Interim Fixes for IBM Domino 8.5.1 Fix Pack 5

Fix readme


This technote contains download information and Fix Lists for Interim Fixes for version 8.5.1 Fix Pack 5 of IBM Domino. The latest Interim Fix for Domino 8.5.1 Fix Pack 5 is Interim Fix 3 (released December 2014).


Interim Fix 3 for Domino 8.5.1 Fix Pack 5 (released December 2014)
  • Fix List
    KLYH9RMJGL TLS Padding Vulnerability affects IBM Domino (CVE-2014-8730) (technote 1693142)
    KLYH9QXMQE Disable SSL 3 ini
    XXLI9GR8KV Domino console output can not list all information of the embedded JVM maintenance release (such as JVM SR15FP1)
    JWAE8NAPW7 Extra AIX shared memory created by Domino JVMs. Domino 8.5.2 shipped with Java 6 SR 7 and on AIX the Java heap is allocated with 64K pages by default, instead of 4K pages as in previous JVM releases. This change caused the JVM to use a shared memory segment and can caused Domino to crash. This fix switches the default value back to 4K pages on Domino 32bit running on AIX. (AIX only) (technote 1572118)
    MCOA8C7CNX Java HTTP Web agents use up more JVM heap space than necessary - JVM: java.lang.OutOfMemoryError

Interim Fix 2 for Domino 8.5.1 Fix Pack 5 (released November 2014)
  • Fix List
    ITDL9PWMFU CVE-2014-3566 - SSLv3 POODLE (Padding Oracle On Downgraded Legacy Encryption) (technote 1687167)
    KLYH9Q3L4V Add support for TLS 1.0 inbound
    KLYH9Q4KQ5 Add HTTP support for TLS 1.0
    DKEN9N8T3M Remove weak SSL/TLS CipherSpecs
    GFAL9PVDN8 SSLv2 not disabled for IMAP
    YDEN8RNH22 Enhancement Request: Support for TLS specifically For SMTP

Interim Fix 1 for Domino 8.5.1 Fix Pack 5 for use with Quickr for Domino (released May 2012)

Fix Info
This fix provides additional security to Lotus Quickr for Domino 8.5.1. Applying this interim fix and setting a specific parameter provides additional security in Quickr. This Interim Fix fixes SPR# JMPO82GFV8.

NOTE: Apply this interim fix only to Domino 8.5.1 Fix Pack 5 (
A similar fix exists for Domino 8.5.1 Fix Pack 3 ( Refer to "Lotus Quickr for Domino fix for Domino 8.5.3 Fix Pack 1 ("

Interim Fix 1 for Domino 8.5.1 Fix Pack 5 ( is available for the following operating systems:

  • Windows 32-bit
  • Linux
  • AIX
  • i5/OS (formerly OS/400)

To enable this additional security, first apply Domino 8.5.1FP5 interim fix 1 (links below). Then, enable the following settings in the qpconfig.xml file for the Quickr for Domino server:

      <post_redirectto_protection enabled="true"/>

For more information, refer to the readme file included with Lotus Quickr for Domino 8.5.1 Fix Pack 28 or later fix pack.

Download Links
Fix name in Quickr readme file
Fix Central ID
Windows 32-bit Win32 - 851FP5HF434 Quickr_DominoServer_851FP5IF1_W32
Linux Linux - 851FP5HF433 Quickr_DominoServer_851FP5IF1_Linux
AIX AIX- 851FP5HF432 Quickr_DominoServer_851FP5IF1_AIX
i5/OS Quickr_DominoServer_851FP5IF1_IBMi_5.4

In addition, this issue was reported to Quality Engineering as SPR# DADS8RBUXR and YVEN87MQUH and will be fixed in Domino 8.5.3 Fix Pack 2 (

Related information

A simplified Chinese translation is available

Cross reference information
Segment Product Component Platform Version Edition
Messaging Applications IBM Domino AIX, i5/OS, Linux, Windows
Organizational Productivity- Portals & Collaboration Lotus Quickr for Domino

Document information

More support for:

IBM Domino

Software version:


Operating system(s):

AIX, IBM i, Linux, Windows

Reference #:


Modified date:


Translate my page

Content navigation