OA24509: PROVIDE EAC FIXS

A fix is available

Subscribe

You can track all active APARs for this component.

APAR status

  • Closed as program error.

Error description

  • Various MVS control structures (such as TCBs, RBs, LLEs, and
    CDEs) are examined without proper serialization.  Because of
    this, the control blocks could be freed during HSSDIAG
    processing.  Since HSSDIAG runs with a psw key of zero, this can
    result in the disclosure of sensitive data stored in fetch
    protected system key storage.
    

Local fix

  • No local fix/workaround
    

Problem summary

  • ****************************************************************
    * USERS AFFECTED: All                                          *
    ****************************************************************
    * PROBLEM DESCRIPTION: Various MVS control structures (such    *
    *                      as TCBs, RBs, LLEs, and CDEs) are       *
    *                      examined without proper serialization   *
    *                      Because of this the control blocks      *
    *                      could be freed during HSSDIAG           *
    *                      processing.  Since HSSDIAG runs with a  *
    *                      psw key of zero, this can result in the *
    *                      disclosure of sensitive stored in fetch *
    *                      protected system key storage.           *
    ****************************************************************
    * RECOMMENDATION:                                              *
    ****************************************************************
    Various MVS control structures (such as TCBs, RBs,
    LLEs, and CDEs) are examined without proper
    serialization.  Because of
    this, the control blocks could be freed during HSSDIAG
    processing.  Since HSSDIAG runs with a psw key of zero,
    this can result in the disclosure of sensitive
    sensitive data stored in fetch protected system key
    storage.
    

Problem conclusion

  • Obtain local locks for serialisation. Test User
    access to various storage areas before switching to
    User Key for access to these areas.
    

Temporary fix

  • *********
    * HIPER *
    *********
    

Comments

APAR Information

  • APAR number

    OA24509

  • Reported component name

    ENHC ACC CNTRL

  • Reported component ID

    5697H5900

  • Reported release

    110

  • Status

    CLOSED PER

  • PE

    NoPE

  • HIPER

    YesHIPER

  • Special Attention

    NoSpecatt

  • Submitted date

    2008-04-01

  • Closed date

    2008-10-14

  • Last modified date

    2009-01-03

  • APAR is sysrouted FROM one or more of the following:

  • APAR is sysrouted TO one or more of the following:

    UA44592

Modules/Macros

  • HSSDIAG
    

Fix information

  • Fixed component name

    ENHC ACC CNTRL

  • Fixed component ID

    5697H5900

Applicable component levels

  • R110 PSY UA44592

       UP08/12/05 P F812

Fix is available

  • Select the PTF appropriate for your component level. You will be required to sign in. Distribution on physical media is not available in all countries.



Rate this page:

(0 users)Average rating

Add comments

Document information


More support for:

Enhanced Access Control for SCLM for z/OS

Software version:

1.1

Reference #:

OA24509

Modified date:

2009-01-03

Translate my page

Machine Translation

Content navigation