IBM Support

Fix packs for DataPower Gateway version 7.2

Download


Abstract

Lists of fixes in fix packs for IBM DataPower Gateway version 7.2.

Download Description

Fix packs are located on Fix Central.


Important:



 

7.2.0.22

 

Release date: 7 September 2018
Last modified: 7 September 2018
Status: Available

APAR
Description
IT25911 SECURITY VULNERABILITY IN OPENSSL
IT25957 POTENTIAL DENIAL OF SERVICE IN GATEWAYSCRIPT COMPONENT (CVE-2018-7167)
IT25959 SECURITY ISSUES IN OPENSSL
IT25961 TIMING ATTACK ON RSA DECRYPTION IN OPENSSL
IT25962 SECURITY VULNERABILITIES IN OPENSSL
IT25964 A VULNERABILITY IN NETFILTER AFFECTS IBM DATAPOWER GATEWAYS
IT26030 SENSITIVE INFORMATION DISCLOSURE IN DATAPOWER MANAGEMENT AUTHENTICATION INFORMATION IN RESPONSE HEADERS.
IT26084 XML EXTERNAL ENTITY INJECTION (XXE) VULNERABILITY IN DATAPOWER GUI (CVE-2018-1669)

 

7.2.0.21

Release date: 14 August 2018
Last modified: 14 August 2018
Status: Available

APAR
Description
IT24077 CPU SECURITY VULNERABILITY IN IBM DATAPOWER GATEWAYS (CVE-2017-5753)
IT25469 DATAPOWER DOS IF ENCRYPTED FILESYSTEM IS FULL
IT25958 JAVA SECURITY UPDATE FOR DATAPOWER GATEWAYS

 

 


 

7.2.0.20

 

Release date: 25 May 2018
Last modified: 25 May 2018
Status: Available

APAR
Description
IT24881 POTENTIAL VULNERABILITY IN THE SSL COMPONENT OF IBM DATAPOWER GATEWAYS

 

 


 

7.2.0.19

 

Release date: 23 March 2018
Last modified: 23 March 2018
Status: Available

APAR
Description
IT22408 DATAPOWER LOG ACTION CANNOT LOG PARSED JSON CONTEXT
IT22661 DEPLOYING B2B PROFILE WITH ONGOING AS1 OR B2B TRANSACTIONS MIGHT CAUSE RESTART
IT22932 LOG TARGETS THAT USE REMOTE LOGIN MIGHT USE INCORRECT CREDENTIALS ON INITIAL CONFIGURATION.
IT22997 XML MANAGEMENT INTERFACE SET FIRMWARE REQUEST FAILS ON 1 GB OR LARGER SCRYPT SIZES
IT23118 DATAPOWER MIGHT RESTART WHEN USING MQFTE AND ROLLING BACK A TRANSACTION
IT23162 DATAPOWER MIGHT RESTART UNEXPECTEDLY WHEN ACCESSING A NON-EXISTENT MQ DYNAMIC QUEUE
IT23280 DATAPOWER MIGHT RESTART UNEXPECTEDLY WHEN SETTING AUTOMATIC BACKOUT WITHOUT SETTING THRESHOLD FOR BACKOUT COUNT
IT23374 DATAPOWER SERVICES MIGHT UNEXPECTEDLY CLOSE SSL CONNECTIONS
IT23444 CONTINUOUS MEMORY GROWTH MIGHT BE OBSERVED IF USING SLM MULTICAST PEERING
IT23456 URLOPEN IN GATEWAYSCRIPT MIGHT HAVE POORER THAN EXPECTED PERFORMANCE
IT23480 NFS, FTP, OR SFTP POLLERS MIGHT EXHIBIT UNEXPECTED BEHAVIOR
IT23509 ENCRYPT ACTION DOES NOT RETAIN DOCUMENT MAP SETTING WITH WSSECURITY ENCRYPTION
IT23559 DATAPOWER FIRMWARE MIGHT RESTART, IF RESPONSE TIME FROM WSRR SERVER TAKES TOO LONG, OR WSRR IS UNRESPONSIVE
IT23564 VAR://CONTEXT/AAA/SOCIAL-LOGIN-URL-IN IS EMPTY FOR OAUTH REQUEST
IT23599 UNEXPECTED RESTART MIGHT HAPPEN IN RARE CIRCUMSTANCES OF SFTP CONNECTION BROKEN CONDITIONS
IT23602 SECURE BACKUP THE SECURE-BACKUP OR RESTORE REQUEST TIMED OUT. LOGGING
IT23607 JSONX ELEMENTS WITH EMPTY NAME ATTRIBUES ARE CONVERTED TO INCORRECT JSON
IT23611 DATAPOWER MIGHT UNEXPECTEDLY RESTART WHEN USING GATEWAYSCRIPT
IT23639 SETTING A LONG BACKEND TIMEOUT IS NOT BEING HONORED
IT23656 SFTP HANDLER NOT DELETED ON DOMAIN RESET
IT23659 ODR LBG BASED HEADER PARSING MIGHT CAUSE UNEXPECTED RESTART
IT23788 WHEN USING GATEWAYSCRIPT DEBUGGER, YOU CANNOT SET BREAKPOINT IN EVALUATED CODE
IT23854 POTENTIAL XML VULNERABILITY IN GUI
IT23881 DATAPOWER MIGHT RESTART WHEN USING A SSL PROXY OR CLIENT PROFILE
IT23910 DATAPOWER MIGHT RESTART WHEN A LDAP CONNECTION POOL ENTRY TIMES OUT AND A LDAP CONNECTION POOL IS USED WITH A DOCUMENT CACHE
IT23985 IBM DATAPOWER NEEDS TO COME UP ONLY AFTER NETWORK SUBSYSTEM IS UP
IT24398 SFTP POLLER FAILURES ERROR MESSAGE MIGHT ONLY BE DISPLAYED IN THE DEFAULT DOMAIN.

 

 


 

7.2.0.18

 

Release date: 15 December 2017
Last modified: 15 December 2017
Status: Available

APAR
Description
IT20388 SWITCHING FROM SLM MULTICAST TO SLM UNICAST IN WEBGUI MIGHT CAUSE SLM UNICAST TO FAIL
IT21762 ASYNCHRONOUS ACTION IN PROCESSING POLICY MIGHT CAUSE UNEXPECTED RESTART
IT22213 MONITOR COUNTS WITH A LARGE INTERVAL AND BURST LIMIT MIGHT EXCEED 32-BIT LIMITATION AND PREMATURELY TAKE ACTION ON TRAFFIC.
IT22268 POTENTIAL INSTABILITY WHEN USING SOME SHOW COMMANDS
IT22300 INTENSIVE USE OF LOGGING MIGHT IMPOSE IMPACT TO OVERALL PERFORMANCE
IT22421 B2B TRANSACTION VIEWER GIVES EMPTY FILE/TAB FOR FEW TRANSACTIONS ON CLICKING SHOW DOCUMENT
IT22481 CHUNKED ENCODING WITH HTTP COMPRESSION MIGHT CAUSE THE NEXT HTTP MESSAGE TO BE READ INCORRECTLY
IT22676 THE GATEWAYSCRIPT SIGN() API THAT USES SHA1 AND AN RSA KEY LENGTH OF 1024 INCORRECTLY RETURNS ERROR INCORRECT KEY LENGTH
IT22693 DATAPOWER MIGHT RESTART IF SUFFERING NFS COMMUNICATION ERRORS WHILE CLOSING FILES ON AN NFS MOUNT.
IT22785 CUSTOM SERVICE LEVEL DEFINITION (SLD) PREPEND LOGIC NOT WORKING WITH WSRR INTEGRATION
IT22841 EDITING WEBPAGE HTML CAN BYPASS SOME WEB SERVICE PROXY RBM SETTINGS
IT22852 THERE MIGHT BE SOME STARTUP-CONFIG ERROR IN VIRTUAL EDITION
IT22924 UNABLE TO COPY FILE VIA COPY COMMAND FROM CLI
IT22940 WHEN USING GATEWAYSCRIPT ACTION, CONSOLE.ERROR AND OTHER LEVEL LOGGING HIT RESTART OR OUT OF MEMORY WHEN FORMATTING LARGE WIDTH.
IT22961 SFTP SERVER FRONT SIDE HANDLER MIGHT CAUSE DEVICE RESTART
IT23031 BLUEPRINT CONSOLE APPLY BUTTON DOES NOT WORK RELIABLY FOR INTERNET EXPLORER 11
IT23085 LOG TARGET DELETION MIGHT CAUSE UNEXPECTED RESTARTS
IT23126 WEBSOCKETS CLIENT CAN HANG WAITING FOR SERVER RESPONSE
IT23187 WHEN USING GATEWAYSCRIPT ACTION, DATAPOWER WILL RESTART OR HANG UNDER SOME CONDITIONS
IT23193 A VULNERABILITY IN PARSING AN X.509 CERTIFICATE EXTENSION.
IT23417 DATAPOWER REUSES SAME LOCAL PORT FOR DNS QUERIES, WHICH MIGHT TRIGGER ALERTS ON FIREWALLS BETWEEN DATAPOWER AND DNS SERVER

 

 


 

7.2.0.17

 

