IBM Support

PI82630:Information disclosure in WebSphere Application Server (CVE-2017-1381).

Downloadable files


Abstract

Information disclosure in WebSphere Application Server (CVE-2017-1381).

Download Description

PI82630 resolves the following problem:

ERROR DESCRIPTION:
Information disclosure in WebSphere Application Server (CVE-2017-1381).


LOCAL FIX:
Restart of the ODR/WAS proxy server clears the stale cache

PROBLEM SUMMARY:
Information disclosure in WebSphere Application Server (CVE-2017-1381).

PROBLEM CONCLUSION:
Information disclosure in WebSphere Application Server (CVE-2017-1381).

The fix for this APAR is currently targeted for inclusion in
fix pack 7.0.0.45, 8.0.0.14, 8.5.5.13, and 9.0.0.5. Please
refer to the Recommended Updates page for delivery information:
http://www.ibm.com/support/docview.wss?rs=180&uid=swg27004980

Prerequisites

None

Installation Instructions

Please review the readme.txt for detailed installation instructions.

URL LANGUAGE SIZE(Bytes)
V85 Readme US English 2684
V80 Readme US English 2675
V70 Readme US English 5314
V90 Readme US English 2543

Download package

Download RELEASE DATE LANGUAGE SIZE(Bytes) Download Options
What is Fix Central(FC)?
7.0.0.33-WS-WASND-IFPI82630 07-11-2017 US English 11226 FC
8.0.0.2-WS-WASND-IFPI82630 07-11-2017 US English 268431 FC
8.5.5.1-WS-WASND-IFPI82630 07-11-2017 US English 269945 FC
8.5.5.12-WS-WASND-IFPI82630 21 Jul 2017 US English 256747 FC
9.0.0.1-WS-WASND-IFPI82630 07-11-2017 US English 260455 FC

Technical support

Contact IBM Support using SR (http://www.ibm.com/software/support/probsub.html), visit the WebSphere Application Server support web site (http://www.ibm.com/software/webservers/appserv/was/support/), or contact 1-800-IBM-SERV (U.S. only).

Problems (APARS) fixed
PI82630

Document information

More support for: WebSphere Application Server
General

Software version: 7.0.0.33, 7.0.0.35, 7.0.0.37, 7.0.0.39, 7.0.0.41, 7.0.0.43, 8.0.0.2, 8.0.0.3, 8.0.0.4, 8.0.0.5, 8.0.0.6, 8.0.0.7, 8.0.0.8, 8.0.0.9, 8.0.0.10, 8.0.0.11, 8.0.0.12, 8.0.0.13, 8.5.5.1, 8.5.5.2, 8.5.5.3, 8.5.5.4, 8.5.5.5, 8.5.5.6, 8.5.5.7, 8.5.5.8, 8.5.5.9, 8.5.5.10, 8.5.5.11, 8.5.5.12, 9.0.0.1, 9.0.0.2, 9.0.0.3, 9.0.0.4

Operating system(s): AIX, HP-UX, IBM i, Linux, Solaris, Windows

Software edition: Network Deployment

Reference #: 4043870

Modified date: 24 August 2017