IV35961: CICSANIMSRV CAN CRASH DUE TO HEAP BASED BUFFER OVERFLOW

Subscribe

You can track all active APARs for this component.

APAR status

  • Closed as program error.

Error description

  • cicsanimsrv can crash due to heap based buffer overflow
    

Local fix

Problem summary

  • cicsanimsrv utility in TXSeries is vulnerable to a heap-based
    buffer overflow, caused by improper bounds. A local attacker
    could overflow a buffer and cause the cicsanimsrv to crash.
    

Problem conclusion

  • Code is fixed to address the vulnerability.
    

Temporary fix

Comments

APAR Information

  • APAR number

    IV35961

  • Reported component name

    TXSERIES V6 AIX

  • Reported component ID

    5724AX600

  • Reported release

    620

  • Status

    CLOSED PER

  • PE

    NoPE

  • HIPER

    NoHIPER

  • Special Attention

    NoSpecatt

  • Submitted date

    2013-01-29

  • Closed date

    2013-01-29

  • Last modified date

    2013-01-29

  • APAR is sysrouted FROM one or more of the following:

    IV35944

  • APAR is sysrouted TO one or more of the following:

Fix information

  • Fixed component name

    TXSERIES V6 AIX

  • Fixed component ID

    5724AX600

Applicable component levels

  • R620 PSY

       



Rate this page:

(0 users)Average rating

Add comments

Document information


More support for:

TXSeries
CICS

Software version:

6.2

Reference #:

IV35961

Modified date:

2013-01-29

Translate my page

Machine Translation

Content navigation