Release date: 13 October 2017
Last modified: 13 October 2017
Status: Available

APAR
Description
IT18267 DELETING OR RESTARTING A DATAPOWER APPLICATION DOMAIN TAKES SEVERAL MINUTES TO COMPLETE.
IT18570 FETCHING ONE OR MULTIPLE WSPS OVER 1000 REMOTE WSDLS ON STARTUP CAN RESULT IN ERRORS OR DATAPOWER INSTABILITY
IT18890 SECURE BACKUPS MIGHT FAIL IF FILENAMES, INCLUDING CHECKPOINTS, START WITH A -
IT19580 SNMP TRAPS MIGHT NOT BE SENT
IT20056 GATEWAYSCRIPT URLOPEN FAILS TO SHOW >1KB POST DATA IN PROBE
IT21040 DATAPOWER RESTARTS IN POP FRONT SIDE HANDLER UNDER SOME CONDITIONS
IT21118 DATAPOWER RESTARTS WHEN CONDITIONAL ACTION USES A PIPE OUTPUT WITHOUT A PIPE INPUT
IT21162 DOWNLOADING LARGE FILES FROM THE GUI FILE MANAGEMENT COULD HAVE UNEXPECTED BEHAVIOR
IT21205 DATAPOWER MIGHT SUFFER MEMORY GROWTH FOR MQ FTE CONNECTIONS
IT21307 CUSTOM POLICY WITH ASYNCHRONOUS CALL PROCESSING RULE ACTION TRIGGERS RESTART WITH PROBE ENABLED
IT21350 MQRFH2 HEADER IS INJECTED IN THE PAYLOAD WHEN THE MESSAGE IS ROLLED BACK TO BACKOUT QUEUE
IT21411 DATAPOWER MIGHT RESTART WHEN WRITING TO A SYSLOG LOGGING TARGET
IT21445 SSH SUBSYSTEM MIGHT CAUSE SSHD TASK TO RESTART
IT21470 CONFIGURATIONS USING SLM MIGHT MANIFEST INSTABILITY IN RARE CASES.
IT21495 DATAPOWER XML MANAGEMENT INTERFACE IS CASE SENSITIVE FOR HTTP HEADER AUTHORIZATION:
IT21519 DATAPOWER RESTARTS ON DOMAIN RESTART IF NFS LOG TARGETS ARE IN USE
IT21532 WHEN RESENDING A B2B TRANSACTION HEADERS MIGHT NOT BE PERSISTED
IT21577 DATAPOWER: SSL SESSION CACHING CACHES LESS SESSIONS THAN SPECIFIED.
IT21626 IBM API CONNECT PERFORMANCE / DATAPOWER MEMORY GROWTH
IT21634 LDAP MULTIPLE USER CERTIFICATE BINARY ATTRIBUTE.
IT21648 XML, WEB OR REST MANAGEMENT INTERFACES MIGHT GET ASSIGNED TO INCORRECT ADDRESS OR PORT NUMBER AFTER RESTART
IT21703 DATAPOWER PROCESSING OF SPEC-NON-COMPLIANT XML MIGHT END WITH TIMEOUT INSTEAD OF PARSE ERROR IF WS-ADDRESSING IS ENABLED
IT21887 GATEWAYSCRIPT JSON-XML-CONVERTER MODULE PROCESSES COMMENT NODE INCORRECTLY
IT22000 IPMI LAN PLUS FAILED TO CONNECT TO DATAPOWER IF IPMI USER PASSWORD LENGTH IS 16 CHARACTERS
IT22042 USING FIBERS MODULE IN GATEWAYSCRIPT, IF THE SCRIPT THROWS AN EXCEPTION WHILE IN YIELD STATE, DATAPOWER WILL RESTART
IT22082 ILLEGAL CHARACTER ERROR IN V7.5 WHEN TRYING TO PRINT LDAP-SEARCH() RESULTS
IT22115 DATAPOWER MIGHT RESTART WHILE PERFORMING MQ ROLLBACK
IT22317 DATAPOWER DOESN'T SPECIFY A -Z REPLICA QUALIFIER WHEN CREATING ISAM JUNCTIONS

 

 


 

7.2.0.16

 

Release date: 25 September 2017
Last modified: 25 September 2017
Status: Available

APAR
Description
IT22119 A VULNERABILITY IN SYSTEM LOG ON IBM DATAPOWER GATEWAYS WEBGUI CONSOLE.
IT22120 A VULNERABILITY IN THE NODE.JS COMPONENT OF IBM DATAPOWER GATEWAYS. (CVE-2017-11499)
IT22121 A VULNERABILITY IN PROCESSING XDR DATA.

 

 


 

7.2.0.15

 

Release date: 4 August 2017
Last modified: 4 August 2017
Status: Available

APAR
Description
IT19052 DATAPOWER JSON SCHEMA VALIDATION FAILS FOR VERY BIG DECIMAL VALUE
IT19174 SNMPTABLE GET REQUEST FOR DP STATUS MESSAGE SOURCES TABLE DOES NOT RETURN THE CORRECT INFORMATION
IT19745 PERSISTENT CONNECTION SHOULD NOT BE REUSED BEYOND ITS PERSISTENT TIMEOUT DEFINED IN THE SERVICE
IT19776 SUPPORT TO ACCESS SYSTEM VARIABLES VIA GATEWAYSCRIPT
IT20219 DATAPOWER MIGHT RESTART WHEN PROCESSING XML DOCUMENTS WITH LARGE TEXT NODES
IT20310 [B2B] XPATH ROUTING POLICY NOT WORKING AS EXPECTED ON B2B GATEWAY
IT20354 XML INTERFACE ECHOES ENCRYPTED CREDENTIALS BACK TO REQUESTER IN RESPONSE HEADERS
IT20405 FTP POLLER AND XML FILE CAPTURE STABILITY ISSUES
IT20445 DATAPOWER FOR LINUX NOT PICKING UP DNS NAMESERVER ENTRY FROM RESOLV.CONF
IT20448 WEBGUI SHOULD USE CANCEL RATHER THAN EXIT WHEN LEAVING THE DOCUMENT CACHE PANEL
IT20458 ACCESS MANAGER REVERSE PROXY DOES NOT RECOGNIZE THE [USER-MAP-AUTHN] STANZA
IT20507 DATAPOWER PERFORMS DNS LOOKUP FOR INTERNALLY DEFINED HOST ALIAS
IT20608 WHEN USING AN MQ HANDLER, DATAPOWER MIGHT RESTART DUE TO CONNECTION FAILURES
IT20628 [B2B] PURGE OF DATAPOWER B2B NFS DOCUMENT STORAGE LOCATION MIGHT TIMEOUT / FAIL IF THE MOUNT NAME CONTAINS A . (DOT)
IT20734 EXTENDED TRANSACTION PROCESSING DELAYS CAUSED BY HEAVY LOGGING
IT20775 GATEWAYSCRIPT MIGHT THROW PROCESSING ERROR WHEN PARSING JWS SIGNATURE CONTAINING X5C HEADER USING JOSE MODULE
IT20979 MPGW SENDS SINGLE ROW SQL DATASOURCE RESPONSE INTO MULTIPLE ROWS FORMAT
IT20994 DATAPOWER DOES NOT SET A PROPER DPJSESSION COOKIE WHEN THE COOKIE WITH AN INVALID ROUTING ID PART COMES WITH A REQUEST
IT20998 TRANSACTIONS TO A NONRESPONSIVE BACK END MAY NEVER TIME OUT
IT21003 A REMOTE MQ QUEUE MANAGER WITH TWO OR MORE MQ CONNECTIONS REQUIRES REACTIVATION AFTER A NETWORK FAILURE
IT21006 GATEWAYSCRIPT REQUIRE() STATEMENT WITH RELATIVE PATH DOES NOT WORK IN DEFAULT DOMAIN
IT21013 DATAPOWER MIHGT RELOAD WHEN THE REMOTE MQ CONNECTION IS TERMINATED
IT21067 NEW CLI COMMAND TEST-PASSWORD-ALIAS INTRODUCED
IT21078 A RESTART MIGHT OCCUR DURING STYLESHEET EXECUTION IN UNLIKELY CONDITIONS
IT21145 BMC COMPONENT FIRMWARE UPGRADED TO VERSION 1.26
IT21215 WSDL IN ERROR STATE AFTER NUMEROUS SUBSEQUENT FETCHES
IT21474 SAME DPA FILE WORKS WITH EARLIER DP/WTX VERSION, BUT NOW CAUSES DATAPOWER RESTART

 

 


 

7.2.0.14

 

Release date: 1 June 2017
Last modified: 1 June 2017
Status: Available

APAR
Description
IT17002 DATAPOWER INCORRECTLY SENDS EXTENSIONS FOR TLS VERSIONS PRIOR TO TLS 1.2
IT17888 AAA POLICY ACTION INTERPRETING JSON INPUT MIGHT CAUSE A RESTART
IT18156 DOMAIN SHOWS OLD DELETED CONFIGURATION
IT18627 DATAPOWER FAILS TO POLL LARGER MESSAGES FROM TIBCO EMS IF MPGW FLOW CONTROL IS SET TO ON
IT19009 SNMP ENGINE ID MIGHT NOT BE UNIQUELY GENERATED ON IDG
IT19120 DATAPOWER MIGHT UNEXPECTEDLY RESTART ON WEB-SERVICE PROXY INITIALIZATION
IT19215 MESSAGE MATCHING OBJECT DOES NOT PARSE HOST INFORMATION FROM X-CLIENT-IP HEADER
IT19265 DATAPOWER MIGHT RESTART UNEXPECTEDLY IN RARE CONDITIONS OF USING CALLED RULES IN ASYNCHRONOUS CONDITIONAL ACTIONS
IT19283 DATAPOWER MIGHT SUFFER CONTINUOUS MEMORY GROWTH IF MQ FSH BATCH-SIZE IS GREATER THAN 0
IT19331 BYTE LOST DUE TO TRANSFORMATION WHEN USING WTX LIBRARY
IT19473 HTTP CLIENT IP LABEL DOES NOT WORK
IT19584 LOGGING IS BROKEN FOR SSH-RELATED TASKS (SFTP, SSH CLI)
IT19589 LOG TARGETS WITH UNAVAILABLE SYSLOG-TCP DESTINATIONS MIGHT CAUSE HIGH CPU DUE TO EXCESSIVE TCP CONNECTION ATTEMPTS
IT19621 CHANGES TO ACCESS CONTROL LIST MIGHT NOT TAKE EFFECT IN WEB APPLICATION FIREWALL
IT19717 DATAPOWER MIGHT UNEXPECTEDLY RESTART WHEN MQ-QM OBJECTS ARE BROUGHT DOWN DUE TO NETWORK CONNECTION FAILURES
IT19747 IMS CONNECT WITH SYNC-LEVEL SET TO 0X00 MIGHT UNEXPECTEDLY RESTART
IT19777 DATAPOWER WILL RESTART WHEN ACCESSING A NODE WHICH EXCEEDS THE MAXIMUM NODE SIZE VIA GATEWAYSCRIPT
IT19809 DATAPOWER UNABLE TO SUBMIT SQL QUERIES WITH PAYLOADS GREATER THAN 4MB
IT19874 OUTPUT TIME FIELD MIGHT APPEAR EMPTY IN B2B TRANSACTION VIEWER FOR RESEND
IT19912 SNMPWALK FAILURE (OID DOES NOT INCREASE) FOR ODR OBJECT
IT19943 HTTP HEADER PARSING PROBLEM
IT20013 DATAPOWER NFS POLLER MIGHT FAIL TO COMPLETE TRANSACTIONS AND STOP SCANNING THE SOURCE DIRECTORY
IT20041 DELETED GENERATED-POLICY OBJECTS SHOW INCORRECT STATE
IT20690 POSSIBLE DENIAL OF SERVICE VULNERABILITIES IN SSL (CVE-2017-3731, CVE-2016-7055)

 

 


 

7.2.0.13

 

Release date: 17 April 2017
Last modified: 17 April 2017
Status: Available

APAR
Description
IT20143 A VULNERABILITY THAT COULD ALLOW A DENIAL OF SERVICE AFFECTS THE IBM SECURITY ACCESS MANAGER CLIENT (CVE-2016-3706)

 

 


 

7.2.0.12

 

