CVE-2016-8743 for IBM HTTP Server
Note: The interim fix for this APAR has been superseded by the PI82481 interim fix. It is recommended you use that one instead of the interim fix files indicated by this document for the versions for which it is available.
PI73984 resolves the following problem:
ERROR DESCRIPTION:
CVE-2016-8743 for IBM HTTP Server
PROBLEM SUMMARY:
Potential vulnerability in IBM HTTP Server.
PROBLEM CONCLUSION:
IBM HTTP Server was updated to remove the potential vulnerability.
This fix is targeted for IBM HTTP Server fix packs:
- 7.0.0.43
- 8.0.0.14
- 8.5.5.12
- 9.0.0.3
Please download the UpdateInstaller below to install this fix.
[{"PRLabel":"UpdateInstaller","PRLang":"US English","PRSize":"7250000","PRPlat":{"label":"AIX","code":"PF002"},"PRURL":"http://www.ibm.com/support/docview.wss?rs=180&uid=swg21205991"}]
Please review the readme.txt for detailed installation instructions.
[{"INLabel":"V70 Readme","INLang":"US English","INSize":"4865","INURL":"ftp://public.dhe.ibm.com/software/websphere/appserv/support/fixes/PI73984/7.0.0.41/readme.txt"},{"INLabel":"V80 Readme","INLang":"US English","INSize":"1860","INURL":"ftp://public.dhe.ibm.com/software/websphere/appserv/support/fixes/PI73984/8.0.0.12/readme.txt"},{"INLabel":"V85 Readme","INLang":"US English","INSize":"1860","INURL":"ftp://public.dhe.ibm.com/software/websphere/appserv/support/fixes/PI73984/8.5.5.11/readme.txt"},{"INLabel":"V90 Readme","INLang":"US English","INSize":"1936","INURL":"ftp://public.dhe.ibm.com/software/websphere/appserv/support/fixes/PI73984/9.0.0.2/readme.txt"},{"INLabel":"8.0.0.13 Readme","INLang":"US English","INSize":"1954","INURL":"ftp://public.dhe.ibm.com/software/websphere/appserv/support/fixes/PI73984/8.0.0.13/readme.txt"}]
Note: This interim fix includes fixes for PI68803 and PI66849, and supersedes both of those interim fixes.
For 8.0 and newer versions, the fix file is common between the distributed platforms and z/OS.
On
[{"DNLabel":"7.0.0.41-WS-WASIHS-HpuxIA64-IFPI73984","DNDate":"30 Jan 2017","DNLang":"US English","DNSize":"3992205","DNPlat":{"label":"AIX","code":"PF002"},"DNURL":"http://www-933.ibm.com/eserver/support/fixes/fixcentral/swgquickorder?fixes=7.0.0.41-WS-WASIHS-HpuxIA64-IFPI73984&productid=WebSphere Application Server&brandid=5","DNURL_FTP":" ","DDURL":null},{"DNLabel":"7.0.0.41-WS-WASIHS-HpuxPaRISC-IFPI73984","DNDate":"01-30-2017","DNLang":"US English","DNSize":"1311354","DNPlat":{"label":"AIX","code":"PF002"},"DNURL":"http://www-933.ibm.com/eserver/support/fixes/fixcentral/swgquickorder?fixes=7.0.0.41-WS-WASIHS-HpuxPaRISC-IFPI73984&productid=WebSphere Application Server&brandid=5","DNURL_FTP":" ","DDURL":null},{"DNLabel":"7.0.0.41-WS-WASIHS-LinuxPPC32-IFPI73984","DNDate":"01-30-2017","DNLang":"US