Download
Abstract
Lists of fixes in fix packs for IBM DataPower Gateway version 2018.4.1.
Download Description
For integration with API Connect 2018.4.1.x, DataPower Gateway and API Connect releases must be on the same fix pack release except during the upgrade process.
Fix packs and firmware images are located in Fix Central.
- In IBM Knowledge Center you can find information about new and changed features, limitations, and restrictions.
- For new features, see What's new.
- For changes, see What's changed.
- For limitations and restrictions, see the Release notes.
- To download fix packs, go to the Fix Central website.
Important:
- Before you install any fix pack or firmware image, review the DataPower Knowledge Collection on firmware updates.
- For information about how to download DataPower fix packs from Fix Central, see the Fix download method article.
- 2018.4.1.26
- 2018.4.1.25
- 2018.4.1.24
- 2018.4.1.23 Includes new features.
- 2018.4.1.22
- 2018.4.1.21
- 2018.4.1.20
- 2018.4.1.19 Includes new features.
- 2018.4.1.18 Includes new features.
- 2018.4.1.17 Includes new features.
- 2018.4.1.16 Includes new features.
- 2018.4.1.15 Includes new features.
- 2018.4.1.14 Includes new features.
- 2018.4.1.13
- 2018.4.1.12 Includes new features.
- 2018.4.1.11
- 2018.4.1.10 Includes new features.
- 2018.4.1.9 Includes new features.
- 2018.4.1.8 Includes new features.
- 2018.4.1.7 Includes new features.
- 2018.4.1.6 Includes new features.
- 2018.4.1.5 Includes new features.
- 2018.4.1.4 Includes new features.
- 2018.4.1.3 Includes new features.
- 2018.4.1.2 Includes new features.
- 2018.4.1.1 Includes new features.
- 2018.4.1 Long term-support release to renames the 7.7 CD stream and to replace 7.7.1.3 CD update package.
- 7.7.1.3 CD update package to replace 7.7.1.2.
- 7.7.1.2 CD update package to replace 7.7.1.1.
- 7.7.1.1 CD update package to replace 7.7.1.0.
- 7.7.1.0 CD update package to replace 7.7.0.x and includes all APARs in the 7.6.0.7 fix pack.
- 7.7.0.2 Fix pack for 7.7.0.x.
- 7.7.0.1 Fix pack for 7.7.0.x.
- 7.7.0.0 Initial CD update package for 7.7.0.x and includes all APARs in the 7.6.0.6 fix pack.
2018.4.1.26
Release date: 26 April 2023
Last modified: 26 April 2023
Status: Available
|
APAR
|
Description
|
| IT39416 | WEB APPLICATION FIREWALL INCORRECTLY BLOCKS ALL JSON TRAFFIC IF SQL INJECTION FILTERING IS ENABLED FOR A REQUEST PROFILE |
| IT41761 | DATAPOWER DOMAIN RESTART OR CONFIGURATION CHANGE MIGHT CAUSE SLM PEERING HASH ERRORS |
| IT42982 | DATAPOWER MIGHT RESTART WHILE CONFIGURING A GROUP OF GATEWAY PEER IN CLUSTER MODE |
| IT43095 | DATAPOWER MIGHT RELOAD WHEN MEMORY CORRUPTION/EXHAUSTION OCCURS FROM AN MQ LIBRARY |
| IT43122 | DataPower might unexpectedly reload after recommitting a routed API Path |
