Fix packs for DataPower Integration Appliance version 7.0

Download Description

Fix packs are located on Fix Central.

• To read about new features, limitations, and restrictions, see the Release Notes in the Knowledge Center.
• To download fix packs, go to the Fix Central website.

• Before installing any fix pack, review the DataPower Knowledge Collection on firmware updates.
• For information about how to download DataPower fix packs from Fix Central, see Fix Central.
  

---

7.0.0.20
• 7.0.0.19
• 7.0.0.18
• 7.0.0.17
• 7.0.0.16
• 7.0.0.15
• 7.0.0.14
• 7.0.0.13
• 7.0.0.12
• 7.0.0.11
• 7.0.0.10
• 7.0.0.9
• 7.0.0.8
• 7.0.0.7
• 7.0.0.6
• 7.0.0.5
• 7.0.0.4
• 7.0.0.3
• 7.0.0.2
• 7.0.0.1
• 7.0.0.0

---




7.0.0.20

Release date: 25 September 2017
Last modified: 25 September 2017
Status: Available

APAR	Description
IT22119	A VULNERABILITY IN SYSTEM LOG ON IBM DATAPOWER GATEWAYS WEBGUI CONSOLE.
IT22120	A VULNERABILITY IN THE NODE.JS COMPONENT OF IBM DATAPOWER GATEWAYS. (CVE-2017-11499)
IT22121	A VULNERABILITY IN PROCESSING XDR DATA.




Back to top

---




7.0.0.19

Release date: 1 June 2017
Last modified: 1 June 2017
Status: Available

APAR	Description
IT20690	POSSIBLE DENIAL OF SERVICE VULNERABILITIES IN SSL (CVE-2017-3731, CVE-2016-7055)




Back to top

---




7.0.0.18

Release date: 23 March 2017
Last modified: 23 March 2017
Status: Available

APAR	Description
IT17957	MQ MESSAGES CONTAINING MQRFH2 HEADERS ARE NOT BACKED OUT TO BACKOUT DESTINATION
IT17976	TIBCO EMS FAULT-TOLERANCE MIGHT NOT RETRY BACKUP SERVER OR OTHER GROUPS
IT18091	GET-DIFF XML MANAGEMENT COMMAND DOES NOT GIVE CONFIGURATION DIFFERENCE IN CASE OF EXPORTS IN XML FORMAT
IT18379	DATAPOWER MIGHT RESTART UNEXPECTEDLY IF BACKEND FTP SERVER CLOSES ITS CONNECTION WITH DATAPOWER UNEXPECTEDLY
IT18516	MODIFYING SNMP SETTINGS DURING SNMP CLIENT TRAFFIC MIGHT RESTART THE FIRMWARE
IT18568	XML MANAGER XML PARSER TAB IGNORE SETTING DOES NOT WORK FOR ENTITY LEVEL EXTERNAL REFERENCES
IT18757	SECURITY ENHANCEMENTS ON WEBGUI CONSOLE
IT18842	GSKIT SWEET32 BIRTHDAY ATTACKS VULNERABILITY IN TAM/ISAM AND JMS COMPONENTS (CVE-2016-2183)
IT18973	DATAPOWER NFS POLLER FSH CAUSES A 0-BYTE FILE TO BE DELIVERED AS 1-BYTE FILE TO THE BACKEND.
IT19012	UNEXPECTED RESTART MIGHT OCCUR WITH LONG RUNNING SLM PEER GROUP CONFIGURATIONS
IT19049	DATAPOWER SSH CONNECTIONS CLOSURE MIGHT CAUSE AN UNEXPECTED RESTART IN RARE CIRCUMSTANCES
IT19063	SLM PEER GROUP CONFIGURATION FAILS DUE TO A STRING LENGTH MISMATCH
IT19145	DOMAIN QUIESCE/UNQUIESCE CAUSES MQ QM OBJECT LEAK THAT INTERMITTENTLY PREVENTS THE DOMAIN FROM RESTARTING
IT19703	TWO VULNERABILITIES IN THE SSH COMPONENT OF IBM DATAPOWER GATEWAYS (CVE-2016-10009, CVE-2016-10012)




Back to top

---




7.0.0.17

Release date: 20 January 2017
Last modified: 20 January 2017
Status: Available

APAR	Description
IT15738	DATAPOWER MIGHT MISS STATE PARAMETER IN AN OAUTH ERROR RESPONSE
IT16154	DATAPOWER MIGHT RESTART WHEN TRYING TO TRANSFORM JSON CONTENT WITH XSLT CONTAINING <DP:URL-OPEN>
IT16790	DATAPOWER STORE:///LOG-SOAP.WSDL IS MISSING SOAPACTION ATTRIBUTE
IT16895	RELOAD OCCURS WHEN TRYING TO VIEW A PROBE WHICH CONTAINS NO CONTENT-TYPE
IT17171	HTTP CONTENT-TYPE HEADER CANNOT BE SET IN AN ERROR RULE WHEN CALLED BY ON-ERROR ACTION
IT17202	DP:SUBSTRING-BASE64() MIGHT RESTART DATAPOWER WITH OFFSET PARAMETER OUTSIDE VALID RANGE
IT17565	MQ CONNECTIONS MIGHT CAUSE RESTART
IT17603	ISAM CLIENT MIGHT NOT COME UP AFTER APPLIANCE RESTART
IT17658	STORED PROCEDURES WITH REFCURSOR ARGUMENTS FAIL WHEN USING DATA SOURCE OBJECTS WITH EXTENDED ORACLE SUPPORT ENABLED
IT17816	DISABLING A NFS LOGGING TARGET MIGHT CAUSE A DEVICE RESTART IN RARE CASES
IT17833	REUSE OF SSH PERSISTENT CONNECTIONS WHEN TIMEOUT OCCURS MAY CAUSE UNEXPECTED RELOAD.
IT17838	DATAPOWER MIGHT RESTART WHEN CERTAIN EXTENSION FUNCTIONS ARE EXECUTED UNDER LOAD
IT17898	DATAPOWER MIGHT RESTART TRIGGERED BY SSH CONNECT/DISCONNECT CYCLE
IT17917	DATAPOWER MEMORY USAGE MIGHT GROW SLOWLY OVER TIME IN A HEAVY SLM USAGE SCENARIO.
IT17930	DATAPOWER MIGHT RESTART WHEN DISABLING A LOAD BALANCER GROUP WITH HEALTH CHECK IN PROGRESS
IT18116	DATAPOWER MIGHT RESTART WHEN AN MQ CONNECTION SUFFERS FROM A BROKEN NETWORK CONNECTION.
IT18153	DATAPOWER CPU MIGHT SPIKE CAUSING UNRESPONSIVENESS WHEN THERE ARE MANY MQ HANDLERS DEFINED ON A SERVICE
IT18157	MQ ERROR CODE 2010 IS VISIBLE WHEN SHARING CONVERSATION IS USED EVEN IF MXMSGML OF QMGRS CHANNEL IS GREATER THAN MQ-QM MSG SIZE
IT18195	DATAPOWER MIGHT RESTART WHEN MQ-QM OBJECT STATE CHANGES FROM UP TO DOWN DURING HIGH VOLUME OF MQ TRAFFIC
IT18259	ON IDG UNDER DIAGNOSTICS MODE THE NIC ONLINE TEST FAILS AND LEDS STAY OFF EVEN WHEN THE CABLES ARE CONNECTED
IT18793	A VULNERABILITY IN SSL/TLS PROTOCOL IN IBM DATAPOWER GATEWAYS (CVE-2016-8610)