English","DNSize":"983617","DNPlat":{"label":"AIX","code":"PF002"},"DNURL":"http://www-933.ibm.com/eserver/support/fixes/fixcentral/swgquickorder?fixes=7.0.0.41-WS-WASIHS-LinuxPPC32-IFPI73984&productid=WebSphere Application Server&brandid=5","DNURL_FTP":" ","DDURL":null},{"DNLabel":"7.0.0.41-WS-WASIHS-SolarisX64-IFPI73984","DNDate":"01-30-2017","DNLang":"US English","DNSize":"961804","DNPlat":{"label":"AIX","code":"PF002"},"DNURL":"http://www-933.ibm.com/eserver/support/fixes/fixcentral/swgquickorder?fixes=7.0.0.41-WS-WASIHS-SolarisX64-IFPI73984&productid=WebSphere Application Server&brandid=5","DNURL_FTP":" ","DDURL":null},{"DNLabel":"7.0.0.41-WS-WASIHS-WinX32-IFPI73984","DNDate":"01-30-2017","DNLang":"US English","DNSize":"1512651","DNPlat":{"label":"AIX","code":"PF002"},"DNURL":"http://www-933.ibm.com/eserver/support/fixes/fixcentral/swgquickorder?fixes=7.0.0.41-WS-WASIHS-WinX32-IFPI73984&productid=WebSphere Application Server&brandid=5","DNURL_FTP":" ","DDURL":null},{"DNLabel":"8.0.0.11-WS-WASIHS-IFPI73984","DNDate":"01-30-2017","DNLang":"US English","DNSize":"19597718","DNPlat":{"label":"AIX","code":"PF002"},"DNURL":"http://www-933.ibm.com/eserver/support/fixes/fixcentral/swgquickorder?fixes=8.0.0.11-WS-WASIHS-IFPI73984&productid=WebSphere Application Server&brandid=5","DNURL_FTP":" ","DDURL":null},{"DNLabel":"8.0.0.12-WS-WASIHS-IFPI73984","DNDate":"01-30-2017","DNLang":"US English","DNSize":"19597749","DNPlat":{"label":"AIX","code":"PF002"},"DNURL":"http://www-933.ibm.com/eserver/support/fixes/fixcentral/swgquickorder?fixes=8.0.0.12-WS-WASIHS-IFPI73984&productid=WebSphere Application Server&brandid=5","DNURL_FTP":" ","DDURL":null},{"DNLabel":"7.0.0.41-WS-WASIHS-AixPPC32-IFPI73984","DNDate":"01-30-2017","DNLang":"US English","DNSize":"1313195","DNPlat":{"label":"AIX","code":"PF002"},"DNURL":"http://www-933.ibm.com/eserver/support/fixes/fixcentral/swgquickorder?fixes=7.0.0.41-WS-WASIHS-AixPPC32-IFPI73984&productid=WebSphere Application Server&brandid=5","DNURL_FTP":" ","DDURL":null},{"DNLabel":"7.0.0.41-WS-WASIHS-LinuxS390-IFPI73984","DNDate":"01-30-2017","DNLang":"US English","DNSize":"1024605","DNPlat":{"label":"AIX","code":"PF002"},"DNURL":"http://www-933.ibm.com/eserver/support/fixes/fixcentral/swgquickorder?fixes=7.0.0.41-WS-WASIHS-LinuxS390-IFPI73984&productid=WebSphere Application Server&brandid=5","DNURL_FTP":" ","DDURL":null},{"DNLabel":"7.0.0.41-WS-WASIHS-LinuxX32-IFPI73984","DNDate":"01-30-2017","DNLang":"US English","DNSize":"918912","DNPlat":{"label":"AIX","code":"PF002"},"DNURL":"http://www-933.ibm.com/eserver/support/fixes/fixcentral/swgquickorder?fixes=7.0.0.41-WS-WASIHS-LinuxX32-IFPI73984&productid=WebSphere Application Server&brandid=5","DNURL_FTP":" ","DDURL":null},{"DNLabel":"7.0.0.41-WS-WASIHS-SolarisSparc-IFPI73984","DNDate":"01-30-2017","DNLang":"US