| IT43155 | B2B GATEWAY PARSING ERROR FOR COMPRESSED MESSAGE |
| IT43157 | DataPower might restart under load |
| IT43160 | UPDATE OPENSSL LIBRARY TO ADDRESS MULTIPLE CVES. |
| IT43202 | CERTAIN OBJECTS MIGHT NOT BE ABLE TO BE DELETED AFTER BEING USED BY GATEWAY PEERING OBJECT |
| IT43253 | APIC ACTIVITY LOGS MIGHT BE LOST WHEN USING THE ASSEMBLY LOG ACTION |
| IT43264 | RATE LIMITS MIGHT PRODUCE INVALID 429 RATE LIMIT RESPONSES |
| IT43318 | APIGW INVOKE ASSEMBLY ACTION CAN LEAK MEMORY IF RESPONSE IS SOAP ERROR |
| IT43340 | PLAN.SPACEID IS NOT AVAILABLE IN THE V5C CONTEXT |
| IT43359 | APIC SUBSCRIBER CACHE MIGHT GROW IN MEMORY FOR CERTAIN ERRORS |
| IT43360 | DATAPOWER MIGHT RESTART IF PASSWORD ALIAS IS REPEATEDLY MODIFIED IN A SHORT PERIOD OF TIME |
| IT43402 | DATAPOWER MIGHT UNEXPECTEDLY RELOAD WHILE TRYING TO READ A PAYLOAD OVER TLS WITH AN INVALID SESSION ID |
| IT43411 | HTTP RESPONSE HEADER SPACE TRUNCATED WHEN REASON PHRASE NOT INCLUDED |
| IT43432 | API CONNECT GATEWAY SERVICE MIGHT NOT USE UPDATED SERVICE PARAMETERS |
| IT43441 | DEFAULT CIPHER CONFIGURATION MIGHT NOT PROVIDE PERFECT FORWARD SECRECY |
| IT43500 | API CALL MIGHT HANG IF RATE LIMIT GATEWAY PEERING IS DOWN |
| IT43638 | UPDATE OPENSSL LIBRARY TO ADDRESS MULTIPLE CVES. |
2018.4.1.25
Release date: 22 February 2023
Last modified: 22 February 2023
Status: Available
|
APAR
|
Description
|
| IT42064 | APIC PARSE ASSEMBLY CONVERTING JSON TO XML CAN RESTART DEVICE IF JSON OBJECT PROPERTY SIZE EXCEEDS INTERNAL LIMITS |
| IT42488 | Unlimited rate limit for operation override not set properly |
| IT42538 | APIC GATEWAY MIGHT RESTART IF TRANSACTION CANNOT COMPLETE |
| IT42571 | REFERENCE COUNT PROBLEM IN THE DYNAMIC MQ-QM OBJECT MIGHT CAUSE RELOAD |
| IT42616 | APIC JSON TO XML CONVERSION MIGHT NOT RECOVER ALL USED MEMORY |
| IT42713 | DATAPOWER MIGHT RESTART DURING A TLS READ. |
| IT42733 | APIC MEMORY GROWTH WHEN APIGW SENDS THE LOG TO ANALYTICS |
| IT42734 | DATAPOWER MIGHT RESTART IF PASSWORD ALIAS IS MODIFIED REPEATEDLY DURING DOMAIN RESTART |
| IT42804 | LEAKED GATEWAY TRANSACTIONS |
| IT42983 | APIC GATEWAY MEMORY GROWTH WHEN GATEWAY FAILS TO RESEND THE ANALYTICS LOG TO THE SERVER |
2018.4.1.24
Release date: 14 December 2022
Last modified: 14 December 2022
Status: Available
|
APAR
|
Description
|
| IT41642 | DATAPOWER MIGHT RESTART DUE TO RACE CONDITION ON HTTP HANDLER |
| IT42089 | DATAPOWER MQ CLIENT TIMEOUTS SEEN WITH USERS OF MQ IMS BRIDGE |
| IT42249 | SECURITY FIX FOR JRE (CVE-2022-21626) |
| IT42263 | CLOUD AND CATALOG WEBHOOKS PROCESSED IN PARALLEL CAN RESULT IN CATALOG DELETION |
| IT42299 | DATAPOWER MIGHT RESTART AFTER GATEWAY PEERING IS DISABLED DURING DOMAIN RESTART |
| IT42400 | DATAPOWER MIGHT RESTART WHEN ADDING/DELETING PASSWORD OR WHEN RESTARTING DOMAIN |