Release date: 23 March 2017
Last modified: 23 March 2017
Status: Available

APAR
Description
IT16948 TRANSFORM BINARY ACTION WITH NULL INPUT CONTEXT MAKES NULL INPUT CONTEXT XML-PARSING IN FOLLOWING ACTION ERROR ON PARSE
IT17926 IMS CALLOUT HANDLER MIGHT LOOP WITH EOFEXCEPTION FOR SAME TOKEN
IT17957 MQ MESSAGES CONTAINING MQRFH2 HEADERS ARE NOT BACKED OUT TO BACKOUT DESTINATION
IT17976 TIBCO EMS FAULT-TOLERANCE MIGHT NOT RETRY BACKUP SERVER OR OTHER GROUPS
IT18028 XML FIREWALL MIGHT REMOVE THE BODY OF A HTTP REPORT REQUEST IF TRANSFER-ENCODING: CHUNKED IS SET.
IT18091 GET-DIFF XML MANAGEMENT COMMAND DOES NOT GIVE CONFIGURATION DIFFERENCE IN CASE OF EXPORTS IN XML FORMAT
IT18379 DATAPOWER MIGHT RESTART UNEXPECTEDLY IF BACKEND FTP SERVER CLOSES ITS CONNECTION WITH DATAPOWER UNEXPECTEDLY
IT18516 MODIFYING SNMP SETTINGS DURING SNMP CLIENT TRAFFIC MIGHT RESTART THE FIRMWARE
IT18568 XML MANAGER XML PARSER TAB IGNORE SETTING DOES NOT WORK FOR ENTITY LEVEL EXTERNAL REFERENCES
IT18617 IDLE TIMEOUT MIGHT TRIGGER ON THE FTP CONTROL CONNECTION WHILE THE DATA CONNECTION IS ACTIVE
IT18757 SECURITY ENHANCEMENTS ON WEBGUI CONSOLE
IT18825 DATAPOWER MIGHT CAUSE MQ ERROR CODE 2009 WHEN CONNECTIONS ARE DEPLETED FROM THE POOL AND FAILS TO CREATE A NEW CONNECTION
IT18826 INVOKING A STORED PROCEDURE CALL WITH MS SQL SERVER SQL DATA SOURCE MIGHT RESULT IN 'INVALID OBJECT NAME'
IT18842 GSKIT SWEET32 BIRTHDAY ATTACKS VULNERABILITY IN TAM/ISAM AND JMS COMPONENTS (CVE-2016-2183)
IT18897 EXECUTION OF XQUERY FUNCTIONS UPPER-CASE, LOWER-CASE AND NORMALIZE-UNICODE MIGHT RESULT IN FIRMWARE RESTART
IT18911 UNEXPECTED RESTARTS ON LOGGING IN RARE CASES
IT18948 XML DECLARATION STANDALONE ATTRIBUTE NOT INCLUDED WITH XSL:OUTPUT STANDALONE=YES
IT18973 DATAPOWER NFS POLLER FSH CAUSES A 0-BYTE FILE TO BE DELIVERED AS 1-BYTE FILE TO THE BACKEND.
IT19012 UNEXPECTED RESTART MIGHT OCCUR WITH LONG RUNNING SLM PEER GROUP CONFIGURATIONS
IT19049 DATAPOWER SSH CONNECTIONS CLOSURE MIGHT CAUSE AN UNEXPECTED RESTART IN RARE CIRCUMSTANCES
IT19063 SLM PEER GROUP CONFIGURATION FAILS DUE TO A STRING LENGTH MISMATCH
IT19703 TWO VULNERABILITIES IN THE SSH COMPONENT OF IBM DATAPOWER GATEWAYS (CVE-2016-10009, CVE-2016-10012)

 

 


 

7.2.0.11

 

Release date: 20 January 2017
Last modified: 20 January 2017
Status: Available

APAR
Description
IT15738 DATAPOWER MIGHT MISS STATE PARAMETER IN AN OAUTH ERROR RESPONSE
IT16154 DATAPOWER MIGHT RESTART WHEN TRYING TO TRANSFORM JSON CONTENT WITH XSLT CONTAINING <DP:URL-OPEN>
IT16790 DATAPOWER STORE:///LOG-SOAP.WSDL IS MISSING SOAPACTION ATTRIBUTE
IT16895 RELOAD OCCURS WHEN TRYING TO VIEW A PROBE WHICH CONTAINS NO CONTENT-TYPE
IT17171 HTTP CONTENT-TYPE HEADER CANNOT BE SET IN AN ERROR RULE WHEN CALLED BY ON-ERROR ACTION
IT17202 DP:SUBSTRING-BASE64() MIGHT RESTART DATAPOWER WITH OFFSET PARAMETER OUTSIDE VALID RANGE
IT17371 DATAPOWER MIGHT RESTART DUE TO INCORRECT XCFG FORMAT IMPORT
IT17412 DATAPOWER MULTI-PROTOCOL GATEWAY STRIPS BODY/PAYLOAD FROM AN HTTP OPTIONS REQUEST
IT17443 USING THE REST MANAGEMENT INTERFACE NON-LOCAL ACCOUNTS WILL ALWAYS FAIL AUTHENTICATION
IT17476 DATAPOWER LOADBALANCER GROUP HEALTHCHECK DOES NOT CLEANLY CLEAR SSL PROFILE ASSIGNMENT ON CHANGING SSL PROFILE TYPE
IT17486 IN RARE INSTANCES WHEN USING AN SLM POLICY, AN ALERT MESSAGE MIGHT REPORT AN INVALID XSL:MESSAGE IN THE LOGS
IT17565 MQ CONNECTIONS MIGHT CAUSE RESTART
IT17603 ISAM CLIENT MIGHT NOT COME UP AFTER APPLIANCE RESTART
IT17816 DISABLING A NFS LOGGING TARGET MIGHT CAUSE A DEVICE RESTART IN RARE CASES
IT17833 REUSE OF SSH PERSISTENT CONNECTIONS WHEN TIMEOUT OCCURS MAY CAUSE UNEXPECTED RELOAD.
IT17838 DATAPOWER MIGHT RESTART WHEN CERTAIN EXTENSION FUNCTIONS ARE EXECUTED UNDER LOAD
IT17898 DATAPOWER MIGHT RESTART TRIGGERED BY SSH CONNECT/DISCONNECT CYCLE
IT17907 INCORRECT SNI HOST HEADER ADDED WHEN USING A PROXY
IT17917 DATAPOWER MEMORY USAGE MIGHT GROW SLOWLY OVER TIME IN A HEAVY SLM USAGE SCENARIO.
IT17927 IMS CALLOUT HANDLER MIGHT DELAY SENDING RESPONSE BACK TO IMS CONNECT SERVER.
IT17930 DATAPOWER MIGHT RESTART WHEN DISABLING A LOAD BALANCER GROUP WITH HEALTH CHECK IN PROGRESS
IT18085 JOSE.DECRYPT() FAILS WHEN USING A KEY WITH PEM BUFFER AND PASSPHRASE FORMAT
IT18099 ADDITIONAL PVU LOGGING INFORMATION FOR VIRTUAL DATAPOWER ADDED
IT18116 DATAPOWER MIGHT RESTART WHEN AN MQ CONNECTION SUFFERS FROM A BROKEN NETWORK CONNECTION.
IT18151 SECURITY ENHANCEMENTS ON NEW USER ACCOUNT PAGE
IT18153 DATAPOWER CPU MIGHT SPIKE CAUSING UNRESPONSIVENESS WHEN THERE ARE MANY MQ HANDLERS DEFINED ON A SERVICE
IT18157 MQ ERROR CODE 2010 IS VISIBLE WHEN SHARING CONVERSATION IS USED EVEN IF MXMSGML OF QMGRS CHANNEL IS GREATER THAN MQ-QM MSG SIZE
IT18195 DATAPOWER MIGHT RESTART WHEN MQ-QM OBJECT STATE CHANGES FROM UP TO DOWN DURING HIGH VOLUME OF MQ TRAFFIC
IT18242 DATAPOWER MQ-QM OBJECT MIGHT REPORT MQ ERROR CODE 2009, WHEN DATAPOWER IS TRYING TO END THE CONVERSATION PREMATURELY
IT18259 ON IDG UNDER DIAGNOSTICS MODE THE NIC ONLINE TEST FAILS AND LEDS STAY OFF EVEN WHEN THE CABLES ARE CONNECTED
IT18793 A VULNERABILITY IN SSL/TLS PROTOCOL IN IBM DATAPOWER GATEWAYS (CVE-2016-8610)

 

 


 

7.2.0.10

 