Back to top

---




7.0.0.16

Release date: 21 November 2016
Last modified: 21 November 2016
Status: Available

APAR	Description
IT14560	APPLIANCE MIGHT RESTART UNDER HIGH LOAD WHEN USING ODR TO INTERFACE WITH WEBSPHERE LIBERTY
IT15078	XSD:MININCLUSIVE DOES NOT WORK FOR XML SCHEMA XSD:DATETIME WITHOUT TIMEZONE RESTRICTION
IT15287	APPLIANCE MIGHT RESTART IF DP:URL-OPEN EXTENSION FUNCTION CANNOT ALLOCATE A LARGE CONTIGUOUS BUFFER
IT16036	APPLIANCE MIGHT UNEXPECTEDLY RELOAD WHEN HTTP TRANSACTION FAILS DUE TO TIMEOUT
IT16244	INCORRECT SSL ERROR WRONG VERSION NUMBER IS ISSUED WHEN RECEIVING 5XX ERROR FROM HTTP PROXY SERVER WHEN USING CONNECT
IT16320	WILDCARD REGULAR EXPRESSION FOR DOMAIN NAME IS NOT WORKING IN ACCESS PROFILE
IT16351	APPLIANCE MIGHT RELOAD WHEN TCP PROXY RECEIVES UNEXPECTED EOF ON FRONT OR BACK SIDE PORT
IT16398	PROBE WILL FAIL (COMPILE ERROR) IN AN APPLICATION DOMAIN IF DEFAULT DOMAIN IS NOT VISIBLE TO THAT DOMAIN
IT16449	DYNAMIC MULTISTEP ACTION LEAK MAY OCCUR IN DOMAINS HAVING SSH FSH WITH AAA POLICY
IT16474	WTX DPA MAP IN DATAPOWER DOES NOT RETURN CORRECT MILLISECONDS VALUE IN CURRENTDATETIME() CALL
IT16647	DATAPOWER MAY CORRUPT MIME ATTACHMENTS DURING PROCESSING WHEN DATA MEETS A VERY RARE CONDITION
IT16673	WEB APPLICATION FIREWALL MIGHT CAUSE RELOAD ON EVALUATING A MALFORMED COOKIE
IT16813	SMTP COMMUNICATION MIGHT FAIL DUE TO DATAPOWER SENDING A MALFORMED REQUEST
IT16814	BAD SYNCHRONIZATION IN DATAPOWER MIGHT CAUSE A RESTART IN MQ FSH
IT16833	DELETING AN FTP, SFTP, OR NFS POLLER MIGHT TRIGGER A RELOAD
IT16873	DATAPOWER INTERMITTENT AND UNEXPECTED RESTART WITH MQ SHARING CONVERSATION
IT16908	INCLUDE EXISTING COMMAND LINE INTERFACE LOGS IN AN ERROR REPORT IN CASE OF UNEXPECTED RESTART
IT16932	TRYING TO LIST A DIRECTORY AFTER ISSUING CCC FTP COMMAND MIGHT CAUSE A RELOAD
IT16950	TRANSFORMATION ACTION INCREMENTING MESSAGE COUNTER ASYNCHRONOUSLY MIGHT TRIGGER A RELOAD
IT17001	WHEN USING DATA LINK CONNECTION IN ORACLE DATABASE TO QUERY DATA, ONLY PART OF THE RECORD RESULTS ARE RETURNED
IT17003	SNMP INTERFACE64 COUNTER WRAPS INCORRECTLY AT 4294967296 BYTES
IT17056	WSDL REFRESHES CONTINUE AFTER DISABLING DOMAIN
IT17082	APPLIANCE MIGHT UNEXPECTEDLY RELOAD WHEN EXECUTING A CONFIGURATION CHECKPOINT
IT17122	APPLIANCE MIGHT RELOAD WHEN CONFIGURING XC10 GRID ENCRYPTION IF THE WRONG TYPE OR LENGTH KEY IS USED
IT17125	DATAPOWER HSM COMPONENT FIRMWARE LEVEL 2.2 DOES NOT ALLOW TO IMPORT ANY KEYS INTO HSM
IT17138	DATAPOWER HSM VERSION 2.2 MIGHT CAUSE RSA SIGNATURE FAILURE
IT17146	DATAPOWER MIGHT RESTART WHILE COLLECTING AN ERROR REPORT
IT17165	HTTP/1.1 411 LENGTH REQUIRED ERROR RETURNED FOR EMPTY POST/PUT WITHOUT CONTENT_LENGTH HEADER
IT17167	WTX FUNCTION DOESNT ALWAYS HANDLE JAPANESE/NATIVE CHARACTER CORRECTLY
IT17182	SSH MITIGATION FOR CVE-2010-5107
IT17195	COPYING A FILE TO AN NFS STATIC MOUNT VIA THE CLI INCORRECTLY REPORTS SUCCES WHEN THE MOUNT IS DOWN
IT17221	GATEWAYSCRIPT URLOPEN MODULE CAUSES DOCUMENT PARTIALLY CACHED UNDER SOME CONDITIONS
IT17236	DELETING APPLICATION DOMAINS MIGHT TAKE LONGER
IT17261	WHEN CHANGING THE CONFIGURATION FOR A MULTI-PROTOCOL GATEWAY OR WEB SERVICE PROXY, DATAPOWER MIGHT RELOAD
IT17280	SIX VULNERABILITIES IN THE SSL COMPONENT OF IBM DATAPOWER GATEWAYS
IT17323	GATEWAYSCRIPT URLOPEN MODULE WILL HANG UNDER SOME CONDITIONS
IT17325	GATEWAYSCRIPT URLOPEN MODULE CAUSES DOCUMENT TO BE PARTIALLY CACHED WHEN THE CONNECTION TIMES OUT
IT17441	MODIFYING LOAD BALANCER GROUP CONFIGURATION WHILE APPLIANCE UNDER HEAVY LOAD MIGHT LEAD TO APPLIANCE RELOAD
IT17895	THE DEVICE MIGHT SHOW MEMORY GROWTH DUE TO DELAY IN RELEASING MEMORY FROM THE BACKEND URL ASSOCIATED WITH THE WS-PROXY SERVICE
IT17896	APPLIANCE MIGHT HANG AND RESTART, GENERATING A WATCHDOG BACKTRACE




Back to top

---




7.0.0.15

Release date: 16 September 2016
Last modified: 16 September 2016
Status: Available

APAR	Description
IT14088	LOAD BALANCER GROUP STATUS UPDATE MAY CAUSE UNEXPECTED APPLIANCE RESTART
IT15007	PASSING INCORRECT HREF FORMAT INTO A XFORMPI ACTION WILL TRIGGER UNEXPECTED APPLIANCE RESTART
IT15140	USE OF ENFORCE-RBM ON CLI MAY CAUSE UNEXPECTED APPLIANCE RESTART WHEN PROCESSING CLI COMMAND
IT15445	DELETING OR RESTARTING A DOMAIN WITH AN NFS STATIC MOUNT MIGHT UNEXPECTEDLY RESTART THE APPLIANCE
IT15457	DIFFICULTY IN COMMUNICATING WITH NFS SERVER MAY CAUSE HIGHER SUSTAINED CPU USAGE
IT15649	INCORRECT MILLISECOND TIMESTAMP LOG FORMATTING IN CASE OF MILLISECOND PART LESS THAN 100
IT15721	APPLIANCE MAY UNEXPECTEDLY RESTART WHEN BACKEND SFTP SERVER DELAYS ITS SSH CONNECTIONS TO THE DEVICE
IT15764	USING SPECIAL CHARACTERS IN SFTP PASSWORD MAY RESULT IN FAILURE TO CONNECT TO SFTP SERVER
IT15844	CHANGES IN INTERFACE CONFIGURATION USING STANDBY CONTROL MAY CAUSE AN UNEXPECTED APPLIANCE RESTART
IT15848	DOMAIN CHECKPOINT STATUS MAY CAUSE UNEXPECTED APPLIANCE RESTART
IT15996	SOURCE-MQFTE MAY CAUSE UNEXPECTED APPLIANCE RESTART WHEN POLLING MQ SERVER
IT15997	WHILE UPDATING NFS MOUNT STATE AN UNEXPECTED APPLIANCE RESTART MAY OCCUR
IT16042	DISABLING AN NFS STATIC MOUNT MAY LEAD TO AN UNEXPECTED APPLIANCE RESTART
IT16229	NFS MOUNTS MAY NOT ENTER AN UP STATE CORRECTLY
IT16241	GENERATING ERROR REPORT MAY RESTART THE APPLIANCE WHILE DATAPOWER TRIES TO GET GATEWAYSCRIPT RUNTIME HEAP STATISTICS
IT16279	GATEWAYSCRIPT VULNERABILITY IN THE V8 COMPONENT OF IBM DATAPOWER GATEWAYS (CVE-2016-1669)
IT16715	SERVICE UTILIZING MQ BACKOUT MAY CAUSE AN UNEXPECTED APPLIANCE RESTART IF BACKOUT ATTEMPT OCCURS