| IT42479 | APIC RATE LIMIT BECOMES INCORRECT FOR STANDALONE GATEWAY IF REMAINING IS EXCEEDED BEFORE CACHE IS CLEARED |
| IT42483 | GW MEMORY IS LEAKING WHEN RECOMMIT THE API COLLECTION IF THERE'S RATELIMIT IN THE TRANSACTION |
| IT42493 | APIC GATEWAY MIGHT RESTART IF API PATH WITH PARAMETERS IS MODIFIED |
| IT42510 | DATAPOWER GATEWAY MIGHT RESTART IF XML MANAGEMENT INTERFACE IS ENABLED WHILE APIC GATEWAY SERVICE IS PENDING |
| IT42528 | COLLECTION MIGHT BECOME DETACHED FROM API GATEWAY |
2018.4.1.23
Release date: 26 October 2022
Last modified: 26 October 2022
Status: Available
|
APAR
|
Description
|
| IT31382 | EDITING A JSV OR FLUSHING IT FROM CACHE MIGHT RESTART IF IT PROCESSED TRAFFIC EARLIER |
| IT40324 | DATAPOWER MIGHT RESTART WHEN PROCESSING A PEER CERTIFICATE. |
| IT41159 | DATAPOWER MIGHT RESTART WHEN RUNNING THE SERVICE SHOW COMPONENT-FIRMWARE COMMAND. |
| IT41394 | TLS INTERMEDIARY CERTIFICATES MIGHT FAIL TO CLEAN UP IN V5C GATEWAY |
| IT41551 | APIC RATE LIMIT INCORRECTLY ENFORCED FOR STANDALONE GATEWAY WHEN CACHE IS CLEARED |
| IT41600 | GATEWAY-PEERING INSTANCES LEAK KEYS. |
| IT41657 | POLICY RULE WEBAPI-V5E-POLICY-INVOKE-GSCRIPT FAILED WITH EXCEPTION DUE TO API PROPERTIES WITH NEWLINE |
| IT41741 | DATAPOWER MIGHT RESTART WHEN INVALID MIME REQUEST SENT TO API GATEWAY |
| IT41776 | UPDATE DATAPOWER SECURE GATEWAY CLIENT TO 1.8.8FP1 AND NODE 14.20.0 |
| IT41786 | APIC UNCAUGHT EXCEPTION IN GATEWAY DIRECTOR WHEN WEBHOOK NOT SET |
| IT41802 | DATAPOWER MIGHT RESTART WHEN SHOW GATEWAY-PEERING-KEY-STATUS IS EXECUTED |
| IT41896 | API COLLECTION CONFIG CREATED AND CONFIGURED BUT IT IS NOT ADDED TO GATEWAY CONFIG |
| IT42005 | DETECT DUPLICATE APIS |
| IT42051 | SQL METHOD TO_TIMESTAMP_TZ0 CAUSES DATABASE INSERT FAILURE |
| IT42101 | ON PASSWORD CHANGE, OTHER SESSIONS ARE NOT INVALIDATED (CVE-2022-40228) |
| IT42104 | DATAPOWER MIGHT RESTART DURING KERBEROS PROTOCOL TRANSITION |
| IT42112 | FLAW IN OPENSSL (CVE-2017-3732) |
| IT42060 | REMOVING TRUSTSTORE FROM TLS CLIENT PROFILE IN APIC IS NOT REFLECTED ON THE DATAPOWER GATEWAY |
| IT42165 | INSECURE OPTION IN TLS CLIENT PROFILE FROM APIM HAS A DIFFERENT BEHAVIOR THAN APIC V5 |
| IT42300 | POTENTIAL CSRF VULNERABILITY IN WEB UI (CVE-2022-31773) |
2018.4.1.22
Release date: 24 August 2022
Last modified: 24 August 2022
Status: Available
|
APAR
|
Description
|
| IT40541 | DATAPOWER MIGHT RELOAD DUE TO API CONNECT ACTIVITY LOG GENERATION |
| IT40721 | DATAPOWER MIGHT RELOAD WHEN MODIFYING SNMP |
| IT41008 | DATAPOWER API GATEWAY MIGHT RELOAD WHEN PARSE ASSEMBLY RUNS A POST WITH NO DATA |
| IT41031 | FOR API GATEWAY, REDACTED DATA IN ASSEMBLY LOG ARE NOT MASKED FOR THE ERROR FLOW WHEN NO ROOT PROPERTY IS DEFINED |
| IT41039 | RELOAD MIGHT OCCUR WHEN URLOPEN HAS INCORRECT ENDPOINT SYNTAX |