Release date: 21 November 2016
Last modified: 21 November 2016
Status: Available

APAR
Description
IT14083 GATEWAYSCRIPT ACTION WITH INPUT AND OUTPUT CONTEXT INPUT MAY RESTART APPLIANCE IN CASE OF NON-XML SERVICE REQUEST TYPE
IT14560 APPLIANCE MIGHT RESTART UNDER HIGH LOAD WHEN USING ODR TO INTERFACE WITH WEBSPHERE LIBERTY
IT15078 XSD:MININCLUSIVE DOES NOT WORK FOR XML SCHEMA XSD:DATETIME WITHOUT TIMEZONE RESTRICTION
IT15287 APPLIANCE MIGHT RESTART IF DP:URL-OPEN EXTENSION FUNCTION CANNOT ALLOCATE A LARGE CONTIGUOUS BUFFER
IT15293 LARGE MQ-QM SHARING-CONVERSATIONS VALUE MIGHT CAUSE HIGH CPU USAGE UNDER HIGH TRAFFIC LOAD
IT15448 DATAPOWER SERIAL OVER LAN SESSION MIGHT HANG WHEN THE SESSION IS REPEATEDLY STOPPED AND RESTARTED QUICKLY
IT16036 APPLIANCE MIGHT UNEXPECTEDLY RELOAD WHEN HTTP TRANSACTION FAILS DUE TO TIMEOUT
IT16194 OAUTH PARAMETER NUMBER OF REFRESH TOKENS ALLOWED IS NOT LISTEDIN THE GUI WHEN CLIENT TYPE IS PUBLIC
IT16244 INCORRECT SSL ERROR WRONG VERSION NUMBER IS ISSUED WHEN RECEIVING 5XX ERROR FROM HTTP PROXY SERVER WHEN USING CONNECT
IT16320 WILDCARD REGULAR EXPRESSION FOR DOMAIN NAME IS NOT WORKING IN ACCESS PROFILE
IT16351 APPLIANCE MIGHT RELOAD WHEN TCP PROXY RECEIVES UNEXPECTED EOF ON FRONT OR BACK SIDE PORT
IT16398 PROBE WILL FAIL (COMPILE ERROR) IN AN APPLICATION DOMAIN IF DEFAULT DOMAIN IS NOT VISIBLE TO THAT DOMAIN
IT16437 LOAD BALANCER GROUP HEALTH CHECK TYPE IS NOT ENFORCED PROPERLY
IT16449 DYNAMIC MULTISTEP ACTION LEAK MAY OCCUR IN DOMAINS HAVING SSH FSH WITH AAA POLICY
IT16474 WTX DPA MAP IN DATAPOWER DOES NOT RETURN CORRECT MILLISECONDS VALUE IN CURRENTDATETIME() CALL
IT16647 DATAPOWER MAY CORRUPT MIME ATTACHMENTS DURING PROCESSING WHEN DATA MEETS A VERY RARE CONDITION
IT16673 WEB APPLICATION FIREWALL MIGHT CAUSE RELOAD ON EVALUATING A MALFORMED COOKIE
IT16765 DATAPOWER MIGHT RESTART UNEXPECTEDLY WHEN THE COMPILE OPTIONS POLICY STACK-SIZE IS SET TO 16 MB OR GREATER
IT16786 DATAPOWER MIGHT RESTART IN A HIGHLY CONCURRENT MQPUT SCENARIO WITH ALL MQ CONVERSATIONS OF THE CONNECTION POOL USED
IT16813 SMTP COMMUNICATION MIGHT FAIL DUE TO DATAPOWER SENDING A MALFORMED REQUEST
IT16814 BAD SYNCHRONIZATION IN DATAPOWER MIGHT CAUSE A RESTART IN MQ FSH
IT16833 DELETING AN FTP, SFTP, OR NFS POLLER MIGHT TRIGGER A RELOAD
IT16871 IMPORTING GATEWAYSCRIPT MODULE FROM LOCAL FILE SYSTEM MIGHT FAIL AFTER FIRMWARE UPGRADE
IT16873 DATAPOWER INTERMITTENT AND UNEXPECTED RESTART WITH MQ SHARING CONVERSATION
IT16908 INCLUDE EXISTING COMMAND LINE INTERFACE LOGS IN AN ERROR REPORT IN CASE OF UNEXPECTED RESTART
IT16932 TRYING TO LIST A DIRECTORY AFTER ISSUING CCC FTP COMMAND MIGHT CAUSE A RELOAD
IT16950 TRANSFORMATION ACTION INCREMENTING MESSAGE COUNTER ASYNCHRONOUSLY MIGHT TRIGGER A RELOAD
IT16988 UNKNOWN PASSWORD ALIAS ERROR WHEN IMPORTING CRYPTO KEY VIA CRYPTO TOOLS IN NON-DEFAULT DOMAIN
IT17001 WHEN USING DATA LINK CONNECTION IN ORACLE DATABASE TO QUERY DATA, ONLY PART OF THE RECORD RESULTS ARE RETURNED
IT17003 SNMP INTERFACE64 COUNTER WRAPS INCORRECTLY AT 4294967296 BYTES
IT17056 WSDL REFRESHES CONTINUE AFTER DISABLING DOMAIN
IT17082 APPLIANCE MIGHT UNEXPECTEDLY RELOAD WHEN EXECUTING A CONFIGURATION CHECKPOINT
IT17122 APPLIANCE MIGHT RELOAD WHEN CONFIGURING XC10 GRID ENCRYPTION IF THE WRONG TYPE OR LENGTH KEY IS USED
IT17125 DATAPOWER HSM COMPONENT FIRMWARE LEVEL 2.2 DOES NOT ALLOW TO IMPORT ANY KEYS INTO HSM
IT17134 SSL SNI SERVER PROFILE MIGHT BE UNAVAILABLE EVEN AFTER UNDERLYING CREDENTIALS ARE ENABLED
IT17138 DATAPOWER HSM VERSION 2.2 MIGHT CAUSE RSA SIGNATURE FAILURE
IT17146 DATAPOWER MIGHT RESTART WHILE COLLECTING AN ERROR REPORT
IT17153 INSTABILITY OF MQ CLIENT CONNECTIONS WHEN SHARING CONVERSATIONS IS ENABLED
IT17155 USER CERTIFICATE AUTHENTICATION VIA RBM DOES NOT ALLOW ACCESS
IT17165 HTTP/1.1 411 LENGTH REQUIRED ERROR RETURNED FOR EMPTY POST/PUT WITHOUT CONTENT_LENGTH HEADER
IT17172 404 NOT FOUND RETURNED WHEN EXECUTING RMI GET METADATA FOR AN ACTION OBJECT
IT17182 SSH MITIGATION FOR CVE-2010-5107
IT17195 COPYING A FILE TO AN NFS STATIC MOUNT VIA THE CLI INCORRECTLY REPORTS SUCCESS WHEN THE MOUNT IS DOWN
IT17221 GATEWAYSCRIPT URLOPEN MODULE CAUSES DOCUMENT PARTIALLY CACHED UNDER SOME CONDITIONS
IT17222 GATEWAYSCRIPT DOM API GETELEMENTSBYTAGNAME.ITEM().TEXTCONTENT RETURNS INCORRECT DATA WHEN DATA SIZE IS TOO LARGE
IT17261 WHEN CHANGING THE CONFIGURATION FOR A MULTI-PROTOCOL GATEWAY OR WEB SERVICE PROXY, DATAPOWER MIGHT RELOAD
IT17280 SIX VULNERABILITIES IN THE SSL COMPONENT OF IBM DATAPOWER GATEWAYS
IT17323 GATEWAYSCRIPT URLOPEN MODULE WILL HANG UNDER SOME CONDITIONS
IT17325 GATEWAYSCRIPT URLOPEN MODULE CAUSES DOCUMENT TO BE PARTIALLY CACHED WHEN THE CONNECTION TIMES OUT
IT17418 DATAPOWER MIGHT RESTART WHEN UPGRADING FROM 7.2.0.X AND PASSWORD ALIASES ARE USED IN MULTIPLE DOMAINS
IT17441 MODIFYING LOAD BALANCER GROUP CONFIGURATION WHILE APPLIANCE UNDER HEAVY LOAD MIGHT LEAD TO APPLIANCE RELOAD
IT17895 THE DEVICE MIGHT SHOW MEMORY GROWTH DUE TO DELAY IN RELEASING MEMORY FROM THE BACKEND URL ASSOCIATED WITH THE WS-PROXY SERVICE
IT17896 APPLIANCE MIGHT HANG AND RESTART, GENERATING A WATCHDOG BACKTRACE

 

 


 

7.2.0.9

 

Release date: 16 September 2016
Last modified: 16 September 2016
Status: Available

APAR
Description
IT14088 LOAD BALANCER GROUP STATUS UPDATE MAY CAUSE UNEXPECTED APPLIANCE RESTART
IT15007 PASSING INCORRECT HREF FORMAT INTO A XFORMPI ACTION WILL TRIGGER UNEXPECTED APPLIANCE RESTART
IT15140 USE OF ENFORCE-RBM ON CLI MAY CAUSE UNEXPECTED APPLIANCE RESTART WHEN PROCESSING CLI COMMAND
IT15437 USING FIREFOX TOOLS IT IS POSSIBLE TO MODIFY THE WEBGUI PAGES TO RENAME FILES ON APPLIANCE TO INCLUDE INVALID CHARACTERS
IT15445 DELETING OR RESTARTING A DOMAIN WITH AN NFS STATIC MOUNT MIGHT UNEXPECTEDLY RESTART THE APPLIANCE
IT15457 DIFFICULTY IN COMMUNICATING WITH NFS SERVER MAY CAUSE HIGHER SUSTAINED CPU USAGE
IT15609 JSON SCHEMA COMPILATION FAILS WHEN SOME PROPERTY VALUES ARE LARGER THAN 999999
IT15649 INCORRECT MILLISECOND TIMESTAMP LOG FORMATTING IN CASE OF MILLISECOND PART LESS THAN 100
IT15660 DATE IN JSON WEB TOKEN (JWT) MUST BE NUMERIC DATE (IN SECOND)
IT15721 APPLIANCE MAY UNEXPECTEDLY RESTART WHEN BACKEND SFTP SERVER DELAYS ITS SSH CONNECTIONS TO THE DEVICE
IT15751 NETWORK ERROR MAY OCCUR WHEN USING NFS STORAGE FOR B2B GATEWAY
IT15764 USING SPECIAL CHARACTERS IN SFTP PASSWORD MAY RESULT IN FAILURE TO CONNECT TO SFTP SERVER
IT15844 CHANGES IN INTERFACE CONFIGURATION USING STANDBY CONTROL MAY CAUSE AN UNEXPECTED APPLIANCE RESTART
IT15848 DOMAIN CHECKPOINT STATUS MAY CAUSE UNEXPECTED APPLIANCE RESTART
IT15928 APPLIANCE MAY WATCHDOG WHEN LLDIAG DIAGNOSTIC FEATURE IS ENABLED
IT15961 PASSWORD MAP ALIAS MAY NOT BE COPIED FROM DEFAULT DOMAIN TO APPLICATION DOMAIN AS EXPECTED
IT15996 SOURCE-MQFTE MAY CAUSE UNEXPECTED APPLIANCE RESTART WHEN POLLING MQ SERVER
IT15997 WHILE UPDATING NFS MOUNT STATE AN UNEXPECTED APPLIANCE RESTART MAY OCCUR
IT16042 DISABLING AN NFS STATIC MOUNT MAY LEAD TO AN UNEXPECTED APPLIANCE RESTART
IT16119 APPLIANCE MAY RESTART IF GATEWAYSCRIPT RESPONSE MESSAGE IS EMPTY
IT16152 SLM POLICY TAB IN WEB SERVICE PROXIES MAY POPULATE INCORRECTLY
IT16185 CROSS SITE SCRIPTING VULNERABILITY IN WEBGUI
IT16190 DATAPOWER SELF BALANCING DOES INCORRECTLY NOT DECREMENT IP TTL UPON PACKET FORWARDING
IT16229 NFS MOUNTS MAY NOT ENTER AN UP STATE CORRECTLY
IT16241 GENERATING ERROR REPORT MAY RESTART THE APPLIANCE WHILE DATAPOWER TRIES TO GET GATEWAYSCRIPT RUNTIME HEAP STATISTICS
IT16279 GATEWAYSCRIPT VULNERABILITY IN THE V8 COMPONENT OF IBM DATAPOWER GATEWAYS (CVE-2016-1669)
IT16307 XML PROCESSING VULNERABILITIES FOR SOME DATAPOWER COMPONENTS (CVE-2016-3627/3705/4447/4448/4449)
IT16715 SERVICE UTILIZING MQ BACKOUT MAY CAUSE AN UNEXPECTED APPLIANCE RESTART IF BACKOUT ATTEMPT OCCURS

 

 


 

7.2.0.8

 