Back to top

---




7.0.0.14

Release date: 20 July 2016
Last modified: 20 July 2016
Status: Available

APAR	Description
IT12955	COOKIE ATTRIBUTE POLICY MAY NOT RELEASE MEMORY
IT13455	INTERMITTENT TIMEOUT TO IMS CONNECT SERVER
IT13810	SFTP FRONT SIDE HANDLER IS STILL DOWN EVEN AFTER ENABLING THE DOMAIN
IT14033	IMPROPER USE OF DP:SUBSTRING-BASE64() ON NON-BASE64 DATA MIGHT RESULT IN APPLIANCE RESTART
IT14084	NFS POLLER FSH DOES NOT START WORKING AFTER INITIAL CREATION OF THE OBJECT.
IT14135	MESSAGES THAT REQUIRE SIGNATURE MAY NOT BE REJECTED IF IT IS NOT SIGNED
IT14267	THE DATAPOWER DEVICE MAY RELOAD DUE TO LARGE NUMBER OF MQ CONNECTIONS BEING USED RESULTING MANY MQ ERROR OF 2059.
IT14318	FIRMWARE UPGRADE MAY THROW VALIDATION ERROR WHEN INTERNAL FILESYSTEM SPACE IS FULL
IT14325	SYSTEM USAGE FOR DCO TASK MAY REPORT A LOWER THAN EXPECTED VALUE FOR CPU USAGE
IT14387	TASKS REPORTED MULTIPLE TIMES IN SYSTEM USAGE, POSSIBLY IMPACTING PERFORMANCE AND STABILITY
IT14456	IT MAY CAUSE HIGH CPU USAGE WHEN ENABLE-SHARING IS ENABLED IN SQL DATA SOURCE RUNTIME SETTINGS.
IT14650	UNABLE TO CONFIGURE MANY SECONDARY ADDRESSES.
IT14708	WHEN PROCESSING EMPTY BODIED RESPONSES ON SSL ENABLED XML FIREWALL APPLIANCE MAY EXPERIENCE CONNECTION FAILURES
IT14743	DATAPOWER FIRMWARE 7.2 MAY HANG IF THROTTLE IS ENABLED. WITH THROTTLE ENABLED, ADDING NEW ADMIN USERID MAY CAUSE REBOOT.
IT14807	DATAPOWER MIGHT RESTART UNEXPECTEDLY IF TRYING TO COMPILE A WSDL THAT CONTAINS NON-URL <SOAP:ADDRESS LOCATION=.../> VALUE
IT14875	GATEWAYSCRIPT URLOPEN FUNCTION RESPONSE.HEADERS OUTPUT IS NOT CORRECT WHEN HEADER IS NON-COALESCED.
IT14892	USER SESSION NOT TERMINATED ON ACCOUNT LOCKOUT.
IT14914	DOCUMENT CACHE CAN RETURN INCORRECT RESULTS UNDER HEAVY LOAD
IT14936	A VULNERABILITY IN CROSS-SITE REQUEST FORGERY
IT14996	RESTARTING/DISABLING/ENABLING A DOMAIN CONTAINING NFS STATIC MOUNTS MIGHT TAKE A LONG TIME TO COMPLETE IN CERTAIN SITUATIONS
IT15099	NFS MOUNT MAY NOT COME UP CORRECTLY
IT15160	IBM DATAPOWER GATEWAY THE SAME CACHE NAME FROM DIFFERENT DPA OBJECTS MIGHT BE WRONGLY USED TO THE DIFFERENT SERVICE.
IT15218	POSSIBLE INSTABILITY WHEN OUT OF FILE DESCRIPTORS
IT15231	SLM MULTICAST PEERING NOT UPDATING CORRECTLY
IT15234	SFTP POLLER MIGHT STOP WORKING
IT15295	HTML FORMS LOGIN - COOKIE ATTRIBUTE POLICY DOES NOT INCLUDE SECURE ATTRIBUTE
IT15324	WTX ENGINE MIGHT RESTART WHEN PROCESSING SPECIAL CHARACTERS IN DOUBLE-BYTE MODE.
IT15340	A RELOAD MAY OCCUR DURING RAPID AND REPEATED MOUNTING AND UNMOUNTING OF AN NFS MOUNT.
IT15367	CERTAIN FTP REQUESTS MAY RESULT IN AN UNEXPECTED RELOAD
IT15442	DATAPOWER MIGHT FAIL TO IMPORT FILES WHICH HAVE IDENTICAL PATH/FILENAME IF REMOVING FOLDER / SLASHES
IT15454	VULNERABILITIES IN THE SSL COMPONENT OF IBM DATAPOWER GATEWAYS.
IT15458	VULNERABILITIES IN THE SSL COMPONENT OF IBM DATAPOWER GATEWAYS.
IT15508	WTX INTERNAL ERROR. UNEXPECTED MAPPING ERROR.
IT15555	FIPS COMPLIANCE REQUIRES 2048 BYTE OR LARGER KEYS ON HSM
IT15629	BINARY TRANSFORM WITH WTX MAP MAY THEORETICALLY FAIL IN EXTREMELY RARE RANDOM CASES.
IT15693	WHILE USING MQ FTE FRONT SIDE HANDLER APPLIANCE MAY UNEXPECTEDLY RELOAD
IT15708	THE MQ-QM OBJECT FAILS WHEN SSL CONNECTIONS ARE USED IN SLOW NETWORKS.
IT16865	CHANGES MADE TO A DOMAIN MUST BE REVIEWED IN THE GUI BEFORE SAVING.




Back to top

---




7.0.0.13

Release date: 20 May 2016
Last modified: 20 May 2016
Status: Available

APAR	Description
IT11118	DATAPOWER MIGHT FAIL TO CANCEL PROCESSING IF AN FTP POLLER FRONTSIDE HANDLER CANNOT RENAME THE INPUT FILE
IT12023	INCORRECT XSLT BEHAVIOR WHEN COMPARING LOCAL VARIABLES
IT12165	NFS OBJECTS MAY NOT CLEAN UP CORRECTLY AND USE ADDITIONAL RESOURCES
IT12248	OCSP, WSRR, OR XC10 RELATED TRANSACTIONS MAY STALL IF THE TARGET SERVER USES PERSISTENT CONNECTIONS
IT12405	MIME PROCESSING MAY CAUSE AN UNEXPECTED RESTART
IT12502	WSRR AUTOMATIC SYNCHRONIZATION MAY CAUSE APPLIANCE TO RESTART
IT12515	CONNECTION ERROR MAY BE LOGGED MULTIPLE TIMES
IT12822	APPLIANCE MAY RESTART WHEN USING SLM SCHEDULING IN COMBINATION WITH THE ACTION SET TO SHAPING
IT12929	ADD THREE BUFFER COMPARE FUNCTIONS TO GATEWAYSCRIPT
IT12946	DATAPOWER MAY RESTART WHEN MQ FRONTSIDE HANDLER IS MISCONFIGURED
IT13148	INCORRECT MQ CONNECTION HANDLING MAY CAUSE AN UNEXPECTED APPLIANCE RESTART
IT13158	DNS RESOLUTION MIGHT FAIL DUE TO CASE SENSITIVITY
IT13795	DATAPOWER WEB SERVICE PROXY WITH MQ FSH REQUEST MATCHING LOGIC MIGHT STRUGGLE WITH AMBIGUOUS RESULTS ALSO VISIBLE IN LOGS
IT13844	WHEN PROCESSING MQ TRANSACTIONS APPLIANCE MAY UNEXPECTEDLY RESTART
IT13885	WHILE PROCESSING MQ URLOPENER IN A TRANSACTION, APPLIANCE MIGHT UNEXPECTEDLY RESTART
IT13913	USE OF THE PROBE MAY CAUSE AN UNEXPECTED APPLIANCE RESTART LATERWHEN GENERATING INTERNAL-STATE OR ERROR REPORT.
IT14028	SYSLOG MESSAGES WILL NOT CONTAIN NEWLINE IF OVER 1024 CHARACTERS LONG
IT14060	WHEN RUNNING OUT OF MEMORY IN SQL RUNTIME THIS MAY ALSO CAUSE THE TEMPORARY FILESYSTEM TO RUN OUT OF SPACE
IT14089	APPLICATION DOMAINS THAT USE EXTERNAL CONFIGURATION SOMETIMES FAIL TO LOAD
IT14128	THE WAY A CACHE KEY WAS INTERNALLY BUILT CAUSED ISSUES FOR THE DOCUMENT CACHE WHEN INTEGRATING WITH WEBSPHERE EXTREME SCALE
IT14136	USING NFS-POLLERS MIGHT LEAD TO UNEXPECTED MEMORY GROWTH
IT14139	GATEWAY DEBUG PROBE DATA NOT IMPORTED WHEN USING XML MANAGEMENT INTERFACE
IT14147	CLICKING AN OBJECT WITH INVALID CONFIGURATION IN WEBGUI MIGHT RESTART THE APPLIANCE
IT14185	IN SOME CASES UNQUIESCING SERVICES LISTENING ON 0.0.0.0 IN A SELF-BALANCED GROUP MAY NOT CAUSE THEM TO GET REINSTATED
IT14190	UNEXPECTED APPLIANCE RESTART MIGHT OCCUR DURING AN INTERNAL PROCESS SUCH AS ISAM
IT14230	A VULNERABILITY IN THE SSL COMPONENT OF IBM DATAPOWER GATEWAYS. (CVE-2016-0701 CVE-2015-3197)
IT14231	A VULNERABILITY IN THE SSL COMPONENT OF IBM DATAPOWER GATEWAYS (CVE-2015-3195)
IT14295	GATEWAYSCRIPT READASJSON() CANNOT PROCESS UTF-8 ENCODED JSON DATA THAT IS BOM PREFIXED (BYTE ORDER MARK).
IT14409	HIGH LOAD SEEN DUE TO MQ SHARING CONVERSATIONS
IT14472	ACCESS MANAGER DOWN AFTER DEVICE RESTART




Back to top

---




7.0.0.12

Release date: 8 March 2016
Last modified: 8 March 2016
Status: Available

APAR	Description
IT13989	GNU C LIBRARY (GLIBC) VULNERABILITY AFFECTS IBM DATAPOWER GATEWAYS (CVE-2015-7547)
IT14164	A HASH SELECTOR VULNERABILITY IN IBM GSKIT AFFECTS IBM DATAPOWER GATEWAYS.




