    availability. For additional information on specific
    vulnerabilities refer to the CVE references:
    CVE-2012-1718
    CVE-2012-3143
    CVE-2012-3159
    CVE-2012-5081
    

Local fix

  • The recommended solution is to apply the IBM SDK for Linuxᄅ Java
    SE Version 6 fix as soon as practical.  A patch for this APAR is
    available from Fix Central and is named
    Patch_for_IBM_Java6_SR12_for_APAR_IC88851
    

Problem summary

  • See Error Description
    

Problem conclusion

  • A patch for this APAR is available from Fix Central and is named
    1.2.0.0-Patch_for_IBM_Java6_SR12
    

Temporary fix

Comments

APAR Information

  • APAR number

    IC88864

  • Reported component name

    INFOSPHERE STRE

  • Reported component ID

    5724Y95IS

  • Reported release

    121

  • Status

    CLOSED PER

  • PE

    NoPE

  • HIPER

    NoHIPER

  • Special Attention

    NoSpecatt

  • Submitted date

    2012-12-05

  • Closed date

    2013-01-17

  • Last modified date

    2013-01-17

  • APAR is sysrouted FROM one or more of the following:

    IC88851

  • APAR is sysrouted TO one or more of the following:

Fix information

  • Fixed component name

    INFOSPHERE STRE

  • Fixed component ID

    5724Y95IS

Applicable component levels

  • R121 PSY

       UP

  • R200 PSY

       UP

  • R300 PSY

       UP

Rate this page:

(0 users)Average rating

Document information


More support for:

InfoSphere Streams

Software version:

121

Reference #:

IC88864

Modified date:

2013-01-17

Translate my page

Machine Translation

Content navigation