Release date: 20 July 2016
Last modified: 19 May 2017
Status: Available

APAR
Description
IT10657 CROSS SITE SCRIPTING VULNERABILITY IN WEBGUI
IT12955 COOKIE ATTRIBUTE POLICY MAY NOT RELEASE MEMORY
IT13810 SFTP FRONT SIDE HANDLER IS STILL DOWN EVEN AFTER ENABLING THE DOMAIN
IT14033 IMPROPER USE OF DP:SUBSTRING-BASE64() ON NON-BASE64 DATA MIGHT RESULT IN APPLIANCE RESTART
IT14084 NFS POLLER FSH DOES NOT START WORKING AFTER INITIAL CREATION OF THE OBJECT.
IT14135 MESSAGES THAT REQUIRE SIGNATURE MAY NOT BE REJECTED IF IT IS NOT SIGNED
IT14267 THE DATAPOWER DEVICE MAY RELOAD DUE TO LARGE NUMBER OF MQ CONNECTIONS BEING USED RESULTING MANY MQ ERROR OF 2059.
IT14278 DATAPOWER B2BGW USER-AGENT FAILS TO REWRITE AS2:// URI CORRECTLY IN AN OUTBOUND HTTP FORWARDING PROXY SCENARIO
IT14318 FIRMWARE UPGRADE MAY THROW VALIDATION ERROR WHEN INTERNAL FILESYSTEM SPACE IS FULL
IT14323 AFTER DELETION OF B2BGW DELETING THE REMAINING CHILD OBJECTS MIGHT FAIL IF PING EBMS DESTINATION WAS USED BEFORE
IT14325 SYSTEM USAGE FOR DCO TASK MAY REPORT A LOWER THAN EXPECTED VALUE FOR CPU USAGE
IT14352 JSV FAILS TO VALIDATE ONEOF/ANYOF SCHEMAS WHEN MULTIPLE ERRORS OCCUR IN ONE SUBSCHEMA
IT14386 LOAD BALANCER GROUPS PERFORM HEALTH CHECK WHEN OBJECT IS DISABLED OR QUIESCED
IT14387 TASKS REPORTED MULTIPLE TIMES IN SYSTEM USAGE, POSSIBLY IMPACTING PERFORMANCE AND STABILITY
IT14456 IT MAY CAUSE HIGH CPU USAGE WHEN ENABLE-SHARING IS ENABLED IN SQL DATA SOURCE RUNTIME SETTINGS.
IT14466 RUNNING MQ CONNECTION STATUS QUERIES AT THE SAME TIME AS ENABLING/DISABLING MQ QUEUE MANAGER MAY CAUSE RESTART
IT14470 DATAPOWER MAY RESTART WHEN RUNNING GATEWAYSCRIPT DEBUG SESSION AND UPDATING MODULE OR SCRIPT CONTENT AT THE SAME TIME.
IT14484 TRANSFORM.XSLT() RETURNS INCORRECT RESULT FOR THE INPUT THAT CONTAINS AN ELEMENT NODE.
IT14541 JSON SCHEMA VALIDATION WITH 'REQUIRED' ARRAY OF MORE THAN 256 ELEMENTS MAY RESULT IN AN UNEXPECTED RELOAD OF APPLIANCE
IT14650 UNABLE TO CONFIGURE MANY SECONDARY ADDRESSES.
IT14708 WHEN PROCESSING EMPTY BODIED RESPONSES ON SSL ENABLED XML FIREWALL APPLIANCE MAY EXPERIENCE CONNECTION FAILURES
IT14743 DATAPOWER FIRMWARE 7.2 MAY HANG IF THROTTLE IS ENABLED. WITH THROTTLE ENABLED, ADDING NEW ADMIN USERID MAY CAUSE REBOOT.
IT14807 DATAPOWER MIGHT RESTART UNEXPECTEDLY IF TRYING TO COMPILE A WSDL THAT CONTAINS NON-URL <SOAP:ADDRESS LOCATION="..."/> VALUE
IT14875 GATEWAYSCRIPT URLOPEN FUNCTION RESPONSE.HEADERS OUTPUT IS NOT CORRECT WHEN HEADER IS NON-COALESCED.
IT14892 USER SESSION NOT TERMINATED ON ACCOUNT LOCKOUT.
IT14914 DOCUMENT CACHE CAN RETURN INCORRECT RESULTS UNDER HEAVY LOAD
IT14936 A VULNERABILITY IN CROSS-SITE REQUEST FORGERY
IT14952 SENDING IMS REQUEST OVER SSL RESULTS IN TIMEOUT.
IT14996 RESTARTING/DISABLING/ENABLING A DOMAIN CONTAINING NFS STATIC MOUNTS MIGHT TAKE A LONG TIME TO COMPLETE IN CERTAIN SITUATION
IT15006 USING TCP PARTIAL HEALTH CHECKS CAN LEAD TO UNEXPECTED BEHAVIOR
IT15099 NFS MOUNT MAY NOT COME UP CORRECTLY
IT15108 B2B GATEWAY RETURN HTTP 500 INSTEAD OF HTTP 200 WHEN INBOUND MESSAGE IS SIGNED INCORRECTLY.
IT15160 IBM DATAPOWER GATEWAY THE SAME CACHE NAME FROM DIFFERENT DPA OBJECTS MIGHT BE WRONGLY USED TO THE DIFFERENT SERVICE.
IT15218 POSSIBLE INSTABILITY WHEN OUT OF FILE DESCRIPTORS
IT15231 SLM MULTICAST PEERING NOT UPDATING CORRECTLY
IT15234 SFTP POLLER MIGHT STOP WORKING
IT15295 HTML FORMS LOGIN - COOKIE ATTRIBUTE POLICY DOES NOT INCLUDE SECURE ATTRIBUTE
IT15298 PASSIVE MEMBER OF A SELF-BALANCING GROUP ANNOUNCES ITS SERVICES EVEN WHEN IN STRICT ENFORCEMENT MODE
IT15324 WTX ENGINE MIGHT RESTART WHEN PROCESSING SPECIAL CHARACTERS IN DOUBLE-BYTE MODE.
IT15367 CERTAIN FTP REQUESTS MAY RESULT IN AN UNEXPECTED RELOAD
IT15377 GATEWAYSCRIPT RUNTIME IS ENABLED WITH PATH CACHE BY DEFAULT. AN ACTION TO CLEAR THE GATEWAYSCRIPT RUNTIME PATH CACHE.
IT15420 KERBEROS TICKET RETRIEVED EVEN WHEN AUTHORIZATION HAS FAILED
IT15441 XQUERY COMPILE TIME MIGHT BE VERY LONG
IT15442 DATAPOWER MIGHT FAIL TO IMPORT FILES WHICH HAVE IDENTICAL PATH/FILENAME IF REMOVING FOLDER / SLASHES
IT15473 GATEWAYSCRIPT MAY DEADLOCK OR WATCHDOG UNDER MODERATE LOAD.
IT15508 WTX INTERNAL ERROR. UNEXPECTED MAPPING ERROR.
IT15555 FIPS COMPLIANCE REQUIRES 2048 BYTE OR LARGER KEYS ON HSM
IT15629 BINARY TRANSFORM WITH WTX MAP MAY THEORETICALLY FAIL IN EXTREMELY RARE RANDOM CASES.
IT15693 WHILE USING MQFTE FRONT SIDE HANDLER APPLIANCE MAY UNEXPECTEDLY RELOAD
IT15708 THE MQ-QM OBJECT FAILS WHEN SSL CONNECTIONS ARE USED IN SLOW NETWORKS.
IT15774 DYNAMIC CACHING POLICIES DO NOT WORK FROM A CALLED RULE.
IT16865 CHANGES MADE TO A DOMAIN MUST BE REVIEWED IN THE GUI BEFORE SAVING.
IT16959 WTX ERROR "ONE OR MORE INPUTS WAS INVALID" WHILE PROCESSING XML INPUT DATA
IT20625 IMPROVE PERFORMANCE OF XSLT EXTENSIONS AND GATEWAYSCRIPT API METHODS TO ACCESS CONTEXT VARIABLES

 

 


 

7.2.0.7

 

Release date: 6 July 2016
Last modified: 6 July 2016
Status: Available

APAR
Description
IT15454 VULNERABILITIES IN THE SSL COMPONENT OF IBM DATAPOWER GATEWAYS (CVE-2016-2108 CVE-2016-2107 CVE-2016-2105 CVE-2016-2106 CVE-2016-2109 CVE-2016-2176)
IT15458 VULNERABILITIES IN THE SSL COMPONENT OF IBM DATAPOWER GATEWAYS (CVE-2016-0705 CVE-2016-0797 CVE-2016-0799 CVE-2016-0702 CVE-2016-2842)

 

 


 

7.2.0.6

 