Back to top

---




7.0.0.11

Release date: 5 February 2016
Last modified: 5 February 2016
Status: Available

APAR	Description
IT10034	REFRESHING AN OAUTH ACCESS TOKEN DOES NOT RESULT IN AN ERROR WHEN USING INVALID PARAMETER
IT10594	UNEXPECTED RESTART MAY OCCUR ON SQL-EXECUTE
IT11162	DATAPOWER RESTARTS WHILE PROCESSING MIME ATTACHEMENT WITH VERY LONG FILENAME (OVER 254 CHARACTERS) AND PROBE ENABLED.
IT11174	AAA LDAP AUTHENTICATION OR AUTHORIZATION MIGHT FAIL WHEN DN CONTAINS WHITE SPACE.
IT11215	SFTP ISSUE PASSING CERTAIN NON-ALPHANUMERIC CHARACTERS IN PASSWORD
IT11366	URL-OPEN IN GATEWAYSCRIPT MAY CAUSE UNEXPECTED RELOAD WHEN UTILIZING THE HEADER OPTIONS.
IT11426	OAUTH REFRESH TOKEN CANNOT BE RE-USED
IT11551	DATAPOWER RESTART CAUSED BY MISSING SYNCHRONIZATION IN PROBE CODE
IT11552	TRANSACTIONS MIGHT HANG ON CACHED DOCUMENT REVALIDATION OR THE APPLIANCE MIGHT RESTART
IT11642	APPLIANCE LOAD ALONG WITH DIAGNOSTIC COMMAND CAN RESULT IN RESTART OF THE APPLIANCE.
IT11678	USING SNMP FOR OID 1.3.6.1.2.1.4.20 CAN LEAD TO UNEXPECTED BEHAVIOR INCLUDING HUNG TRANSACTIONS AND APPLIANCE RESTART
IT11697	SNMP FUNCTION HAS POTENTIAL VULNERABILITIES
IT11733	OAUTH AUTHENTICATION WHOSE GRANT TYPE IS PASSWORD FAILS WHEN THE PASSWORD CONTAINS %
IT11760	DATAPOWER MAY RESTART UNEXPECTEDLY IF ATTEMPTING TO PROCESS INPUT LARGER THAN 1 GB USING GATEWAYSCRIPT BUFFER API
IT11824	IN RARE CASES, USING SECURE BACKUP MIGHT LEAD TO UNEXPECTED BEHAVIOR INCLUDING HUNG TRANSACTIONS AND APPLIANCE RESTART
IT11825	USING SECURE BACKUP MIGHT LEAD TO UNEXPECTED BEHAVIOR INCLUDING HUNG TRANSACTIONS AND APPLIANCE RESTART
IT11841	USE OF STANDBY GROUP WITH SELF-BALANCING CAN RESULT IN UNEXPECTED BEHAVIOR INCLUDING HUNG TRANSACTIONS AND RESTART
IT11926	THE APPLIANCE MAY UNEXPECTEDLY RESTART WHEN PERFORMING AN MQFTE BACKOUT
IT11928	RBM RADIUS FAILOVER NOT WORKING
IT11997	FTP FRONT SIDE HANDLER ENDS THE CONNECTION WHEN PASSIVE PORT IS 65535
IT12032	DATAPOWER APPLIANCE MAY UNEXPECTEDLY RESTART IN MQFTE TRANSACTION
IT12035	APPLIANCE MAY RESTART WHILE PROCESSING MQ
IT12040	RESOURCE OWNER IS SET INCORRECTLY WHEN FORMS LOGIN COOKIE IS BEING USED
IT12043	APPLIANCE MAY HANG AND WATCHDOG DURING THE OAUTH CONFIGURATION
IT12061	UNDER LOAD AN SSL PROXY SERVICE MAY INTERMITTENTLY FAIL
IT12100	JSON SCHEMA VALIDATION MAY PRODUCE INCORRECT RESULTS WHEN JSON SCHEMA CONTAINS THE ITEMS KEYWORD
IT12258	WHILE PROCESSING MQ TRANSACTIONS APPLIANCE MAY UNEXPECTEDLY RESTART
IT12548	IN SOME CASES DATAPOWER MAY NOT PROPERLY PARSE DIME MESSAGES, WHICH RESULTS IN A MALFORMED MESSAGE BEING SENT TO THE NEXT HOP
IT12556	UNEXPECTED RESULTS MAY BE DISPLAYED ON STATUS PROVIDERS AND IN SOME CASES CAUSE UNEXPECTED RESTART ON ERROR REPORT GENERATION
IT12635	SOME OBJECTS MAY UNINTENTIONALLY BE EXPORTED RESULTING IN ERROR MESSAGES ON RE-IMPORT.
IT12655	TCP PROXY SERVICE MAY CLOSE THE FRONT-SIDE CONNECTION IN MIDDLE OF DATA TRANSFER
IT12696	TCP WINDOW SCALING OPTION CANT BE TURNED OFF
IT12722	UNICAST SLM PEERING NOT SYNCING WITH OTHER IN PEER GROUP.
IT12863	SET-CONFIG SOMA CALL MAY FAIL IF INSERTIONATTRIBUTES ELEMENT IS INCLUDED
IT13742	SLOTH: VULNERABILITIES IN TLS HANDSHAKE DUE TO USE OF MD5 SIGNATURES




Back to top

---




7.0.0.10

Release date: 6 November 2015
Last modified: 5 November 2015
Status: Available

APAR	Description
IT09081	ERRORS ARE SEEN WHEN AN FTP CLIENT CLOSES THE CONNECTION IMMEDIATELY AFTER OPENING A DIRECTORY
IT09195	DYN:EVALUATE FUNCTION USED IN <XSL:WITH-PARAM> CAUSES AN APPLIANCE RESTART
IT09741	SLM PARAMETERS ARE NOT UPDATED ON PEER APPLIANCES WHEN POLICY VARIABLES ARE USED FOR WS-MEDIATIONPOLICY
IT09792	VALIDATE DOCUMENT VIA SCHEMA ATTRIBUTE WITH NON-XML SERVICE REQUEST TYPE RESTARTS APPLIANCE
IT09820	A WATCHDOG RESTART MIGHT OCCUR WHEN DELETING OR RESTARTING DOMAINS WHILE APPLIANCE IS REBOOTING
IT09865	USER WITH READ-EXECUTE ONLY PERMISSIONS MAY NOT EXPORT ALL OBJECTS IN CONFIGURATION
IT09987	INVALID SCHEMA WITH XSD:UNIONS MEMBERTYPES ATTRIBUTE REFERENCING ITSELF COMPILES ENDLESSLY
IT10105	CVE-2015-1788 MALFORMED ECPARAMETERS MIGHT CAUSE INFINITE LOOP
IT10115	VALIDATION USING XSD:DECIMAL TYPE, IN SOME CASES, MAY CAUSE FALSE REJECTIONS
IT10149	AN FTP TRANSACTION MIGHT NOT COMPLETE OR TIME OUT
IT10258	APPLIANCE MAY UNEXPECTEDLY RESTART WHEN VALIDATING JSON MESSAGESIN CASE OF A LARGE JSON SCHEMA
IT10279	MISSING SECURE ATTRIBUTE ON SESSION COOKIE
IT10287	DATAPOWER MIGHT RESTART WHEN RESTARTING A DOMAIN THAT OWNS SLM POLICIES OBTAINED FROM WSRR USED IN A PEER GROUP
IT10321	POLLING STATISTICS MAY CAUSE AN UNEXPECTED RESTART
IT10355	UNIQUE CACHE KEY IS NOT USED FOR PROTOCOL BASED CACHE POLICY TYPES
IT10426	RAW TCP URL-OPEN MAY CAUSE A RESTART IF YOU PASS A NULL STRING AS THE HOSTNAME
IT10444	STATISTICS SETTINGS MAY BE SHOWING DOWN AFTER FIRMWARE UPGRADE
IT10479	GATEWAY SCRIPT MIGHT CAUSE UNRELEASED MEMORY GROWTH WHILE PROCESSING CONTEXT.SETVAR().
IT10501	DOCUMENT CACHE MIGHT STOP CACHING UNDER SOME CIRCUMSTANCES
IT10508	APPLIANCE MAY RESTART WHEN USING INCLUDE-CONFIG IF THE CONFIG FILE IS NOT ACCESSIBLE ON THE NETWORK
IT10598	SECURE-BACKUP MAY CAUSE DEVICE TO HANG UNEXPECTEDLY
IT10637	LDAP SEARCH WITH LDAP CONECTION POOL MAY GET MSGID MISMATCH ERROR
IT10644	DATAPOWER WEBGUI WARNING MESSAGE MAY SHOW WRONG DEVICE TYPE ON DOWNGRADE
IT10660	ANONYMOUS SLA ALWAYS TRIGGERED WHEN CUSTOM MCF TYPE USED FOR SLA
IT10718	THE DATAPOWER GATEWAY RESTARTS WHILE USING STYLESHEET TO AUTOMATICALLY CLEAR THE CACHE
IT10890	LARGE XSLT UPLOAD IN INTERNET EXPLORER (IE) CAUSES HANG
IT10924	ON DOMAIN DELETE WITH AN NFS STATIC MOUNT AN APPLIANCE RESTART MAY OCCUR
IT10977	DATAPOWER FAILS TO CREATE VALID XML IN CONVERT-HTTP(JSON) ACTION IF JSON STRING CONTAINS "\U0026" OR "\U003E"
IT10978	DATAPOWER MAY RESTART IF A SIGNATURE VERIFICATION OF A RETURNED SIGNED MDN MESSAGE FAILS AND IS HANDLED IN AN ERROR RULE
IT11010	IN RARE CASES BACKTRACES MAY NOT BE GENERATED PROPERLY
IT11082	MISSING REMOTE PORT IN AN XSL PROXY SERVICE MIGHT CAUSE A RESTART
IT11147	DATAPOWER MQ-QM FAILS TO CONNECT WITH AN MQ REASON CODE OF 2538 WHEN SSL IS USED
IT11169	CONTENT-TYPE HEADER REMOVED FROM GET REQUESTS
IT11190	SOME WEB SERVICE PROXY CONFIGURATIONS MAY DEVELOP A STATE WHERE CHANGES CANNOT BE APPLIED THROUGH INTERNET EXPLORER
IT11191	DURING A WEB TOKEN SERVICE TRANSITION TO UP STATE THE DATAPOWER APPLIANCE MIGHT UNEXPECTEDLY RESTART