English","DNSize":"1560911","DNPlat":{"label":"AIX","code":"PF002"},"DNURL":"http://www-933.ibm.com/eserver/support/fixes/fixcentral/swgquickorder?fixes=7.0.0.41-WS-WASIHS-SolarisSparc-IFPI73984&productid=WebSphere Application Server&brandid=5","DNURL_FTP":" ","DDURL":null},{"DNLabel":"7.0.0.39-WS-WASIHS-AixPPC32-IFPI73984","DNDate":"01-30-2017","DNLang":"US English","DNSize":"1313196","DNPlat":{"label":"AIX","code":"PF002"},"DNURL":"http://www-933.ibm.com/eserver/support/fixes/fixcentral/swgquickorder?fixes=7.0.0.39-WS-WASIHS-AixPPC32-IFPI73984&productid=WebSphere Application Server&brandid=5","DNURL_FTP":" ","DDURL":null},{"DNLabel":"7.0.0.39-WS-WASIHS-HpuxIA64-IFPI73984","DNDate":"01-30-2017","DNLang":"US English","DNSize":"3992205","DNPlat":{"label":"AIX","code":"PF002"},"DNURL":"http://www-933.ibm.com/eserver/support/fixes/fixcentral/swgquickorder?fixes=7.0.0.39-WS-WASIHS-HpuxIA64-IFPI73984&productid=WebSphere Application Server&brandid=5","DNURL_FTP":" ","DDURL":null},{"DNLabel":"7.0.0.39-WS-WASIHS-HpuxPaRISC-IFPI73984","DNDate":"01-30-2017","DNLang":"US English","DNSize":"1311351","DNPlat":{"label":"AIX","code":"PF002"},"DNURL":"http://www-933.ibm.com/eserver/support/fixes/fixcentral/swgquickorder?fixes=7.0.0.39-WS-WASIHS-HpuxPaRISC-IFPI73984&productid=WebSphere Application Server&brandid=5","DNURL_FTP":" ","DDURL":null},{"DNLabel":"7.0.0.39-WS-WASIHS-LinuxPPC32-IFPI73984","DNDate":"01-30-2017","DNLang":"US English","DNSize":"983617","DNPlat":{"label":"AIX","code":"PF002"},"DNURL":"http://www-933.ibm.com/eserver/support/fixes/fixcentral/swgquickorder?fixes=7.0.0.39-WS-WASIHS-LinuxPPC32-IFPI73984&productid=WebSphere Application Server&brandid=5","DNURL_FTP":" ","DDURL":null},{"DNLabel":"7.0.0.39-WS-WASIHS-LinuxS390-IFPI73984","DNDate":"01-30-2017","DNLang":"US English","DNSize":"1024606","DNPlat":{"label":"AIX","code":"PF002"},"DNURL":"http://www-933.ibm.com/eserver/support/fixes/fixcentral/swgquickorder?fixes=7.0.0.39-WS-WASIHS-LinuxS390-IFPI73984&productid=WebSphere Application Server&brandid=5","DNURL_FTP":" ","DDURL":null},{"DNLabel":"7.0.0.39-WS-WASIHS-LinuxX32-IFPI73984","DNDate":"01-30-2017","DNLang":"US English","DNSize":"918912","DNPlat":{"label":"AIX","code":"PF002"},"DNURL":"http://www-933.ibm.com/eserver/support/fixes/fixcentral/swgquickorder?fixes=7.0.0.39-WS-WASIHS-LinuxX32-IFPI73984&productid=WebSphere Application Server&brandid=5","DNURL_FTP":" ","DDURL":null},{"DNLabel":"7.0.0.39-WS-WASIHS-SolarisSparc-IFPI73984","DNDate":"01-30-2017","DNLang":"US English","DNSize":"1560912","DNPlat":{"label":"AIX","code":"PF002"},"DNURL":"http://www-933.ibm.com/eserver/support/fixes/fixcentral/swgquickorder?fixes=7.0.0.39-WS-WASIHS-SolarisSparc-IFPI73984&productid=WebSphere Application Server&brandid=5","DNURL_FTP":" ","DDURL":null},{"DNLabel":"7.0.0.39-WS-WASIHS-SolarisX64-IFPI73984","DNDate":"01-30-2017","DNLang":"US