Release date: 20 May 2016
Last modified: 20 May 2016
Status: Available

APAR
Description
IT11118 DATAPOWER MIGHT FAIL TO CANCEL PROCESSING IF AN FTP POLLER HANDLER CANNOT RENAME THE INPUT FILE
IT12165 NFS OBJECTS MAY NOT CLEAN UP CORRECTLY AND USE ADDITIONAL RESOURCES
IT12248 OCSP, WSRR, OR XC10 RELATED TRANSACTIONS MAY STALL IF THE TARGET SERVER USES PERSISTENT CONNECTIONS
IT12405 MIME PROCESSING MAY CAUSE AN UNEXPECTED RESTART
IT12502 WSRR AUTOMATIC SYNCHRONIZATION MAY CAUSE APPLIANCE TO RESTART
IT12515 CONNECTION ERROR MAY BE LOGGED MULTIPLE TIMES
IT12822 APPLIANCE MAY RESTART WHEN USING SLM SCHEDULING IN COMBINATION WITH THE ACTION SET TO SHAPING
IT12929 ADD THREE BUFFER COMPARE FUNCTIONS TO GATEWAYSCRIPT
IT12946 DATAPOWER MAY RESTART WHEN MQ HANDLER IS MISCONFIGURED
IT13148 INCORRECT MQ CONNECTION HANDLING MAY CAUSE AN UNEXPECTED APPLIANCE RESTART
IT13158 DNS RESOLUTION MIGHT FAIL DUE TO CASE SENSITIVITY
IT13407 APPLIANCE MIGHT RESTART IF VERY LONG CLI COMMAND STRINGS ARE USED THAT CONSIST OF MULTIPLE COMMANDS DELIMITED BY SEMICOLONS
IT13408 APPLIANCE MIGHT RESTART DURING HIGH LEVEL OF CONFIGURATION ACTIVITY AND SYSTEM LOAD
IT13573 REST MANAGEMENT INTERFACE CALLS MIGHT FAIL UNEXPECTEDLY WHEN USING A USER WITH GROUP DEFINED PRIVILEGES
IT13642 SSL PROFILE DEPRECATION MAY CAUSE ROUTE ACTIONS TO NOT PULL SSL PROFILES CORRECTLY
IT13795 DATAPOWER WEB SERVICE PROXY WITH MQ HANDLER REQUEST MATCHING LOGIC MIGHT STRUGGLE WITH AMBIGUOUS RESULTS ALSO VISIBLE IN LOGS
IT13844 WHEN PROCESSING MQ TRANSACTIONS APPLIANCE MAY UNEXPECTEDLY RESTART
IT13885 WHILE PROCESSING MQ URLOPENER IN A TRANSACTION, APPLIANCE MIGHT UNEXPECTEDLY RESTART
IT13913 USE OF THE PROBE MAY CAUSE AN UNEXPECTED APPLIANCE RESTART LATER WHEN GENERATING INTERNAL-STATE OR ERROR REPORT.
IT14004 XQUERY SCRIPT WITH EMPTY NAMESPACE MAY RECEIVE FATAL ERROR ON COMPILATION
IT14028 SYSLOG MESSAGES WILL NOT CONTAIN NEWLINE IF OVER 1024 CHARACTERS LONG
IT14060 WHEN RUNNING OUT OF MEMORY IN SQL RUNTIME THIS MAY ALSO CAUSE THE TEMPORARY FILESYSTEM TO RUN OUT OF SPACE
IT14068 ADDING IPMI BMC SEL TEST ENTRIES FROM THE WEBGUI MIGHT NOT WORK.
IT14069 PATTERNS CREATED IN OLDER RELEASES THAN 7.2, MIGHT NOT DISPLAY ALL PROPERTIES DURING DEPLOY.
IT14077 DEPLOYING A PATTERN WITH A SHARED WSRR SERVER THAT IS LOCKED MIGHT FAIL.
IT14089 APPLICATION DOMAINS THAT USE EXTERNAL CONFIGURATION SOMETIMES FAIL TO LOAD
IT14128 THE WAY A CACHE KEY WAS INTERNALLY BUILT CAUSED ISSUES FOR THE DOCUMENT CACHE WHEN INTEGRATING WITH WEBSPHERE EXTREME SCALE
IT14136 USING NFS POLLERS MIGHT LEAD TO UNEXPECTED MEMORY GROWTH
IT14139 GATEWAY DEBUG PROBE DATA NOT IMPORTED WHEN USING XML MANAGEMENT INTERFACE
IT14147 CLICKING AN OBJECT WITH INVALID CONFIGURATION IN WEBGUI MIGHT RESTART THE APPLIANCE
IT14178 CRYPTO KEY CLI SAVE PROCESS
IT14185 IN SOME CASES UNQUIESCING SERVICES LISTENING ON 0.0.0.0 IN A SELF-BALANCED GROUP MAY NOT CAUSE THEM TO GET REINSTATED
IT14190 UNEXPECTED APPLIANCE RESTART MIGHT OCCUR DURING AN INTERNAL PROCESS SUCH AS ISAM
IT14297 JSON SCHEMA VALIDATION DOES NOT RECOGNIZE DATES ON DAYS 30 OR 31 IN A MONTH AS VALID DATES.
IT14230 A VULNERABILITY IN THE SSL COMPONENT OF IBM DATAPOWER GATEWAYS. (CVE-2016-0701 CVE-2015-3197)
IT14321 A VULNERABILITY IN THE SSL COMPONENT OF IBM DATAPOWER GATEWAYS (CVE-2015-3193, CVE-2015-3195, CVE-2015-1794)
IT14350 LARGE NUMBER OF INITITAL CONNECTIONS ON DATAPOWER MQ-QM OBJECT CAUSES MQRC 2195
IT14472 ACCESS MANAGER DOWN AFTER DEVICE RESTART
IT15089 VULNERABILITIES IN THE XML PROCESSING COMPONENT OF SOME IBM DATAPOWER GATEWAYS INTERNAL SERVICES (MULTIPLE CVES)

 

 


 

7.2.0.5

 

Release date: 22 March 2016
Last modified: 22 March 2016
Status: Available

In addition to APAR fixes, version 7.2.0.5 includes the following new features. Click the link to view the information in the 7.5.0.0 documentation in IBM Knowledge Center.

 

APAR
Description
IT13826 ERROR MIGHT HAPPEN WHEN TRYING TO SIGN A JSON WEB TOKEN (JWT) WITH A JSON WEB KEY (JWK)
IT14108 ERROR 0X8860001F WITH BLUEMIX SECURE GATEWAY CLIENT
IT14295 GATEWAYSCRIPT READASJSON() CANNOT PROCESS UTF-8 ENCODED JSON DATA THAT IS BOM PREFIXED (BYTE ORDER MARK).
IT14301 HTTP CONNECTIONS STATUS MIGHT RETURN EMPTY ROWS
IT14302 JSON WEB SECURITY CORRECTIONS AND ENHANCEMENTS
IT14303 INTROSPECTION ENDPOINT IS NOT RETURNING APPROPRIATELY, AND PROVIDING FOR THE RESOURCE SERVER TO PERFORM SCOPE CHECK
IT14304 XSLT AND GATEWAYSCRIPT ENHANCEMENTS

 

 

 


 

7.2.0.4

 

Release date: 8 March 2016
Last modified: 8 March 2016
Status: Available

APAR
Description
IT13137 HASH MISMATCH ERROR MAY OCCUR AGAINST A VALID HASH
IT13989 GNU C LIBRARY (GLIBC) VULNERABILITY AFFECTS IBM DATAPOWER GATEWAYS (CVE-2015-7547)
IT14164 A HASH SELECTOR VULNERABILITY IN IBM GSKIT AFFECTS IBM DATAPOWER GATEWAYS.

 

 

 

 


 

7.2.0.3

 

Release date: 5 February 2016
Last modified: 4 February 2016
Status: Available

APAR
Description
IT10034 REFRESHING AN OAUTH ACCESS TOKEN DOES NOT RESULT IN AN ERROR WHEN USING INVALID PARAMETER
IT10594 UNEXPECTED RESTART MAY OCCUR ON SQL-EXECUTE
IT11174 AAA LDAP AUTHENTICATION OR AUTHORIZATION MIGHT FAIL WHEN DN CONTAINS WHITE SPACE.
IT11215 SFTP ISSUE PASSING CERTAIN NON-ALPHANUMERIC CHARACTERS IN PASSWORD
IT11551 DATAPOWER RESTART CAUSED BY MISSING SYNCHRONIZATION IN PROBE CODE
IT11642 APPLIANCE LOAD ALONG WITH DIAGNOSTIC COMMAND CAN RESULT IN RESTART OF THE APPLIANCE.
IT11697 SNMP FUNCTION HAS POTENTIAL VULNERABILITIES
IT11733 OAUTH AUTHENTICATION WHOSE GRANT TYPE IS PASSWORD FAILS WHEN THE PASSWORD CONTAINS %
IT11760 DATAPOWER MAY RESTART UNEXPECTEDLY IF ATTEMPTING TO PROCESS INPUT LARGER THAN 1 GB USING GATEWAYSCRIPT BUFFER API
IT11926 THE APPLIANCE MAY UNEXPECTEDLY RESTART WHEN PERFORMING AN MQFTE BACKOUT
IT11997 FTP FRONT SIDE HANDLER ENDS THE CONNECTION WHEN PASSIVE PORT IS 65535
IT12035 APPLIANCE MAY RESTART WHILE PROCESSING MQ
IT12040 RESOURCE OWNER IS SET INCORRECTLY WHEN FORMS LOGIN COOKIE IS BEING USED
IT12043 APPLIANCE MAY HANG AND WATCHDOG DURING THE OAUTH CONFIGURATION
IT12061 UNDER LOAD AN SSL PROXY SERVICE MAY INTERMITTENTLY FAIL
IT12100 JSON SCHEMA VALIDATION MAY PRODUCE INCORRECT RESULTS WHEN JSON SCHEMA CONTAINS THE ITEMS KEYWORD
IT12258 WHILE PROCESSING MQ TRANSACTIONS APPLIANCE MAY UNEXPECTEDLY RESTART
IT12347 CANNOT ADD SSL SOURCE ADDRESS IN EDIT WEB APPLICATION FIREWALL PAGE IN NON-ENGLISH WEBGUI
IT12548 IN SOME CASES DATAPOWER MAY NOT PROPERLY PARSE DIME MESSAGES, WHICH RESULTS IN A MALFORMED MESSAGE BEING SENT TO THE NEXT HOP
IT12556 UNEXPECTED RESULTS MAY BE DISPLAYED ON STATUS PROVIDERS AND IN SOME CASES CAUSE UNEXPECTED RESTART ON ERROR REPORT GENERATION
IT12605 SPECIALLY CRAFTED XML FILE THAT, WHEN PARSED USING LIBXML2, COULD CAUSE AN APPLICATION TO USE AN EXCESSIVE AMOUNT OF MEMORY
IT12611 PLUGGABLE AUTHENTICATION MODULE FUNCTION MAY BECOME UNRESPONSIVE OR CAUSE A DENIAL OF SERVICE ON THE APPLIANCE
IT12635 SOME OBJECTS MAY UNINTENTIONALLY BE EXPORTED RESULTING IN ERROR MESSAGES ON RE-IMPORT.
IT12655 TCP PROXY SERVICE MAY CLOSE THE FRONT-SIDE CONNECTION IN MIDDLE OF DATA TRANSFER
IT12696 TCP WINDOW SCALING OPTION CANT BE TURNED OFF
IT12722 UNICAST SLM PEERING NOT SYNCING WITH OTHER IN PEER GROUP.

 

 


 

7.2.0.2

 

