Fields excluded from Detail or Activity views will be cleared of their values when objects are updated
An issue (APAR: PM64026) has been identified in the OpenPages GRC Platform that could lead to unintended data changes. Customers with detail or activity views that do not contain all object fields will find that the excluded fields are cleared of their values when objects are updated.
Update July 6, 2012: Inventory has been updated to correct this issue. See Verify Fix section to determine if installations prior to this date require this correction.
DESCRIPTION: Object fields not included in profiles can be cleared of data when the objects are updated. An example scenario would be as follows:
- There are 15 fields on the Risk object type.
- Profile A includes all 15 Risk object fields.
- Profile B includes only 10 of the Risk object fields.
- User 1 is configured to use Profile A.
- User 2 is configured to use Profile B.
- User 1 creates or updates a Risk object, filling in all 15 fields.
- User 2 later updates the same Risk, making a change to only one field.
- User 1 later reviews the Risk and notices that five fields now have no value.
- A review of the audit log will show User 2 updated the intended field, as well as cleared the five fields not in Profile B.
IBM OpenPages GRC Platform 6.1
Review the audit history for affected objects and restore the data based on the changes captured therein.
Apply IBM OpenPages GRC Platform release 18.104.22.168 IF 1 (OP 22.214.171.124.1) immediately. This release is available on Fix Central:
To check how OP 126.96.36.199 Interim Fix 1 (OP 188.8.131.52.1) is installed, the steps would be:
- Open a browser.
- Go to the OpenPages URL.
- Login with an administrator id.
- Using the navigation menubar, go to: My OpenPages -> Build Information.
- The build information should display the following. The bold, italicized 1 in the Framework 6.0 line indicates IF1 has been applied.
Server 8.0: 184.108.40.206 (Build: OP_6.1-303 2012/04/12 16:38:16)
Framework 6.0: 220.127.116.11 (Build: OP_18.104.22.168. 1-1 2012/05/07 18:12:49)
Database Procedures: 22.214.171.124.28.4 2011/11/29 13:22:11
IBM OpenPages GRC Platform: 126.96.36.199 (Build: OP_6.1-303 2012/04/12 16:42:25)
Platform SDK 8.0: 188.8.131.52 (Build: OP_6.1-303 2012/04/12 16:38:16)
Database Schema: 1.2184.108.40.206.13 2010/12/20 18:30:57
None known. Apply the interim fix immediately.
Note: The content of this Alert is based on the best-available information as of the date of its publication.