APAR status
Closed as program error.
Error description
Error Message: N/A . Stack Trace: N/A .
Local fix
N/A
Problem summary
Security vulnerabilities have been identified.
Problem conclusion
Node.js has been updated to fix the following vulnerabilities: CVE-2016-5172 CVE-2016-5180 X-Force 118650 X-Force 118651 http://www.ibm.com/support/docview.wss?uid=swg21993007 . This APAR will be fixed in the following IBM SDK for Node.js Releases: 6.9.1.0 1.1.1.5 1.2.0.16 4.6.1.0 . Contact your IBM Product's Service Team for these Service Refreshes and Fix Packs. For those running stand-alone, information about the available Service Refreshes and Fix Packs can be found at: http://www.ibm.com/developerworks/web/nodesdk/
Temporary fix
Comments
APAR Information
APAR number
IV91495
Reported component name
NODE.JS
Reported component ID
AIMNDJS00
Reported release
600
Status
CLOSED PER
PE
NoPE
HIPER
NoHIPER
Special Attention
NoSpecatt / Xsystem
Submitted date
2016-12-13
Closed date
2016-12-13
Last modified date
2016-12-13
APAR is sysrouted FROM one or more of the following:
APAR is sysrouted TO one or more of the following:
Fix information
Fixed component name
NODE.JS
Fixed component ID
AIMNDJS00
Applicable component levels
R600 PSY
UP
R110 PSY
UP
R120 PSY
UP
R421 PSY
UP
[{"Business Unit":{"code":"BU059","label":"IBM Software w\/o TPS"},"Product":{"code":"SSWLKB","label":"IBM SDK for Node.js"},"Component":"","ARM Category":[],"Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"600","Edition":"","Line of Business":{"code":"LOB45","label":"Automation"}}]
Document Information
Modified date:
11 February 2022