| IT41112 | DATAPOWER FAILS TO PROCESS SQL DATA TYPE VARGRAPHIC INCLUDED IN THE DATABASE CURSOR. |
| IT41156 | FOR API GATEWAY WHEN A THIRD-PARTY OAUTH PROVIDER INTROSPECT URL CONTAIN QUERY PARAMETERS, THE QUERY PARAMETERS MIGHT BE TRUNCATED |
| IT41179 | SPACE ID IS NOT SET IN ANALYTICS DATA WHEN TWO API PLANS CONTAIN THE SAME API. |
| IT41246 | TENANT MEMORY ON TENANT DOES NOT MATCH THE ACTUAL MEMORY ALLOCATED TO A TENANT |
| IT41262 | DATAPOWER MIGHT RELOAD WHILE RUNNING API RULES AFTER DISABLING CERTAIN ACTION |
| IT41414 | DATAPOWER WEB UI MEDIUM SECURITY VULNERABILITY CVE-2022-32750 CVE-2022-31774 |
| IT41419 | BACKSLASHES REMOVED FROM API DEFINITION ON API GATEWAY BUT NOT WHEN IN V5C COMPATIBILITY MODE |
| IT41433 | SECURITY UPDATE TO JRE TO ADDRESS CVE-2021-35561, CVE-2022-21434, AND CVE-2022-21443 |
| IT41446 | SECURITY UPDATE TO ITX TO ADDRESS CVE-2020-10531, CVE-2014-8147,CVE-2014-8146, AND CVE-2017-14952 |
| IT41448 | V5 CUSTOM POLICIES REGEX CHECK HAS TYPO |
| IT41450 | DATAPOWER MIGHT RELOAD WHEN GENERATING ERROR REPORT WHILE FFDC PACKET CAPTURE IS ENABLED |
| IT41574 | DUPLICATE OAUTH OBJECTS IN CONFIGURATION CAUSES SLOW PROCESSING OF CATALOG EVENTS |
2018.4.1.21
Release date: 21 June 2022
Last modified: 21 June 2022
Status: Available
|
APAR
|
Description
|
| IT36680 | ENDPOINT REWRITE POLICY IS NOT SHOWN CORRECTLY IN WEBGUI AFTER WSP IMPORT |
| IT38064 | DATAPOWER WEBSPHERE JMS SOMETIMES GIVES ERROR 26 CONNECT_FAILED |
| IT39017 | RESULTS ACTION WITH "INPUT" AS INPUT CONTEXT AFTER PARSE ACTION WILL RESTART DATAPOWER |
| IT40387 | APIC V5C: INVESTIGATE IMPROVING TLS DEPLOYMENT FOR CATALOGS |
| IT40664 | ADJUST VAR://SERVICE/MAX-ACTION-DEPTH TO BE A READ/WRITE VARIABLE |
| IT40760 | SET VARIABLE POLICY DOES NOT WORK FOR XML PAYLOADS |
| IT40777 | DATAPOWER MIGHT RELOAD WHEN ADDING OR MODIFYING PASSWORD MAP USED BY B2B |
| IT40801 | MULTIPLE SECURITY ISSUES IN SECURE GATEWAY CLIENT |
| IT40823 | DP AS4 TRANSACTION COLLECTOR DATABASE ACCESS ERRORS/ AS4 TRANSACTIONS FAILING IN V10.0.1.4 |
| IT40946 | APIGW CRASHES IN ROUTING WHEN HANDLING THE SOAP WITH ATTACHMENTS MESSAGE |
| IT40957 | THROTTLER DOES NOT TRIGGER WHEN MEMORY EXCEEDS CONFIGURED THRESHOLD ON TENANTS |
| IT40964 | ADDRESS CVE-2022-24736 & CVE-2022-24735 FOR GATEWAY PEERING AND QUOTA ENFORCEMENT |
| IT40969 | SECURITY VULNERABILITY - XML ENTITY EXPANSION IN WEBGUI |
| IT41091 | DATAPOWER MIGHT RELOAD WHEN LOGGING SSL ERROR MESSAGES UNDER HIGH LOAD |
| IT41106 | APIC GATEWAY SERVICE DOES NOT WORK ON DOCKER DESKTOP 4.X |
2018.4.1.20
Release date: 28 April 2022
Last modified: 28 April 2022
Status: Available
|
APAR
|
Description
|
| IT35779 | API GATEWAY REJECT GET REQUEST WHEN PARAMETER NAME CONTAINS A COLON |
| IT39549 | DATAPOWER MIGHT RESTART WHEN HANDLING MULTIPLE MQ SESSIONS |
