APAR status
Closed as program error.
Error description
There are multiple vulnerabilities in IBM Runtime Environment Java Version 6, 7 and 8 that is used by WebSphere Extreme Scale. These issues were disclosed as part of the IBM Java SDK updates in July 2016.
Local fix
PSIRT
Problem summary
**************************************************************** * USERS AFFECTED: All users of WebSphere eXtreme Scale 7.1.0 * * clients and servers * **************************************************************** * PROBLEM DESCRIPTION: CVEID: CVE-2016-3485 * * DESCRIPTION: An unspecified * * vulnerability related to the * * Networking component has no * * confidentiality impact, low integrity * * impact, and no availability impact. * * CVSS Base Score: 2.9 * * CVSS Temporal Score: See * * https://exchange.xforce.ibmcloud.com/vu * * lnerabilities/115273 for the current * * score * * CVSS Environmental Score*: Undefined * * CVSS Vector: * * (CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I * * :L/A:N) * **************************************************************** * RECOMMENDATION: * **************************************************************** Multiple vulnerabilities in IBM SDK, Java Technology Edition affect WebSphere eXtreme Scale: CVE-2016-3485
Problem conclusion
A fix has been provided, available at this link: http://www-01.ibm.com/support/docview.wss?uid=swg27018991
Temporary fix
Comments
APAR Information
APAR number
PI70240
Reported component name
XD EXTREME SCAL
Reported component ID
5724J3402
Reported release
710
Status
CLOSED PER
PE
NoPE
HIPER
NoHIPER
Special Attention
NoSpecatt / Xsystem
Submitted date
2016-10-05
Closed date
2016-11-30
Last modified date
2018-08-20
APAR is sysrouted FROM one or more of the following:
APAR is sysrouted TO one or more of the following:
Fix information
Fixed component name
XD EXTREME SCAL
Fixed component ID
5724J3402
Applicable component levels
[{"Business Unit":{"code":"BU053","label":"Cloud & Data Platform"},"Product":{"code":"SSTVLU","label":"WebSphere eXtreme Scale"},"Component":"","ARM Category":[],"Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"710","Edition":"","Line of Business":{"code":"LOB45","label":"Automation"}}]
Document Information
Modified date:
23 September 2020