Back to top

---




7.0.0.9

Release date: 4 September 2015
Last modified: 12 October 2015
Status: Available

APAR	Description
IT08399	TCP PROXY BEING UNABLE TO WRITE TO FRONT END MAY CAUSE APPLIANCE RESTART
IT08663	SOME SSL CONNECTIONS WHICH FAIL TO COMPLETE HANDSHAKE MIGHT NOT TIME OUT
IT08758	Z/OS CANNOT SET UP CONTROL CONNECTION WITH THE SYSPLEX CONTROL SERVICE ON DATAPOWER WHEN USING IPV6
IT08760	IN THE GATEWAYSCRIPTSTATUS SECTION OF AN ERROR REPORT, THE TOTALHEAPSIZEEXECUTABLE IS INCORRECT
IT08761	AN SFTP SERVER FRONT SIDE HANDLER RECONFIGURED BY MODIFYING HOST-PRIVATE-KEY GOES TO THE DOWN STATE
IT08838	WITH MQ SHARED CONVERSATION ENABLED, ANY ACCESS PROBLEM TO THE MQ SERVER MIGHT RESULT IN A DATAPOWER UNEXPECTED RESTART
IT08971	INDEFINITE HTTP GET REQUEST RETRIES CAN OCCUR WHEN USING SERVICES WITH PERSISTENT CONNECTIONS
IT09063	DATAPOWER XML MANAGEMENT COMMANDS MIGHT INTERMITTENTLY FAIL TO COMPLETE
IT09129	CUSTOM OAUTH PROCESS DOES NOT PROVIDE SPECIFIC ERROR_ID IF VERIFY-AZ-REQUEST FAILS
IT09132	USING THE DIAGNOSTIC COMMAND SHOW HANDLES CAN RESULT IN UNEXPECTED BEHAVIOR
IT09145	DISABLING ALL DOMAINS OR APPLIANCE QUIESCE WITH LARGE AMOUNT OF SQL CONNECTIONS MAY LEAD TO AN UNEXPECTED RESTART OF APPLIANCE
IT09269	DOMAIN MEMORY USAGE DATA SHOWS INCORRECT NUMBER IN WEBGUI
IT09304	VIRTUAL APPLIANCES RUNNING ON HOSTS WITH HOTPLUG CPUS ENABLED OR MORE THAN 40 CPUS MAY UNEXPECTEDLY RESTART
IT09308	SERVICE LEVEL MANAGEMENT CONFIGURED POLICIES MIGHT NOT BE PROPERLY ENFORCED
IT09358	DATAPOWER MPGW, WSP AND WAF SERVICES DO NOT PRESERVE HTTP 1.0 CONTENT-LENGTH ON PASSTHROUGH RESPONSE IF CONTENT-LENGTH > 32K
IT09382	DATAPOWER APPLIANCE MIGHT UNEXPECTEDLY RESTART WHEN PEER GROUP IS ENABLED AND HAS IMPROPERLY FORMATTED URL
IT09396	CONTENT-LENGTH HEADER NOT AVAILABLE IN RESPONSE OBJECT AFTER MAKING URL-OPEN CALL
IT09510	ERROR RETURNED WHEN SFTP CLIENT ATTEMPTS TO PERFORM FILE RENAME AGAINST SFTP FSH WITH FTP AND FTPS URL OPENERS
IT09552	ARCHIVE MODE LOG TARGET MAY CONSUME TEMPORARY SPACE IF REMOTE SERVER IS DOWN
IT09575	DELETING DIAGNOSTIC LOG CAN LEAD TO UNEXPECTED TEMPORARY SPACE USAGE
IT09638	WHEN USING SSL OPTIONS TO GENERATE SSL PROXY PROFILE FOR MQ-QM AN UNEXPECTED DISCONNECT MAY OCCUR.
IT09742	WHEN TRYING TO UPDATE SUMMARY OF AN ACCESS CONTROL LIST (ACL) OBJECT FROM THE CLI AN APPLIANCE RESTART MIGHT OCCUR
IT09773	WHILE DELETING AN MQ DOMAIN THAT INCLUDES SSL PROFILES GENERATEDBY SSL OPTIONS, DATAPOWER MIGHT EXPERIENCE AN UNEXPECTED RESTART
IT09825	MANY CONCURRENT SFTP POLLER CONNECTIONS MIGHT RESULT IN AN UNEXPECTED IMMEDIATE RESTART
IT09835	JSONIQ HANDLING OF JSON INPUT WITH SURROGATE PAIRS OR ESCAPED CHARACTERS IS BROKEN
IT09902	SLM ENFORCEMENT BY PAYLOAD REQUEST SIZE MIGHT NOT WORK IN PEERING SCENARIOS
IT09938	EXTENSION FUNCTION DP:RADIX-CONVERT() MIGHT CAUSE AN UNEXPECTED APPLIANCE RESTART
IT10006	CONTENT-SECURITY-POLICY HEADER DEFAULT-SRC MIGHT NOT RENDER PROPERLY IN CASCADING STYLE SHEETS
IT10010	DURING A WEB TOKEN SERVICE TRANSITION TO UP STATE THE DATAPOWER APPLIANCE MIGHT UNEXPECTEDLY RESTART
IT10055	THE GNU C LIBRARY (GLIBC) HAS VULNERABILITIES AS SPECIFIED IN CVE-2013-7423 AND CVE-2015-1781
IT10061	CVE-2015-4000 DIFFIE-HELLMAN 512-BIT EXPORT-GRADE CIPHER MIGHT BE VULNERABLE TO ATTACKERS
IT10064	CVE-2014-9636, CVE-2014-8139, CVE-2014-8140, CVE-2014-8141 UNZIPUTILITY MIGHT RESULT IN AN UNEXPECTED RESTART
IT10086	TIMED OUT SSL COMMUNICATION MIGHT NEVER FINISH
IT10104	CVE-2015-1788, CVE-2015-1789, CVE-2015-1790, CVE-2015-1791, CVE-2015-1792, CVE-2014-8176 OPENSSL PSIRT ISSUES
IT10110	WEBGUI OPTIONS FOR SSLV3 EXIST FOR MQ
IT10128	WITH MQ SHARING CONVERSATION ENABLED AND HIGH MESSAGE TRAFFIC A DATAPOWER APPLIANCE MIGHT UNEXPECTEDLY RESTART
IT10165	APPLIANCE MAY RESTART IF XML MANAGEMENT INTERFACE IS LISTENING ON A HOST-ALIAS, ::, OR 0.0.0.0 AND WSRR SUBSCRIPTION IS USED
IT10219	DOCUMENT CACHE CONTINUES TO REFETCH RESOURCES EVEN IF BACKEND CONFIRMS NO CHANGE SINCE CACHED COPY
IT10699	REQUESTS THAT ARE ACCEPTING STALE RESPONSES ARE BLOCKED WHEN THE REQUESTED RESOURCE IS IN PENDING STATE
IT11312	DOCUMENT CACHE TREATS 304 RESPONSE WITH ETAG THAT IS DIFFERENT FROM CACHED ENTRY ETAG AS UNSUCCESSFUL REVALIDATION
IT11326	DOCUMENT CACHE DOES NOT UPDATE ALL HEADERS OF CACHED ENTRY ON 304 RESPONSE
IT15264	CUSTOM OAUTH PROCESS DOES NOT RETURN STATE PARAMETER IN ERROR RESPONSE