| IT39604 | GATEWAYSCRIPT LOGGING JAVASCRIPT HEAP OUT OF MEMORY WHILE SESSION.OUTPUT.WRITE() CREATES CONSISTENT MEMORY GROWTH |
| IT39610 | DATAPOWER MIGHT RESTART WHEN ACTING AS SFTP CLIENT AND SFTP SERVER RETURNS INVALID UTF-8 IN THE FILENAME |
| IT39669 | APIGW - PEER CLEAN UP CAN CAUSE WEBAPI INIT CHECK TO FAIL AFTER A RELOAD |
| IT39795 | APIC - DELETING GATEWAY EXTENSION MIGHT NOT RESTORE PREVIOUS PARSE SETTINGS |
| IT39804 | SYSLOG COMMAND IN CLI DOES NOT FUNCTION AS CLI HELP OUTLINES. |
| IT39912 | ERROR REPORT SECTION MEMSTATSBEFORERELOAD MAY NOT REPORT ACCURATE MEMTOTAL IN KUBERNETES ENVIRONMENTS. |
| IT39926 | DATAPOWER RMI INCORRECTLY REQUIRES JSON ORDERING FOR CERTAIN ACTIONS |
| IT39947 | API CONNECT GATEWAY PEERING OBJECTS CAN HAVE OPERATIONAL STATE UP EVEN WHEN 2 OBJECTS HAVE CONFLICTING PORTS |
| IT39948 | DATAPOWER MIGHT RESTART AFTER CORRECTING THE IP ADDRESS FOR GATEWAY PEERING |
| IT39989 | ZE APAR IT37691: DATAPOWER MIGHT RESTART WHEN AN API HAS LARGE NAMES FOR THE PATH, API, OR OTHER COMPONENT |
| IT39994 | DATAPOWER GATEWAY POTENTIALLY VULNERABLE TO DOS (CVE-2022-22356, CVE-2022-22355) |
| IT40038 | DATAPOWER FAILED TO BACKOUT MQ MESSAGE WITH INVALID CHARACTER. |
| IT40039 | LOGGED OUT FROM WEBGUI WHILE ATTACHING A POLICY SOURCE IN WS PROXY. |
| IT40078 | APIC GATEWAY PEERING OBJECT MAY BE UP EVEN IF AN INVALID IP ADDRESS IS SPECIFIED FOR A PEER OR CLUSTER NODE |
| IT40132 | DATAPOWER MAY RESTART IF APIC REPUBLISHES WHILE API CALLS ARE BEING PROCESSED |
| IT40152 | DATAPOWER SECURE GATEWAY OBJECT MIGHT GO INTO A PENDING STATE |
| IT40215 | APIC DUPLICATE CATALOG SNAPSHOT RECEIVED FROM API MANAGER AFTER DRR IS INITIATED INTERFERES WITH CATALOG CREATION |
| IT40259 | DURING DRR, API CONNECT GATEWAY SERVICE MIGHT NOT PROPERLY REMOVE CATALOG SNAPSHOT DATA FROM GATEWAY PEERING DATABASE |
| IT40264 | APIGW MIGHT RETURN INCORRECT CONTENT-ENCODING HEADER |
| IT40341 | API GATEWAY RETURNS UNEXPECTED 404 NOT FOUND ERRORS WHEN REQUEST URL CONTAINS A PIPE CHARACTER IN THE PATH PARAMETER |
| IT40342 | GATEWAY PEERING PROCESSES MIGHT NOT BE TERMINATED PROPERLY WHEN CONFIGURATION CHANGES ARE APPLIED |
| IT40376 | ZE APAR IT32914: X-FORWARDED-FOR HEADER SHOULD BE SANITIZED FOR CORRECT ANALYTICS DATA |
| IT40377 | DATAPOWER RELOADS WHEN GATEWAYSCRIPT PROCESSING ERROR OCCURS DUE TO UNDEFINED VARIABLE |
| IT40487 | HEAP OVERFLOW IN ICU - DFDL (CVE-2020-10531, CVE-2014-8147, CVE-2014-8146, CVE-2017-14952) |
| IT40500 | API CONNECT GATEWAY SERVICE MIGHT NOT BE USED SUCCESSFULLY FROM TENANTS |
| IT40510 | APIC CALLS ARE LOST OR RETURNED WITH A 404 ERROR MESSAGE AS READINESS OF GATEWAY IS SIGNALED TOO EARLY |
| IT40531 | B2B GATEWAY MAY FAIL TO DECOMPRESS RESPONSE WITH MULTIPLE ATTACHMENTS |
| IT40603 | PARSE SETTING VALUES ARE NOT WORKING IN APIC V10 |