English","DNSize":"961809","DNPlat":{"label":"AIX","code":"PF002"},"DNURL":"http://www-933.ibm.com/eserver/support/fixes/fixcentral/swgquickorder?fixes=7.0.0.39-WS-WASIHS-SolarisX64-IFPI73984&productid=WebSphere Application Server&brandid=5","DNURL_FTP":" ","DDURL":null},{"DNLabel":"7.0.0.39-WS-WASIHS-WinX32-IFPI73984","DNDate":"01-30-2017","DNLang":"US English","DNSize":"1512648","DNPlat":{"label":"AIX","code":"PF002"},"DNURL":"http://www-933.ibm.com/eserver/support/fixes/fixcentral/swgquickorder?fixes=7.0.0.39-WS-WASIHS-WinX32-IFPI73984&productid=WebSphere Application Server&brandid=5","DNURL_FTP":" ","DDURL":null},{"DNLabel":"8.5.5.10-WS-WASIHS-IFPI73984","DNDate":"01-30-2017","DNLang":"US English","DNSize":"16311704","DNPlat":{"label":"AIX","code":"PF002"},"DNURL":"http://www-933.ibm.com/eserver/support/fixes/fixcentral/swgquickorder?fixes=8.5.5.10-WS-WASIHS-IFPI73984&productid=WebSphere Application Server&brandid=5","DNURL_FTP":" ","DDURL":null},{"DNLabel":"8.5.5.11-WS-WASIHS-IFPI73984","DNDate":"01-30-2017","DNLang":"US English","DNSize":"16311707","DNPlat":{"label":"AIX","code":"PF002"},"DNURL":"http://www-933.ibm.com/eserver/support/fixes/fixcentral/swgquickorder?fixes=8.5.5.11-WS-WASIHS-IFPI73984&productid=WebSphere Application Server&brandid=5","DNURL_FTP":" ","DDURL":null},{"DNLabel":"9.0.0.1-WS-WASIHS-IFPI73984","DNDate":"01-30-2017","DNLang":"US English","DNSize":"13903641","DNPlat":{"label":"AIX","code":"PF002"},"DNURL":"http://www-933.ibm.com/eserver/support/fixes/fixcentral/swgquickorder?fixes=9.0.0.1-WS-WASIHS-IFPI73984&productid=WebSphere Application Server&brandid=5","DNURL_FTP":" ","DDURL":null},{"DNLabel":"9.0.0.2-WS-WASIHS-IFPI73984","DNDate":"01-30-2017","DNLang":"US English","DNSize":"13903657","DNPlat":{"label":"AIX","code":"PF002"},"DNURL":"http://www-933.ibm.com/eserver/support/fixes/fixcentral/swgquickorder?fixes=9.0.0.2-WS-WASIHS-IFPI73984&productid=WebSphere Application Server&brandid=5","DNURL_FTP":" ","DDURL":null},{"DNLabel":"8.0.0.13-WS-WASIHS-IFPI73984","DNDate":"23 Feb 2017","DNLang":"US English","DNSize":"19604590","DNPlat":{"label":"AIX","code":"PF002"},"DNURL":"http://www-933.ibm.com/eserver/support/fixes/fixcentral/swgquickorder?fixes=8.0.0.13-WS-WASIHS-IFPI73984&productid=WebSphere Application Server&brandid=5","DNURL_FTP":" ","DDURL":null}]
[{"Product":{"code":"SSEQTP","label":"WebSphere Application Server"},"Business Unit":{"code":"BU053","label":"Cloud & Data Platform"},"Component":"IBM HTTP Server","Platform":[{"code":"PF002","label":"AIX"},{"code":"PF010","label":"HP-UX"},{"code":"PF016","label":"Linux"},{"code":"PF027","label":"Solaris"},{"code":"PF033","label":"Windows"},{"code":"PF035","label":"z\/OS"}],"Version":"9.0.0.1;8.5.5.10;8.0.0.12;8.0.0.11;7.0.0.41;7.0.0.39;9.0.0.2;8.5.5.11;8.0.0.13","Edition":"Advanced;Base;Enterprise;Network Deployment;Single Server","Line of Business":{"code":"LOB45","label":"Automation"}}]