Back to top

---




7.0.0.8

Release date: 30 June 2015
Last modified: 29 June 2015
Status: Available

APAR	Description
IC94585	XI50B ONLY: UEFI COMPONENT FIRMWARE UPDATER MIGHT RENDER THE DATAPOWER APPLIANCE UNUSABLE
IT06611	ISAM REQUESTS MAY NOT ROUTE PROPERLY WHEN BOTH IPV4 AND IPV6 ROUTES ARE CONFIGURED
IT06777	DATAPOWER MIGHT UNEXPECTEDLY RELOAD ATTEMPTING TO GET THE NEXT ODR LOAD BALANCER MEMBER
IT07047	XSLT COMPILE OPTIONS POLICY SETTING STYLESHEET SPECIFIED IS NOT HONORED
IT07218	MESSAGE BODY MIGHT BE INCORRECTLY RETURNED WITH HTTP 204 RESPONSE
IT07353	RESTARTING A DOMAIN WITH NUMEROUS MQ QUEUE MANAGERS MIGHT RESULT IN AN UNEXPECTED APPLIANCE RESTART
IT07384	DATAPOWER V7 FIXED FORMAT TOGGLE HAS NO EFFECT FOR THE CSV LOG TARGET FORMAT
IT07459	NOT ABLE TO ROUTE A MULTI-CELL (STAR) TOPOLOGY VIA DATAPOWER / ODRLIB
IT07807	IN SOME CASES DP:DEFLATE WITH GZIP ALGORITHM WILL CAUSE PAYLOADS TO BE TRUNCATED
IT07905	RESTARTING A DOMAIN MIGHT RESULT IN AN UNEXPECTED IMMEDIATE RESTART
IT07921	SSH ACTIVITY MIGHT CAUSE UNEXPECTED BEHAVIOR
IT07956	USING ACCESS CONTROL LISTS IN A NETWORK ENVIRONMENT WITH PACKET FRAGMENTATION MIGHT RESULT IN THE INSTABILITY OF TCP CONNECTIONS
IT08134	REGEXP:REPLACE() MIGHT YIELD INCORRECT RESULTS WHEN INPUT TEXT CONTAINS MULTI-BYTE CHARACTERS
IT08202	DEPRECATED SQL CLI COMMANDS MIGHT CAUSE AN APPLIANCE RESTART IF INVOKED WITHOUT AN ARGUMENT
IT08231	DURING SECURE RESTORE, VALIDATION OF SOME CONFIGURATION PROPERTIES MIGHT BE INCORRECT
IT08917	SSLV3 PROTOCOLS AND RC4 CIPHERS WITH VULNERABILITIES SHOULD BE DISABLED BY DEFAULT
IT09536	URLREFRESH CONFIGURATION PROPERTIES CONTAINS DUPLICATE ENTRIES WHICH MIGHT LEAD TO APPLIANCE RESTART ON CONFIGURATION CHANGES




Back to top

---




7.0.0.7

Release date: 30 April 2015
Last modified: 30 April 2015
Status: Available

APAR	Description
IT04826	BATTERY END OF LIFE AND VOLTAGE WARNING MESSAGES ON A DATAPOWER 9005 APPLIANCE
IT05684	XC10 GRID OBJECT MIGHT NOT ACCEPT UNDERSCORE (_) IN USERNAME FIELD
IT05952	EXTRA 0 CHARACTER IN HTTP 500 RESPONSE WHEN COMPRESSION OPTION IN FRONT SIDE HANDLER IS ENABLED
IT05987	FOR JSON TYPE MESSAGES, ESCAPING IS INCORRECT. EXAMPLES ARE SURROGATE PAIRS, SUCH AS EMOJI, AND A BMP IN AN OBJECT NAME
IT06007	ASYNCHRONOUS CALL IN AN ERROR RULE AND ASYNC RULE IN A STYLESHEET USING DOCUMENT() MIGHT TRIGGER RESTART
IT06058	MISCONFIGURED URL REWRITE POLICY MIGHT CAUSE AN UNEXPECTED IMMEDIATE RESTART
IT06070	DATAPOWER IMS FRONT SIDE HANDLER PERFORMANCE IMPROVEMENTS
IT06151	ALLOWCACHECONTROLHEADER ELEMENT IN CONFIGWSGATEWAY IS MISSING
IT06156	USE OF IP ADDRESS IN THE RBM MAPPING CREDENTIALS MIGHT CAUSE THE DOMAINS LIST TO DISAPPEAR
IT06195	INCORRECT CONFIGURATION OF A SCHEDULED RULE MIGHT RESULT IN AN UNEXPECTED IMMEDIATE RESTART
IT06196	GATEWAYSCRIPT STRING HANDLING NEEDS ENHANCEMENT
IT06232	IN SOME SITUATIONS MQ CONNECTIONS MIGHT CAUSE AN UNEXPECTED RESTART
IT06455	FOR A GATEWAYSCRIPT REQUEST MESSAGE WITH A EXPLICITLY SPECIFIED HOST HEADER, DATAPOWER MIGHT NOT USE THE USER-SPECIFIED HOST
IT06471	DATAPOWER APPLIANCE USING AN SFTP POLLER MIGHT EXPERIENCE AN IMMEDIATE RESTART
IT06480	IN SOME CIRCUMSTANCES A RESTART MIGHT OCCUR WHEN CHANGING A PASSWORD VIA SSH
IT06484	CONNECTION FROM DATAPOWER APPLIANCE TO IMS BACKEND SERVER HANGS WHEN IMS BACKEND SERVER SENDS NULL RESPONSE TO DATAPOWER
IT06511	VIRTUAL APPLIANCE REPORTS ERROR CODE 1FD WHEN INITIALIZING APPLIANCE
IT06617	ORACLE SQL STORED PROCEDURE CALLS THAT INCLUDE COMPLEX TYPES MIGHT NOT RETURN CORRECT DATA
IT06621	WEB APPLICATION FIREWALL COOKIE POLICY MIGHT STRIP QUOTES FROM AUTHORIZATION COOKIE VALUE
IT06671	WHEN ATTEMPTING TO CREATE A CHECKPOINT OF A LARGE DOMAIN, THE OPERATION MIGHT TIME OUT
IT06761	A LIMITED NUMBER OF JMS FRONT SIDE HANDLERS CAN BE UP AT THE SAME MOMENT
IT06796	DATAPOWER URL-OPEN EXTENSION FUNCTION DOES NOT ALLOW SENDING A HTTP PUT REQUEST WITH AN EMPTY BODY
IT06889	APPLIANCE MIGHT IMMEDIATELY RESTART WHEN DNS USES TCP AND A REQUEST TIMES OUT
IT06895	UNABLE TO IMPORT-EXECUTE USING ENFORCE RBM ON CLI
IT07003	TYPE 2426 APPLIANCES MIGHT SHOW A PRODUCT ID OF 7198 OR 7199
IT07117	A RESTART MIGHT OCCUR WHEN CREATING AN NFS LOG TARGET
IT07119	NBLEAK REPORT MEMORY DIAGNOSTIC TOOL MIGHT OMIT SOME CALLSTACK INFORMATION
IT07164	A POTENTIAL WATCHDOG MIGHT OCCUR WHEN USING INTELLIGENT LOAD DISTRIBUTION (ILD) FEATURE OF THE AO OPTION
IT07237	ERROR REPORTS MIGHT OMIT FIRMWARE VERSION OR DATETIMESTATUS INFORMATION
IT07296	AFTER SOFTWARE FALLBACK WE MIGHT GENERATE MANY LOG MESSAGES FOR THE CRYPTO HARDWARE FAILURE
IT07340	LRO FEATURE ENABLED ON LINK AGGREGATE INTERFACE
IT07346	CUSTOM REVOCATION BY OAUTH RESOURCE OWNER MIGHT NOT COMPLETE REVOCATION
IT07570	STORE://JSONX2JSON.XSL DOES INCORRECT UNCONDITIONAL ESCAPING OF REVERSE SOLIDUS AND MISSES ESCAPING OF JSONX @NAME
IT07854	NEED RESOLUTION TO CVE-2015-0287, CVE-2015-0289, CVE-2015-0292, CVE-2015-0293 ADVISORIES




Back to top

---




7.0.0.6

Release date: 23 March 2015
Last modified: 18 March 2015
Status: Available

APAR	Description
IT06901	CVE-2015-0204 - SSL/TLS CLIENTS MIGHT SILENTLY DOWNGRADE RSA CIPHERS TO EXPORT_RSA
IT06902	CVE-2014-3570 - SSL BIGNUM SQUARING MIGHT PRODUCE INCORRECT RESULTS
IT07236	CVE-2014-3566 POODLE ATTACK RESOLUTION FOR TAM/ISAM
IT07604	CVE-2015-0138: GSKIT MIGHT ACCEPT A WEAK EPHEMERAL RSA KEY FOR NON EXPORT CIPHERSUITES IN SSLV3.0 AND TLS 1.0




