IBM Support

PI61548: CVE-2016-2960 for WebSphere Application Server

Download


Abstract

Potential Denial of Service in WebSphere Application Server if using SIP services.

Download Description

PI61548 resolves the following problem:

ERROR DESCRIPTION:
CVE-2016-2960 : Potential Denial of Service in WebSphere Application Server if using SIP (Session Initiation Protocol) services.

LOCAL FIX:
NONE

PROBLEM CONCLUSION:
The fix for this APAR is currently targeted for inclusion in fix packs:
7.0.0.43, 8.0.0.13, 8.5.5.10, and 9.0.0.1.
Please refer to the Recommended Updates page for delivery information:
http://www.ibm.com/support/docview.wss?rs=180&uid=swg27004980

Prerequisites

None

Installation Instructions

Please review the readme.txt included with each interim fix for detailed installation instructions.

On
[{"DNLabel":"8.5.5.8-WS-WASProd-IFPI61548","DNDate":"06-28-2016","DNLang":"US English","DNSize":"265297","DNPlat":{"label":"AIX","code":"PF002"},"DNURL":"http://www-933.ibm.com/eserver/support/fixes/fixcentral/swgquickorder?fixes=8.5.5.8-WS-WASProd-IFPI61548&productid=WebSphere Application Server&brandid=5","DNURL_FTP":" ","DDURL":null},{"DNLabel":"8.5.5.8-WS-WLPWithExtensions-IFPI61548","DNDate":"06-28-2016","DNLang":"US English","DNSize":"1984719","DNPlat":{"label":"AIX","code":"PF002"},"DNURL":"http://www-933.ibm.com/eserver/support/fixes/fixcentral/swgquickorder?fixes=8.5.5.8-WS-WLPWithExtensions-IFPI61548&productid=WebSphere Application Server&brandid=5","DNURL_FTP":" ","DDURL":null},{"DNLabel":"8.5.5.9-WS-WASProd-IFPI61548","DNDate":"06-28-2016","DNLang":"US English","DNSize":"265584","DNPlat":{"label":"AIX","code":"PF002"},"DNURL":"http://www-933.ibm.com/eserver/support/fixes/fixcentral/swgquickorder?fixes=8.5.5.9-WS-WASProd-IFPI61548&productid=WebSphere Application Server&brandid=5","DNURL_FTP":" ","DDURL":null},{"DNLabel":"8.5.5.9-WS-WLPWithExtensions-IFPI61548","DNDate":"06-28-2016","DNLang":"US English","DNSize":"1999195","DNPlat":{"label":"AIX","code":"PF002"},"DNURL":"http://www-933.ibm.com/eserver/support/fixes/fixcentral/swgquickorder?fixes=8.5.5.9-WS-WLPWithExtensions-IFPI61548&productid=WebSphere Application Server&brandid=5","DNURL_FTP":" ","DDURL":null},{"DNLabel":"8558-extended-archive-IFPI61548","DNDate":"29 Jun 2016","DNLang":"US English","DNSize":"4595981","DNPlat":{"label":"AIX","code":"PF002"},"DNURL":"http://www-933.ibm.com/eserver/support/fixes/fixcentral/swgquickorder?fixes=8558-extended-archive-IFPI61548&productid=WebSphere%20Application%20Server&brandid=5","DNURL_FTP":" ","DDURL":null},{"DNLabel":"8559-extended-archive-IFPI61548","DNDate":"29 Jun 2016","DNLang":"US English","DNSize":"4683952","DNPlat":{"label":"AIX","code":"PF002"},"DNURL":"http://www-933.ibm.com/eserver/support/fixes/fixcentral/swgquickorder?fixes=8559-extended-archive-IFPI61548&productid=WebSphere%20Application%20Server&brandid=5","DNURL_FTP":" ","DDURL":null},{"DNLabel":"8.0.0.11-WS-WASProd-IFPI61548","DNDate":"29 Jun 2016","DNLang":"US English","DNSize":"264683","DNPlat":{"label":"AIX","code":"PF002"},"DNURL":"http://www-933.ibm.com/eserver/support/fixes/fixcentral/swgquickorder?fixes=8.0.0.11-WS-WASProd-IFPI61548&productid=WebSphere%20Application%20Server&brandid=5","DNURL_FTP":" ","DDURL":null},{"DNLabel":"8.0.0.12-WS-WASProd-IFPI61548","DNDate":"29 Jun 2016","DNLang":"US English","DNSize":"264677","DNPlat":{"label":"AIX","code":"PF002"},"DNURL":"http://www-933.ibm.com/eserver/support/fixes/fixcentral/swgquickorder?fixes=8.0.0.12-WS-WASProd-IFPI61548&productid=WebSphere%20Application%20Server&brandid=5","DNURL_FTP":" ","DDURL":null},{"DNLabel":"7.0.0.39-WS-WAS-IFPI61548","DNDate":"29 Jun 2016","DNLang":"US English","DNSize":"20761","DNPlat":{"label":"AIX","code":"PF002"},"DNURL":"http://www-933.ibm.com/eserver/support/fixes/fixcentral/swgquickorder?fixes=7.0.0.39-WS-WAS-IFPI61548&productid=WebSphere%20Application%20Server&brandid=5","DNURL_FTP":" ","DDURL":null},{"DNLabel":"7.0.0.41-WS-WAS-IFPI61548","DNDate":"29 Jun 2016","DNLang":"US English","DNSize":"20762","DNPlat":{"label":"AIX","code":"PF002"},"DNURL":"http://www-933.ibm.com/eserver/support/fixes/fixcentral/swgquickorder?fixes=7.0.0.41-WS-WAS-IFPI61548&productid=WebSphere%20Application%20Server&brandid=5","DNURL_FTP":" ","DDURL":null},{"DNLabel":"9.0.0.0-WS-WASProd-IFPI61548","DNDate":"4 Aug 2016","DNLang":"US English","DNSize":"265264","DNPlat":{"label":"AIX","code":"PF002"},"DNURL":"http://www-933.ibm.com/eserver/support/fixes/fixcentral/swgquickorder?fixes=9.0.0.0-WS-WASProd-IFPI61548&productid=WebSphere Application Server&brandid=5","DNURL_FTP":" ","DDURL":null}]

Technical Support

Contact IBM Support using SR (http://www.ibm.com/software/support/probsub.html), visit the WebSphere Application Server support web site (http://www.ibm.com/software/webservers/appserv/was/support/), or contact 1-800-IBM-SERV (U.S. only).

[{"Product":{"code":"SSEQTP","label":"WebSphere Application Server"},"Business Unit":{"code":"BU053","label":"Cloud & Data Platform"},"Component":"General","Platform":[{"code":"PF002","label":"AIX"},{"code":"PF010","label":"HP-UX"},{"code":"PF012","label":"IBM i"},{"code":"PF013","label":"Inspur K-UX"},{"code":"PF016","label":"Linux"},{"code":"PF027","label":"Solaris"},{"code":"PF033","label":"Windows"},{"code":"PF035","label":"z\/OS"}],"Version":"9.0.0.0;8.5.5.9;8.5.5.8;8.0.0.12;8.0.0.11;7.0.0.41;7.0.0.39","Edition":"Base;Liberty;Network Deployment","Line of Business":{"code":"LOB45","label":"Automation"}}]

Document Information

Modified date:
15 June 2018

UID

swg24042513