Release date: 4 December 2015
Last modified: 8 December 2015
Status: Available

APAR
Description
IT08399 TCP PROXY BEING UNABLE TO WRITE TO FRONT END MAY CAUSE APPLIANCE RESTART
IT08971 INDEFINITE HTTP GET REQUEST RETRIES CAN OCCUR WHEN USING SERVICES WITH PERSISTENT CONNECTIONS
IT09081 ERRORS ARE SEEN WHEN AN FTP CLIENT CLOSES THE CONNECTION IMMEDIATELY AFTER OPENING A DIRECTORY
IT09132 USING THE DIAGNOSTIC COMMAND SHOW HANDLES CAN RESULT IN UNEXPECTED BEHAVIOR
IT09195 DYN:EVALUATE FUNCTION USED IN <XSL:WITH-PARAM> CAUSES AN APPLIANCE RESTART
IT09269 DOMAIN MEMORY USAGE DATA SHOWS INCORRECT NUMBER IN WEBGUI
IT09304 APPLIANCES WITH 40 CPUS AND MORE MAY UNEXPECTEDLY RESTART
IT09358 DATAPOWER MPGW, WSP AND WAF SERVICES DO NOT PRESERVE HTTP 1.0 CONTENT-LENGTH ON PASSTHROUGH RESPONSE IF CONTENT-LENGTH > 32K
IT09552 ARCHIVE MODE LOG TARGET MAY CONSUME TEMPORARY SPACE IF REMOTE SERVER IS DOWN
IT09575 DELETING DIAGNOSTIC LOG CAN LEAD TO UNEXPECTED TEMPORARY SPACE USAGE
IT09741 SLM PARAMETERS ARE NOT UPDATED ON PEER APPLIANCES WHEN POLICY VARIABLES ARE USED FOR WS-MEDIATIONPOLICY
IT09792 VALIDATE DOCUMENT VIA SCHEMA ATTRIBUTE WITH NON-XML SERVICE REQUEST TYPE RESTARTS APPLIANCE
IT09820 A WATCHDOG RESTART MIGHT OCCUR WHEN DELETING OR RESTARTING DOMAINS WHILE APPLIANCE IS REBOOTING
IT09865 USER WITH READ-EXECUTE ONLY PERMISSIONS MAY NOT EXPORT ALL OBJECTS IN CONFIGURATION
IT09987 INVALID SCHEMA WITH XSD:UNIONS MEMBERTYPES ATTRIBUTE REFERENCING ITSELF COMPILES ENDLESSLY
IT10115 VALIDATION USING XSD:DECIMAL TYPE, IN SOME CASES, MAY CAUSE FALSE REJECTIONS
IT10165 APPLIANCE MAY RESTART IF XML MANAGEMENT INTERFACE IS LISTENING ON A HOST-ALIAS, ::, OR 0.0.0.0 AND WSRR SUBSCRIPTION IS USED
IT10219 DOCUMENT CACHE CONTINUES TO REFETCH RESOURCES EVEN IF BACKEND CONFIRMS NO CHANGE SINCE CACHED COPY
IT10258 APPLIANCE MAY UNEXPECTEDLY RESTART WHEN VALIDATING JSON MESSAGES IN CASE OF A LARGE JSON SCHEMA
IT10287 DATAPOWER MIGHT RESTART WHEN RESTARTING A DOMAIN THAT OWNS SLM POLICIES OBTAINED FROM WSRR USED IN A PEER GROUP
IT10321 POLLING STATISTICS MAY CAUSE AN UNEXPECTED APPLIANCE RESTART
IT10426 RAW TCP URL-OPEN MAY CAUSE AN APPLIANCE RESTART IF YOU PASS A NULL STRING AS THE HOSTNAME
IT10444 STATISTICS SETTINGS MAY BE SHOWING DOWN AFTER FIRMWARE UPGRADE
IT10478 UNKNOWN PASSWORD ALIAS ERROR WHILE GENERATING KEY IN CRYPTO TOOLS
IT10508 APPLIANCE MAY RESTART WHEN USING INCLUDE-CONFIG IF THE CONFIG FILE IS NOT ACCESSIBLE ON THE NETWORK
IT10531 APPLIANCE DOES NOT RESPOND TO CLI COMMAND APPLIANCE-QUIESCE
IT10598 SECURE-BACKUP MAY CAUSE DEVICE TO HANG UNEXPECTEDLY
IT10637 LDAP SEARCH WITH LDAP CONECTION POOL MAY GET MSGID MISMATCH ERROR
IT10660 ANONYMOUS SLA ALWAYS TRIGGERED WHEN CUSTOM MCF TYPE USED FOR SLA
IT10667 DATAPOWER XML MANAGEMENT INTERFACE OUTPUT OF UPTIME2 AND BOOTUPTIME2 OF DATETIMESTATUS INCORRECTLY ISO 8601 FORMATTED
IT10718 THE DATAPOWER GATEWAY RESTARTS WHILE USING STYLESHEET TO AUTOMATICALLY CLEAR THE CACHE
IT10798 DATAPOWER ROLLBACK CHECKPOINT UNEXPECTEDLY DELETES PASSWORD MAP ALIAS
IT10890 LARGE XSLT UPLOAD IN INTERNET EXPLORER (IE) CAUSES HANG
IT10964 A BAD PASSWORD ALIAS MIGHT CAUSE APPLIANCE TO ENTER FAILSAFE MODE
IT10977 DATAPOWER FAILS TO CREATE VALID XML IN CONVERT-HTTP(JSON) ACTION IF JSON STRING CONTAINS "\U0026" OR "\U003E"
IT10978 DATAPOWER MAY RESTART IF A SIGNATURE VERIFICATION OF A RETURNED SIGNED MDN MESSAGE FAILS AND IS HANDLED IN AN ERROR RULE
IT11010 IN RARE CASES BACKTRACES MAY NOT BE GENERATED PROPERLY
IT11147 DATAPOWER MQ-QM FAILS TO CONNECT WITH AN MQ REASON CODE OF 2538 WHEN SSL IS USED
IT11169 CONTENT-TYPE HEADER REMOVED FROM GET REQUESTS
IT11190 SOME WEB SERVICE PROXY CONFIGURATIONS MAY DEVELOP A STATE WHERE CHANGES CANNOT BE APPLIED THROUGH INTERNET EXPLORER
IT11191 DURING A WEB TOKEN SERVICE TRANSITION TO UP STATE THE DATAPOWER APPLIANCE MIGHT UNEXPECTEDLY RESTART
IT11312 DOCUMENT CACHE TREATS 304 RESPONSE WITH ETAG DIFFERING FROM CACHED ENTRY ETAG AS UNSUCCESSFUL REVALIDATION
IT11326 DOCUMENT CACHE DOES NOT UPDATE ALL HEADERS OF CACHED ENTRY ON 304 RESPONSE
IT11552 TRANSACTIONS MIGHT HANG ON CACHED DOCUMENT REVALIDATION OR THE APPLIANCE MIGHT RESTART
IT11639 "DETAILS" BUTTON IN THE "CONFIGURE CRYPTO CERTIFICATE" GUI MIGHT BE DISPLAYED INACTIVE WHEN IT SHOULD BE ACTIVE
IT11678 USING SNMP FOR OID 1.3.6.1.2.1.4.20 CAN LEAD TO UNEXPECTED BEHAVIOR INCLUDING HUNG TRANSACTIONS AND APPLIANCE RESTARTS
IT11817 DUPLICATE PASSWORD MAP ALIAS ENTRIES MAY BE CREATED AND MAY RESULT IN NON-DETERMINISTIC BEHAVIOR ON RESTART
IT11824 IN RARE CASES, USING SECURE BACKUP MIGHT LEAD TO UNEXPECTED BEHAVIOR INCLUDING RESTARTS OR HUNG TRANSACTIONS
IT11825 USING SECURE BACKUP MIGHT LEAD TO UNEXPECTED BEHAVIOR INCLUDING HUNG TRANSACTIONS AND APPLIANCE RESTARTS
IT11841 USE OF STANDBY GROUP WITH SELF-BALANCING MIGHT RESULT IN UNEXPECTED BEHAVIOR INCLUDING HUNG TRANSACTIONS AND RESTART
IT11887 OAUTH SESSION MIGHT BE INCORRECTLY REJECTED IF CUSTOM-SCOPE-CHECK IS SET
IT12032 DATAPOWER APPLIANCE MAY UNEXPECTEDLY RESTART IN MQFTE TRANSACTION
IT12036 THE PRE-DEFINED PATTERN WEB APPLICATION WITH FORM-BASED AUTHENTICATION AND LTPA SSO HAS ERRORS DURING DEPLOYMENT
IT12037 MAKE APPLICATION DOMAINS VISIBLE IN FAILSAFE MANAGEMENT MODE

 

 


 

7.2.0.1

 

Release date: 26 October 2015
Last modified: 26 October 2015
Status: Available

In addition to APAR fixes, version 7.2.0.1 includes the following new or changed features.

  • Virtual Edition: Upgraded supported version of IBM License Metric Tool
  • Virtual Edition: Microsoft Azure
  • B2B CPA binding
  • Document cache
  • Load Balancer Group: Enhanced session affinity to select whether to insert the Secure attribute, HttpOnly attribute, or both attributes to the cookie.
  • Security feature: JSON Web Token (JWT) support in AAA
  • Security feature: Social login support (OIDC client)
  • Security feature: OIDC provider support, JWT as client authentication and authorization grant type (RFC 7523)
  • GatewayScript: donot-follow-redirect option for the urlopen.open function.
  • XSLT extension: donot-follow-redirect option for the url-open element.

For more information about these new and changed features, see the Release Notes in IBM Knowledge Center.

APAR
Description
IT09510 ERROR RETURNED WHEN SFTP CLIENT ATTEMPTS TO PERFORM FILE RENAME AGAINST SFTP FSH WITH FTP AND FTPS URL OPENERS
IT09638 WHEN USING SSL OPTIONS TO GENERATE SSL PROXY PROFILE FOR MQ-QM, AN UNEXPECTED DISCONNECT MAY OCCUR
IT09825 MANY CONCURRENT SFTP POLLER CONNECTIONS MIGHT RESULT IN AN UNEXPECTED IMMEDIATE RESTART
IT09869 UPGRADE TO DATAPOWER 7.2.0.0 MAKES WEB-MGMT AND XML-MGMT CONFIGURATION NOT USING CUSTOM SSL PROXY PROFILE DEFINED BEFORE
IT10006 CONTENT-SECURITY-POLICY HEADER DEFAULT-SRC MIGHT NOT RENDER PROPERLY IN CASCADING STYLE SHEETS
IT10055 THE GNU C LIBRARY (GLIBC) HAS VULNERABILITIES AS SPECIFIED IN CVE-2013-7423 AND CVE-2015-1781
IT10061 CVE-2015-4000 DIFFIE-HELLMAN 512-BIT EXPORT-GRADE CIPHER MIGHT BE VULNERABLE TO ATTACKERS
IT10064 CVE-2014-9636, CVE-2014-8139, CVE-2014-8140, CVE-2014-8141 UNZIP UTILITY MIGHT RESULT IN AN UNEXPECTED RESTART
IT10104 CVE-2015-1788, CVE-2015-1789, CVE-2015-1790, CVE-2015-1791, CVE-2015-1792, CVE-2014-8176 OPENSSL PSIRT ISSUES
IT10105 CVE-2015-1788 MALFORMED ECPARAMETERS MIGHT CAUSE INFINITE LOOP
IT10123 MALFORMED ECPARAMETERS CAUSE INFINITE LOOP
IT10279 MISSING SECURE ATTRIBUTE ON SESSION COOKIE
IT10355 UNIQUE CACHE KEY IS USED FOR FIXED DOCUMENT CACHE POLICY TYPES BUT NOT PROTOCOL BASED CACHE POLICY TYPES
IT10378 SOME NFS MOUNT AND UNMOUNT SCENARIOS MIGHT RESULT IN AN UNEXPECTED RESTART
IT10501 DOCUMENT CACHE MIGHT STOP CACHING UNDER SOME CIRCUMSTANCES
IT10644 DATAPOWER WEBGUI WARNING MESSAGE MAY SHOW WRONG DEVICE TYPE ON DOWNGRADE
IT10663 CALLING TRANSFORM.XSLT() IN A GATEWAYSCRIPT PROGRAM MIGHT RESULT IN AN UNEXPECTED RESTART
IT10668 RUNNING AN ACTION FROM A CONTEXT LEADS TO EXCESSIVE STYLESHEET CACHE ENTRIES ADDING, CACHE FLUSHING, AND RE-COMPILATION
IT10681 FALSE POSITIVE VERIFYING SIGNED DOC WITH MULTIPLE SIGNATURES
IT10699 REQUESTS THAT ARE ACCEPTING STALE RESPONSES ARE BLOCKED WHEN THE REQUESTED RESOURCE IS IN PENDING STATE
IT10700 A PERFORMANCE IMPACT MIGHT OCCUR ON SOME LIMITED SET OF XQUERY AFTER UPGRADING FROM 7.1.0.5 OR LATER FP TO 7.2.0.0
IT10701 JWE DECRYPT ACTION AND GATEWAYSCRIPT CRYPTO AND JOSE MODULES MIGHT BE VULNERABLE TO THE PADDING ORACLE ATTACK
IT10731 JWS SIGN, JWS VERIFY, JWE ENCRYPT AND JWE DECRYPT ACTIONS RETURN ERROR INFORMATION IN SOAP FAULT
IT10924 ON DOMAIN DELETE WITH AN NFS STATIC MOUNT, A RELOAD MAY OCCUR
IT11144 DATAPOWER 8436 LOGGING IN ERROR REPORT: IPMI GET SENSOR READING RESPONSE BAD COMPLETION CODE 0XFF FOR SENSOR 42 PU_12V-CUR0

 

 


 

7.2.0.0

 

Release date: 19 June 2015
Last modified: 5 November 2015
Status: Available

The 7.2.0.0 release includes all APARs in the 7.1.0.4 fix packs. There is no fix pack available on the Fix Central website for this fix pack.