| IT40610 | DATAPOWER MAY NOT PROPERLY READ RESPONSE FROM BACKEND |
| IT40640 | DATAPOWER SQL-EXEC FAILED TO RETRIEVE STORED PROCEDURE RESPONSE |
2018.4.1.19
Release date: 21 February 2022
Last modified: 26 July 2022
Status: Available
|
APAR
|
Description
|
| IT41431 | GUI ALLOWS USERS TO VIEW AND EDIT FILES THAT ARE NOT ALLOWED TO BE READ VIA RBM ACCESS RIGHTS |
| IT36680 | ENDPOINT REWRITE POLICY IS NOT SHOWN CORRECTLY IN WEBGUI AFTER WSP IMPORT |
| IT36859 | DATAPOWER MIGHT RESTART IF THE STYLEPOLICY CONFIGURATION IS CHANGED WHILE TRAFFIC IS USING THAT POLICY |
| IT37657 | THE FIELD RESOURCE_ID INSIDE THE ANALYTICS COMPONENT IS NOT SAVING THE REAL RESOURCE, IT IS ONLY SAVING THE BASE PATH |
| IT37787 | DATAPOWER WEB APPLICATION FIREWALL ERROR POLICY OBJECT CONTAINS INCORRECT CHANGE/MODIFICATION ENTRIES |
| IT37993 | DATAPOWER MIGHT RELOAD WHEN UPGRADING GATEWAY PEERING MEMBER UNDER LOAD |
| IT38072 | TIMING ISSUE WITH CONCURRENT PROCESSING OF WEBHOOK REFRESH CAUSES DELETION OF ENTIRE CATALOG |
| IT38218 | DATAPOWER MIGHT RELOAD AFTER LUNA HSM IS DISABLED |
| IT38252 | APIC API PLAN WITH SPACES IN NAME CANNOT BE PUBLISHED |
| IT38254 | APIGW SHOULD MASK THE VALUE IN AUTHORIZATION HEADER BEFORE SEND TO THE ANALYTICS ENDPOINT |
| IT38285 | DISABLING CSRF HEADER MIGHT IMPACT GUI ACTIONS |
| IT38368 | LOADING CERTIFICATES USING ANY ALGORITHM OTHER THAN RSA, DSA, OR ECDSA MIGHT RESTART DATAPOWER |
| IT38382 | WHEN OBJECT SUPPORT IS ENABLED FOR A DATA SOURCE, A DATABASE CALL MIGHT RESULT IN AN ERROR |
| IT38392 | DATAPOWER - CANNOT SET CACHE-TIMEOUT TO NO TIMEOUT IN MQ QUEUE MANAGER FROM WEBGUI OR CLI |
| IT38657 | DATAPOWER ISAM CLIENT DOES NOT HONOR DNS TIME TO LIVE (TTL) TIME AS ISAM HOSTNAME IS NOT CACHED. |
| IT38675 | DATAPOWER THROTTLE RESTART DUE TO LOW MEMORY AFTER APPLY FIX PACK 16 |
| IT38759 | DATAPOWER - CANNOT CONNECT SSH CONNECTION FROM SSH CLIENT |
| IT38774 | APIC V5 AND V5C ENHANCEMENT TO KEEP PREVIOUS TLS PROFILES IN CONFIGURATION IF APIM CANNOT BE REACHED |
| IT38777 | APIC REDACT ASSEMBLY ACTION MIGHT RESTART DATAPOWER |
| IT38838 | MAP POLICY MIGHT BE CASE SENSITIVE FOR HEADER NAMES WITH SOME USE CASES |
| IT38919 | MITIGATE VULNERABILITY IN REDIS CVE-2021-32626, CVE-2021-32675 |
| IT38936 | MAP OPTION TO CREATE REQUIRED SIBLING PROPERTIES OF OPTIONAL OBJECTS FAILS FOR LEAF PROPERTY MAPS |
| IT38937 | PROCESSING OF MALICIOUS REGEXP MIGHT CONSUME EXCESSIVE RESOURCES (CVE-2021-3807) |
| IT38954 | DATAPOWER MIGHT RELOAD WHEN PARSING A NULL INPUT DOCUMENT |
| IT38959 | LOAD BALANCER GROUP ALGORITHM WEIGHTED ROUND ROBIN MIGHT UNEXPECTEDLY RELOAD DATAPOWER |
| IT39021 | IBM DATAPOWER GATEWAY MIGHT ALLOW JSON INJECTION (CVE-2021-38910) |
| IT39032 | DATAPOWER APIC GATEWAY RATE LIMIT COUNT OF CONCURRENT TRANSACTION NEVER DECREASES |