Back to top

---




7.0.0.5

Release date: 10 February 2015
Last modified: 5 February 2015
Status: Available

APAR	Description
IT04792	SQL CALL THAT RETRIEVES A LARGE DATASET MIGHT CAUSE THE APPLIANCE TO RESTART IN DEVELOPMENT ENVIRONMENTS
IT04845	CUSTOM POLICY DOMAIN SAMPLES MIGHT NOT WORK WITH ALL WS-POLICY NAMESPACES
IT04883	DATAPOWER MIGHT IGNORE AUTHENTICATION/AUTHORIZATION CACHED ENTRIES WHEN A SIGNED ENVELOPED MESSAGE IS USED FOR AAA AUTHENTICATION/AUTHORIZATION
IT04947	READING OF CHUNKED ENCODING WITH HTTP BODY COMPRESSION MIGHT UNEXPECTEDLY CAUSE THE NEXT REQUEST OR RESPONSE NOT BE PROCESSED
IT05111	INTERMITTENT CRYPTO ENGINE FAILURES
IT05218	WTX BINARY TRANSFORM ACTION MIGHT FORMAT DATE INCORRECTLY
IT05294	JSON VALIDATION MIGHT FAIL FOR DATE-TIME FIELD
IT05412	THE APPLIANCE REMOVES A PROVIDED GET REQUEST CONTENT-TYPE HEADER EVEN WITH "CACHE-CONTROL: NO TRANSFORM"
IT05579	THE REPORTED INSTALLED MEMORY MIGHT VARY SLIGHTLY FROM THE ACTUAL INSTALLED MEMORY
IT05598	DATAPOWER APPLIANCE MIGHT RESTART DURING A TRANSACTION WHEN A DOCUMENT CACHE IS ENABLED
IT05626	USE OF FORMAT-NUMBER() XSLT FUNCTION MIGHT LEAD TO UNEXPECTED RESTART OF APPLIANCE DUE TO UNEXPECTED MEMORY GROWTH
IT05828	CONFIGURING AN INCOMPLETE BACKEND-RULE FOR WSM-ENDPOINTREWRITE MIGHT CAUSE APPLIANCE RESTART
IT05864	PERFORMANCE REDUCTION WITH 6.0.0 AND HIGHER FIRMWARE
IT05881	SELECTING PATTERN CONSOLE FROM WEBGUI MIGHT RESULT IN A BLANK PAGE OR SESSION EXPIRED MESSAGE
IT05889	CLI DEBUGGER PRINT COMMAND MIGHT NOT HANDLE ARGUMENTS CORRECTLY
IT05900	DOMAINS THAT ARE CREATED FROM CLI MIGHT NOT HAVE SOME DOMAIN DEFAULTS FOR URL PROTOCOLS SET AS EXPECTED
IT05905	COMPARE AND REVIEW CONFIGURATION TOOLS MIGHT DISPLAY UNEXPECTED RESULTS
IT05912	GATEWAYSCRIPT READASBUFFER, READASBUFFERS, AND READASJSON METHODS MIGHT FAIL TO HANDLE NON-EMPTY HTTP HEAD RESPONSE
IT05922	SSL/TLS FALLBACK PROTECTION (TLS_FALLBACK_SCSV)
IT05969	CLI SHOW COMMAND MIGHT IMPROPERLY CREATE DOMAIN OBJECTS
IT05998	DATAPOWER APPLIANCE MIGHT NOT RESPOND WHILE UNDER HIGH LOAD WITH SHARING CONVERSATIONS AND NETWORK EVENTS DELAYED
IT06048	A JSON SCHEMA THAT IS NOT WELL-FORMED MIGHT CAUSE AN UNEXPECTED APPLIANCE RESTART WHEN COMPILED
IT06941	SECURITY ISSUES IN SOME GNU C LIBRARY (GLIBC) FUNCTIONS
IT04877	HTTP REQUEST LINE MIGHT BE MALFORMED IN CASE OF CUSTOM METHOD
IT04961	USING CONTEXT VARIABLE TO SPECIFY GATEWAYSCRIPT MIGHT CAUSE UNRELEASED MEMORY GROWTH
IT04979	JSV VALIDATION UNDER SOME CIRCUMSTANCES MIGHT CAUSE DEVICE MEMORY USAGE TO UNEXPECTEDLY GROW AND RESTART THE APPLIANCE.
IT05438	A CUSTOM STYLESHEET USED IN MC STEP OF AAA DURING OAUTH HANDSHAKE MIGHT NOT RESOLVE THE RESOURCE OWNER'S IDENTITY
IT05767	VIRTUAL: RESTORE THE ABILITY TO USE ADDITIONAL VIRTUAL NICS DEFINED IN THE VMWARE HYPERVISOR
IT05783	USING THE ARRAY BUFFER OR TYPED ARRAYS IN GATEWAYSCRIPT ACTIONS MIGHT CAUSE AN APPLIANCE RESTART
IT05917	COMPILATION OF XQUERY SCRIPT WITH EXPLICIT XS NAMESPACE DECLARATION MIGHT FAIL




Back to top

---




7.0.0.4

Release date: 7 January 2015
Last modified: 6 January 2015
Status: Available

APAR	Description
IT06055	CVE-2014-8730 - STRICTLY ENFORCE VERIFYING BLOCK CIPHER PADDING




Back to top

---




7.0.0.3

Release date: 26 November 2014
Last modified: 24 November 2014
Status: Available

APAR	Description
IT02705	CUSTOM HTML FORM BASED LOGIN COOKIE ATTRIBUTE POLICY SHOULD BEHAVE AS STATIC HTML FORM BASED LOGIN COOKIE ATTRIBUTE POLICY
IT03095	ERROR MIGHT OCCUR WHEN COMPILING XML SCHEMA WITH XS:COMPLEXTYPE/XS:SIMPLECONTENT/XS:RESTRICTION
IT03568	ORACLE DSO CONNECTIONS FROM DATAPOWER MIGHT FAIL IF MULTIPLE PACKAGES HAVE IDENTICAL PROCEDURE NAMES WITHIN ORACLE DATABASE
IT03757	VIRTUAL: XEN VM APPLIANCES MIGHT NOT START LICENSE RESET TOOL TO ALLOW NEW FEATURES
IT03873	DURING SOME MQ OBJECT STATE TRANSITIONS THE DATAPOWER APPLIANCE MIGHT ENCOUNTER AN UNEXPECTED IMMEDIATE RESTART
IT03912	A DPA MAP THAT EXECUTED SUCCESSFULLY WITH WTX V8.4.0.2 RETURNS 'ONE OR MORE INPUTS WERE INVALID' ERROR WITH V8.4.0.4
IT03931	DATAPOWER MIGHT INTERMITTENTLY FAIL TO PARSE DATA FROM THE DOCUMENT CACHE WHEN CONSTANTLY AT MAXIMUM XML NAME LIMIT
IT03971	ON DEMAND ROUTER SESSION AFFINITY IS NOT ALWAYS MAINTAINED
IT04088	SUB-DIRECTORY NAMES ARE LIMITED TO 128 CHARACTERS
IT04116	OBJECTS STORED IN GATEWAYSCRIPT USER MODULE FOR GATEWAYSCRIPT ACTION MIGHT BE INVALID
IT04130	BUFFER OBJECTS MIGHT BE SAVED INCORRECTLY IN A CONTEXT VARIABLE IN GATEWAYSCRIPT ACTION
IT04223	DATAPOWER ODR FEATURE DOES NOT ROUTE BASED ON THE VIRTUAL HOST
IT04274	GATEWAYSCRIPT CONSOLE MODULE API FORMATTING ENHANCEMENTS NEEDED
IT04329	SFTP POLLER FAILS TO RECOGNIZE FILES WHEN LARGE NUMBER OF FILES ARE PRESENT IN TARGET DIRECTORY
IT04351	UNDER CERTAIN CONDITIONS QUIESCE/UNQUIESCE OPERATION MIGHT RESULT IN AN IMMEDIATE RESTART OF THE DEVICE
IT04387	API MANAGEMENT MIGHT NOT ENFORCE QUOTAS PROPERLY
IT04451	MEMORY GROWTH MIGHT OCCUR WHEN LARGE VOLUMES OF LOGS AND MISCONFIGURED NFS LOG TARGET ARE PRESENT
IT04452	UNDER CERTAIN CONDITIONS HAVING WSMAGENT MONITORING FLAG ENABLED MIGHT CAUSE AN UNEXPECTED RESTART OF THE APPLIANCE
IT04583	OUTCOME OF SLM ACTION MIGHT BE INCORRECT WHEN THERE ARE MULTIPLEUSERS/CREDENTIALS DURING HIGH LOAD/CONCURRENCY
IT04656	DATAPOWER MIGHT RESTART WHEN READING DATA FROM AN NFS SHARE
IT04661	USING LDAP CONNECTION POOLING, DATAPOWER MIGHT RESTART WHEN REFRESHING LDAP CONNECTION POOL STATUS OR ENTRIES IN WEBGUI
IT04698	USER GROUP NONE MIGHT BE CREATED FOR A NEW LOG TARGET
IT04749	CRL RETRIEVAL POLICY WITH INCORRECT OR MISSING BIND PASSWORD FORLDAP SERVER MIGHT CAUSE AN UNEXPECTED RESTART
IT04752	TRANSFORM AND GATEWAYSCRIPT ACTION COMBINATIONS IN A RULE MIGHT NOT PROVIDE THE EXPECTED RESULTS
IT04764	DATAPOWER DOES NOT HONOR WILDCARD SCOPE FOR OAUTH CLIENT PROFILE
IT04771	A DATAPOWER APPLIANCE CONFIGURED FOR MQ SHARING CONVERSATIONS MIGHT RESTART IF THE NETWORK IS UNSTABLE
IT04784	DATA COLLECTION FOR WATCHDOG ISSUES MIGHT BE TRUNCATED
IT05082	DISABLE SSLV3 IN DATAPOWER WEB MANAGEMENT AND XML MANAGEMENT SERVICES BY DEFAULT
IT05116	MORE DETAILED SECURE SOCKETS LAYER (SSL) PROTOCOL ERROR MESSAGES NEEDED
IT05196	IN SOME CASES SQL_DOUBLE TYPES MIGHT REPORT A BUFFER UNDERFLOW ERROR WHEN PERFORMING ORACLE SQL EXECUTE CALLS