APAR
Description
IT02094 THE APPLICATION SESSION TOKEN DOES NOT HAVE THE HTTPONLY ATTRIBUTE SET WHEN IT IS CREATED
IT04368 FIRMWARE CAN SHOW 100% RESTORE WHEN ALL LIBRARIES THAT WERE PREVIOUSLY ACTIVATED ARE NOT COMPLETELY ACTIVATED
IT07459 NOT ABLE TO ROUTE A MULTI-CELL (STAR) TOPOLOGY VIA DATAPOWER/ODRLIB
IT07542 ADD SUPPORT FOR HTTP OPTIONS AND TRACE METHODS IN PROCESSING POLICY
IT00769 EXPIRED LTPA TOKENS MAY BE ALLOWED THROUGH DATAPOWER WHEN AUTHENTICATION CACHE IS ENABLED
IT08503 THE OBJECT SECTION OF THE WEBGUI DOES NOT EXPAND IN MICROSOFT INTERNET EXPLORER AFTER AN UPGRADE TO 7.1.0.X
IT09265 WHEN ATTEMPTING TO OPEN LARGE FILES IN THE FILE MANAGEMENT PANEL, AN "ERROR" IS DISPLAYED IN THE BROWSER.
IT09309 DATAPOWER APPLIANCE SHOWS HIGH LATENCY
IT09324 SECURITY IMPROVEMENTS FOR WEBGUI FORMS
IT09320 WEBGUI ERROR "AJAX IS NOT SUPPORTED" OCCURS AFTER TIMEOUT
IT15264 CUSTOM OAUTH PROCESS DOES NOT RETURN STATE PARAMETER IN ERROR RESPONSE

 

 


 

Change history
Last modified: 7 September 2018

 

  • 7 September 2018: Created fix list for 7.2.0.22
  • 14 August 2018: Created fix list for 7.2.0.21
  • 25 May 2018: Created fix list for 7.2.0.20
  • 23 March 2018: Created fix list for 7.2.0.19
  • 15 December 2017: Created fix list for 7.2.0.18
  • 13 October 2017: Created fix list for 7.2.0.17
  • 25 September 2017: Created fix list for 7.2.0.16
  • 4 August 2017: Created fix list for 7.2.0.15
  • 1 June 2017: Created fix list for 7.2.0.14
  • 17 April 2017: Created fix list for 7.2.0.13
  • 23 March 2017: Created fix list for 7.2.0.12
  • 20 January 2017: Created fix list for 7.2.0.11
  • 21 November 2016: Created fix list for 7.2.0.10
  • 16 September 2016: Created fix list for 7.2.0.9
  • 25 July 2016: Edited fix list for 7.2.0.8
  • 20 July 2016: Created fix list for 7.2.0.8
  • 6 July 2016: Created fix list for 7.2.0.7
  • 20 May 2016: Created fix list for 7.2.0.6
  • 22 March 2016: Created fix list for 7.2.0.5
  • 8 March 2016: Created fix list for 7.2.0.4
  • 4 February 2016: Created fix list for 7.2.0.3
  • 8 December 2015: Edited fix list for 7.2.0.2
  • 2 December 2015: Created fix list for 7.2.0.2
  • 5 November 2015: Updated fix lists for 7.2.0.0
  • 26 October 2015: Created fix list for 7.2.0.1
  • 19 June 2015: Created fix lists for 7.2.0.0

 

Problems (APARS) fixed
IT02094, IT04368, IT07459, IT07542, IT00769, IT08503, IT09265, IT09309, IT09324, IT09320, IT09510, IT09638, IT09825, IT09869, IT10006, IT10055, IT10061, IT10064, IT10104, IT10105, IT10123, IT10279, IT10355, IT10378, IT10501, IT10644, IT10663, IT10668, IT10681, IT10699, IT10700, IT10701, IT10731, IT10924, IT11144, IT08399, IT08971, IT09081, IT09132, IT09195, IT09269, IT09304, IT09358, IT09552, IT09575, IT09741, IT09792, IT09820, IT09865, IT09987, IT10115, IT10165, IT10219, IT10258, IT10287, IT10321, IT10426, IT10444, IT10478, IT10508, IT10531, IT10598, IT10637, IT10660, IT10667, IT10718, IT10798, IT10890, IT10964, IT10977, IT10978, IT11010, IT11147, IT11169, IT11190, IT11191, IT11312, IT11326, IT11552, IT11639, IT11678, IT11817, IT11824, IT11825, IT11841, IT11887, IT12032, IT12036, IT12037, IT10034, IT10594, IT11174, IT11215, IT11551, IT11642, IT11697, IT11733, IT11760, IT11926, IT11997, IT12035, IT12040, IT12043, IT12061, IT12100, IT12258, IT12347, IT12548, IT12556, IT12605, IT12611, IT12635, IT12655, IT12696, IT12722, IT13137, IT13826, IT13989, IT14108, IT14164, IT14295, IT14301, IT14302, IT14303, IT14304, IT15264, IT11118, IT12165, IT12248, IT12405, IT12502, IT12515, IT12822, IT12929, IT12946, IT13148, IT13158, IT13407, IT13408, IT13573, IT13642, IT13795, IT13844, IT13885, IT13913, IT14004, IT14028, IT14060, IT14068, IT14069, IT14077, IT14089, IT14128, IT14136, IT14139, IT14147, IT14185, IT14190, IT14297, IT14321, IT14350, IT14472, IT15089, IT14230, IT15454, IT15458, IT10657, IT12955, IT13810, IT14033, IT14084, IT14135, IT14267, IT14278, IT14318, IT14323, IT14325, IT14352, IT14386, IT14387, IT14456, IT14466, IT14470, IT14484, IT14541, IT14650, IT14708, IT14743, IT14807, IT14875, IT14892, IT14914, IT14936, IT14952, IT14996, IT15006, IT15099, IT15108, IT15160, IT15218, IT15231, IT15234, IT15295, IT15298, IT15324, IT15367, IT15377, IT15420, IT15441, IT15442, IT15473, IT15508, IT15555, IT15629, IT15693, IT15708, IT15774, IT14088, IT15007, IT15140, IT15437, IT15445, IT15457, IT15609, IT15649, IT15660, IT15721, IT15751, IT15764, IT15844, IT15848, IT15928, IT15961, IT15996, IT15997, IT16042, IT16119, IT16152, IT16185, IT16190, IT16229, IT16241, IT16279, IT16307, IT16715, IT16865, IT14083, IT14560, IT15078, IT15287, IT15293, IT15448, IT16036, IT16194, IT16244, IT16320, IT16351, IT16398, IT16437, IT16449, IT16474, IT16647, IT16673, IT16765, IT16786, IT16813, IT16814, IT16833, IT16871, IT16873, IT16908, IT16932, IT16950, IT16988, IT17001, IT17003, IT17056, IT17082, IT17122, IT17125, IT17134, IT17138, IT17146, IT17153, IT17155, IT17165, IT17172, IT17182, IT17195, IT17221, IT17222, IT17261, IT17280, IT17323, IT17325, IT17418, IT17441, IT17895, IT17896, IT15738, IT16154, IT16790, IT16895, IT17171, IT17202, IT17371, IT17412, IT17443, IT17476, IT17486, IT17565, IT17603, IT17816, IT17833, IT17838, IT17898, IT17907, IT17917, IT17927, IT17930, IT18085, IT18099, IT18116, IT18151, IT18153, IT18157, IT18195, IT18242, IT18259, IT18793, IT16948, IT17926, IT17957, IT17976, IT18028, IT18091, IT18379, IT18516, IT18568, IT18617, IT18757, IT18825, IT18826, IT18842, IT18897, IT18911, IT18948, IT18973, IT19012, IT19049, IT19063, IT19703, IT20143, IT20625, IT17002, IT17888, IT18156, IT18627, IT19009, IT19120, IT19215, IT19265, IT19283, IT19331, IT19473, IT19584, IT19589, IT19621, IT19717, IT19747, IT19777, IT19809, IT19874, IT19912, IT19943, IT20013, IT20041, IT20690, IT19052, IT19174, IT19745, IT19776, IT20219, IT20310, IT20354, IT20405, IT20445, IT20448, IT20458, IT20507, IT20608, IT20628, IT20734, IT20775, IT20979, IT20994, IT20998, IT21003, IT21006, IT21013, IT21067, IT21078, IT21145, IT21215, IT21474, IT22119, IT22120, IT22121, IT18267, IT18570, IT18890, IT19580, IT20056, IT21040, IT21118, IT21162, IT21205, IT21307, IT21350, IT21411, IT21445, IT21470, IT21495, IT21519, IT21532, IT21577, IT21626, IT21634, IT21648, IT21703, IT21887, IT22000, IT22042, IT22082, IT22115, IT22317, IT20388, IT21762, IT22213, IT22268, IT22300, IT22421, IT22481, IT22676, IT22693, IT22785, IT22841, IT22852, IT22924, IT22940, IT22961, IT23031, IT23085, IT23126, IT23187, IT23193, IT23417, IT22408, IT22661, IT22932, IT22997, IT23118, IT23162, IT23280, IT23374, IT23444, IT23456, IT23480, IT23509, IT23559, IT23564, IT23599, IT23602, IT23607, IT23611, IT23639, IT23656, IT23659, IT23788, IT23854, IT23881, IT23910, IT23985, IT24398, IT24881, IT24077, IT25469, IT25958, IT25911, IT25957, IT25959, IT25961, IT25962, IT25964, IT26030, IT26084,

Document information

More support for: IBM DataPower Gateways

Component: General

Software version: 7.2

Operating system(s): Firmware

Software edition: Edition Independent

Reference #: 4039783

Modified date: 20 November 2018