| IT39040 | IBM DATAPOWER GATEWAY MIGHT PERMIT HEADER INJECTION (CVE-2021-38944) |
| IT39115 | DATAPOWER SSH CLIENT MIGHT CAUSE HIGH CPU WHEN ACTING AS AN SFTP CLIENT TO RETRIEVE A BIG FILE LIST |
| IT39117 | DATAPOWER ACCESS MANAGER CLIENT VERSION DEFAULT DOES NOT WORK CORRECTLY |
| IT39153 | DATAPOWER MIGHT RELOAD WHEN WS-PROXY CONFIGURATION IS CHANGED WHEN NOT QUIESCED |
| IT39155 | DATAPOWER MIGHT RESTART WHEN USING MULTISTEP PROBE |
| IT39157 | DATAPOWER JSON SCHEMA VALIDATION STRING FORMAT DATE AND DATE-TIME ALLOW FOR INVALID DAYS |
| IT39186 | USER REGISTRY FOR OAUTH CAN HAVE TLS PROFILE SET TO NONE ON DATAPOWER |
| IT39187 | JWE PRODUCED FROM THE EXAMPLE GATEWAYSCRIPT DOES NOT CONTAIN AN ENCRYPTED KEY PARAMETER |
| IT39203 | CONFIGURATION CHANGES IN API MANAGER MIGHT FAIL TO BE PROPAGATED ACROSS ALL GATEWAYS IN A CLUSTER |
| IT39232 | SAML ASSERTIONS ARE NOT PROCESSED WHEN SENT TO DATAPOWER IN AN HTTP URL QUERY STRING. |
| IT39289 | API GATEWAY - API COLLECTION MISSING AFTER RESTART OF THE GATEWAY |
| IT39299 | DATAPOWER WEBSOCKET UPGRADE MAY RESULT IN INCREASED FILE COUNT AND MEMORY GROWTH |
| IT39300 | DATAPOWER EXTENDED LATENCY LOG MAY HAVE EXTRA CHARACTERS WHICH MIGHT CAUSE ANALYTICS LOG ACTION TO FAIL |
| IT39342 | DATAPOWER MAY GROW IN MEMORY WHEN MQFTE URL OPENER FAILS TO PUT MESSAGES |
| IT39468 | DATAPOWER API GATEWAY MIGHT RESTART WHEN RUNNING AN ERROR RULE AFTER NO TARGET HAS BEEN MATCHED IN THE COLLECTION |
| IT39475 | DATAPOWER RELOADS UNEXPECTEDLY DUE TO DP:AUTH-INFO EXTENSION FUNCTION |
| IT39492 | DATAPOWER MIGHT RESTART DURING CLI TRANSACTION |
| IT39495 | MULTIPLE ISSUES IN SQL DRIVER |
| IT39504 | APIC GATEWAY ASSEMBLY RATE-LIMIT REJECTS REQUESTS WITH CODE 429 BEFORE REACHING THE CONFIGURED LIMIT |
| IT39534 | DATAPOWER MIGHT RESTART WHEN REMOVING AN OBJECT FROM THE API RATELIMIT CACHE |
| IT39541 | SECURE GATEWAY CLIENT MIGHT HANG IN A UP OR PENDING STATE |
| IT39556 | DB2 ENDPOINT MAY CAUSE UNEXPECTED RELOAD OF DATAPOWER |
| IT39581 | WTX: XML NOT VALIDATING AGAINST DTD AS EXPECTED |
| IT39660 | WHEN PRIMARY GATEWAY GOES DOWN, GWD NODE.JS PROCESS ENCOUNTERS UNHANDLED REJECTION AND RESTARTS ON OTHER GATEWAYS |
| IT39661 | IF API CONNECT PRIMARY GATEWAY IS RESTARTED SOME CATALOGS ON A SECONDARY GATEWAY MIGHT BECOME UNUSABLE |
| IT39700 | UPDATE DATAPOWER JRE TO ADDRESS CVE-2021-35578 |
| IT39724 | UPDATE PATCHES FOR MITIGATING CVE-2021-3712 |
| IT39764 | SUPPORT API CLIENT ID THAT IS 37 CHARACTERS OR LONGER |
| IT40374 | ADDRESS PROTOTYPE POLLUTION FLAW IN DOJO (CVE-2021-23450) |
2018.4.1.18
Release date: 1 October 2021
Last modified: 1 October 2021
Status: Available
|
APAR
|
Description
|
| IT35948 | APIC GATEWAY DIRECTOR TLS CLIENT USING SNI WHEN NOT CONFIGURED TO USE SNI |