Back to top

---




7.0.0.2

Release date: 30 September 2014
Last modified: 29 September 2014
Status: Available

APAR	Description
IT01205	UNDER CERTAIN CIRCUMSTANCES, WHEN A LOG TARGET UPLOAD FAILS, DATAPOWER MIGHT RETURN UPLOAD SUCCESS MESSAGE BEFORE FAILURE MESSAGES
IT01287	DEEP OR RUNAWAY RECURSION IN XML TRANSFORM MIGHT CAUSE A DATAPOWER APPLIANCE TO RESTART
IT01586	DATAPOWER MIGHT NOT RE-SYNCHRONIZE WSDL FILES FROM WSRR SERVER WHEN IT FAILS TO RETRIEVE THE FILES DUE TO AN ERROR CONDITION
IT01688	SOME WEB SERVICE PROXY SETTINGS MIGHT BE LOST WHEN SERVICE IS MODIFIED IN WEBGUI
IT01802	DATAPOWER MIGHT RESTART WHEN NO HOSTNAME IS CONFIGURED FOR TIBCO BACKEND
IT02157	DATAPOWER VARIABLE ORIGINAL-RESPONSE-CONTENT-TYPE MIGHT BE TRUNCATED
IT02476	WITH SHARING CONVERSATION ENABLED, MQ-QM OBJECTS RUN INTO PENDING STATE AND HIGH CPU IS OBSERVED WHEN THERE IS MQ ERROR
IT02492	PROTECTION OF SOME WEBGUI PARAMETERS AGAINST SPECIFIC SECURITY VULNERABILITIES
IT02760	PASSING NULL INPUT TO THE DP:ENCODE XML EXTENSION FUNCTION MIGHT CAUSEE A RESTART
IT02762	DATAPOWER MIGHT RESTART WHEN PROCESSING CERTAIN MQ MESSAGES
IT02779	PARSE ERROR MIGHT OCCUR WHEN RETRIEVING FTP LIST OF MORE THAN 25 FILES
IT02803	WHEN THE "PROCESS MESSAGES WHOSE BODY IS EMPTY" OPTION IS SET TO ON, UNEXPECTED TIMEOUT WOULD HAPPEN UPON RECEIVING HTTP 304 RESPONSE
IT02834	SESSION AFFINITY OF A LOAD BALANCER GROUP SET TO ACTIVE-CONDITIONAL MIGHT CAUSE A RESTART
IT02925	CREATING CHECKPOINT FAILS WITH OPERATION TIMEOUT DUE TO TOO MANY FILES IN CONFIGURATION
IT02956	ENHANCED SECURITY ON SEVERAL WEBGUI PARAMETERS
IT03015	MS SQL QUERIES CONTAINING LARGE INPUTS MIGHT FAIL
IT03047	DATAPOWER MIGHT TIME OUT WHILE READING BACKEND RESPONSE OVER SSL
IT03080	IPV6 SLAAC PROVISIONED REDUNDANT ROUTERS MIGHT NOT FAIL OVER WHEN THE CURRENT ROUTER IS REMOVED FROM DATAPOWER APPLIANCE
IT03094	DATAPOWER MIGHT RESTART WHEN CONFIGURED USING SLM *MULTICAST* PEERING IN AN SLM PEERING GROUP THAT HAS THREE OR MORE MEMBERS
IT03162	THE CONTEXT VARIABLE: VAR://CONTEXT/WSM/IDENTITY/CREDENTIALS MIGHT NOT BE POPULATED CORRECTLY
IT03344	POP POLLER FRONT SIDE HANDLER MIGHT TRUNCATE MESSAGE
IT03376	IMS ENDPOINT READ MIGHT RESULT IN AN UNEXPECTED RESTART
IT03416	VIRTUAL: XENSERVER DEFAULT-LOG MIGHT SHOW UNKNOWN COMMAND OR MACRO ILMT-AGENT AFTER A RESTART
IT03442	SCHEMA FOR ODCINFO FILE IS INCORRECT
IT03488	STRIP-ATTACHMENTS ACTION MIGHT CAUSE A RESTART UNDER CERTAIN CIRCUMSTANCES
IT03743	IPV6 AND LINK-LOCAL ADDRESS ARE PROVISIONED ON ALL INTERFACES AND CANNOT BE DISABLED
IT03852	PATTERN OBJECT MIGHT BE EXPOSED IN THE WEBGUI
IT03868	CVE-2014-3511 - VULNERABILITY IN SSL TLS NEGOTIATION PROCESSING
IT03874	CVE-2014-3508 - PRETTY-PRINT RESULTS OVER SSL MIGHT INCLUDE EXTRANEOUS DATA
IT04069	ORACLE QUERIES WITH DATE FORMATS OTHER THAN YYYY-MM-DD HH24:MI:SS MIGHT FAIL
IT08435	CVE-2014-0852 - SSL/TLS SIDE CHANNEL DECRYPTION VULNERABILITY ON DATAPOWER HARDWARE SECURITY MODULE




Back to top

---




7.0.0.1

Release date: 8 August 2014
Last modified: 22 June 2014
Status: Available

APAR	Description
IT02359	RAPID SEQUENTIAL EXECUTION OF THE ISAM CERTIFICATE RENEWAL ACTION FOR THE SAME ISAM CLIENT MIGHT CAUSE THE CLIENT TO FAIL
IT02360	INVALID TLS RECORD PROCESSING MIGHT RESULT IN HIGH CPU UTILIZATION IN ISAM CLIENTS
IT02708	SSL/TLS RENEGOTIATION MIGHT RESULT IN FAILURE IN SOME SCENARIOS
IT02720	VIRTUAL: IBM LICENSE METRIC TOOL (ILMT) MIGHT SHOW INACCURATE DATA
IT02812	VIRTUAL: IBM LICENSE METRIC TOOL (ILMT) MIGHT PRESENT SET UP OPTIONS
IT02813	XI52B: SERVICE SHOW COMPONENT COMMAND MIGHT NOT PROVIDE FLASH DRIVE INFORMATION
IT02939	A RESTART MIGHT OCCUR IF URL-OPEN TIMES OUT
IT02979	MULTIPLE STYLESHEETS COMPILED CONCURRENTLY MIGHT RESULT IN A RESTART
IT03532	ON SOME DATAPOWER APPLIANCES DIAGNOSTICS CODE FAILS TO LOAD ON 7.0.0.0




Back to top

---




7.0.0.0

Release date: 13 June 2014
Last modified: 03 June 2014
Status: Available

Back to top

Change history
Last modified: 25 September 2017

• 25 September 2017: Created fix lists for 7.0.0.20.
• 1 June 2017: Created fix lists for 7.0.0.19.
• 23 March 2017: Created fix lists for 7.0.0.18.
• 20 January 2017: Created fix lists for 7.0.0.17.
• 21 November 2016: Created fix lists for 7.0.0.16.
• 16 September 2016: Created fix lists for 7.0.0.15.
• 20 July 2016: Created fix lists for 7.0.0.14.
• 20 May 2016: Created fix lists for 7.0.0.13.
• 8 March 2016: Created fix lists for 7.0.0.12.
• 5 February 2016: Created fix lists for 7.0.0.11.
• 5 November 2015: Created fix list for 7.0.0.10.
• 12 October 2015: Edited fix list for 7.0.0.9.
• 4 September 2015: Created fix list for 7.0.0.9.
• 13 August 2015: Edited fix lists for 7.0.0.7.
• 24 July 2015: Edited fix list for 7.0.0.8.
• 29 June 2015: Created fix list for 7.0.0.8.
• 11 May 2015: Edited fix list for 7.0.0.7.
• 30 April 2015: Created fix list for 7.0.0.7.
• 28 April 2015: Edited fix list for 7.0.0.2.
• 18 March 2015: Created fix list for 7.0.0.6.
• 5 February 2015: Created fix list for 7.0.0.5.
• 6 January 2015: Created fix list for 7.0.0.4.
• 24 November 2014: Created fix list for 7.0.0.3.
• 29 September 2014: Created fix list for 7.0.0.2.
• 22 August 2014: Edited fix list for 7.0.0.1.
• 7 August 2014: Created fix list for 7.0.0.1.
• 13 June 2014: Created fix list for 7.0.0.0.