| IT36456 | DATAPOWER CAN CAUSE UNCOMMITTED MESSAGES IF MQ URLS WITH SYNC POINT TAGS ARE USED WITHOUT UNITS-OF-WORK SETTING IN MQ-QM OBJECT. |
| IT36736 | DATAPOWER MIGHT RELOAD UNEXPECTEDLY WHEN MAKING AN MQGET CALL |
| IT36786 | DATAPOWER MAY WATCHDOG RELOAD WHILE STARTING UP AFTER A RELOAD |
| IT37093 | DATAPOWER WTX INTERNAL ERROR. UNEXPECTED MAPPING ERROR. 200 AFTER UPGRADING TO 10.0.1.0 |
| IT37200 | :PORT FORMAT FROM THE SSH CLIENT KNOWN HOST TABLES |
| IT37244 | RATELIMIT MODULE CONCURRENT POLICY WORKS UNEXPECTEDLY ON API GATEWAY |
| IT37281 | SESSION.APIGATEWAY IS NOT RETURNING THE GATEWAY NAME |
| IT37334 | GUI BANNER SHOWS UNSAVED CHANGES WHEN SHOW NTP-SERVICE COMMAND USED |
| IT37348 | DATAPOWER MAY RELOAD DUE TO A HANG ON AN MQ SESSION |
| IT37354 | DATAPOWER XML SCHEMA CANNOT VALIDATE ... TYPE="XS:DOUBLE" FIXED="NAN" ... CORRECTLY |
| IT37362 | APIC GATEWAY SERVICE CONFIG SEQUENCE HANGS DUE TO ASSEMBLY INVOKE ACTION |
| IT37474 | USING QUERY PARAM IN AUTHURL CAUSES ERROR |
| IT37506 | DATAPOWER MAY RESTART AFTER PROCESSING 4 BILLION LOG TARGET MESSAGES VIA SYSLOG-TCP OR NFS |
| IT37513 | CALLING THE XSLT EXTENSION FUNCTION DP:FREEZE-HEADERS IN AN ASYNCHRONOUS ACTION MIGHT RESTART THE DEVICE |
| IT37552 | EXTENSION DRR FLAG NOT CLEARED ON DRRS WHERE GATEWAYEXTENSIONDEPLOYER HAS ALREADY COMPLETED INIT |
| IT37601 | DATAPOWER RESTART WHEN RUNNING TLS-LOG-CLIENT-RANDOM |
| IT37616 | GATEWAYSCRIPT MIGHT HAVE INCORRECT RESULT WITH THE BUFFER.SLICE() FUNCTION |
| IT37653 | APIC PARAMETER INPUT CHECKING TO RESTRICT UNUSABLE CONFIGURATIONS |
| IT37706 | SSL CONFIGURATION MAY NOT BE USED IF USING SNI PROFILE |
| IT37722 | APPLICATION.CERTIFICATE CONTEXT VARIABLE RETURNS NULL FOR KEYVALUE ATTRIBUTE |
| IT37766 | API CONNECT OPENAPI V3.0 SUPPORT FOR API SYNTAX CHECKING |
| IT37770 | REQUESTS TIME OUT WHEN SENDING DATA LARGER THAN 1 MB BYTES |
| IT37779 | DATAPOWER POST-LOGIN BANNER DOES NOT WORK FOR WEBGUI |
| IT37782 | API CONNECT GATEWAY URLOPEN CALL IN GATEWAYSCRIPT DOES NOT RECOGNIZE THE DEFAULT TLS PROFILE NAME |
| IT37856 | UPDATE OPEN-VM-TOOLS TO ADDRESS SEVERAL CVE |
| IT37910 | DATAPOWER WEBGUI CONTENT WINDOW MAY UNEXPECTEDLY EXPAND |
| IT37935 | ADDRESS SEVERAL CVES IN KERBEROS |
| IT37950 | ADD HEADER TIMEOUT PARAMETER TO ADDRESS CVE-2020-4994 |
| IT37962 | SQL DATA SOURCE GOES INTO PENDING STATE AFTER BEING DISABLED |
| IT37975 | APIC GATEWAY SERVICE TRANSACTION TIMEOUT IS NOT ENFORCED CVE-2021-38872 |
| IT37976 | APIC V5C PRODUCT AFTER REPLACE WILL NOT BE UPDATED CORRECTLY |
| IT37984 | APIC INVOKE ACTION REQUEST HEADERS IN THE API PROBE DATA MIGHT BE NOT CORRECT |
| IT37992 | USING MUTUAL TLS IN AN API DEFINITION RESULTS IN MEMORY LEAK |
| IT37994 | APIC GATEWAY SERVICE USING INVOKE ACTION MIGHT RESTART WITH HTTP/2 WHEN INJECT PROXY HEADERS IS SELECTED |
| IT38005 | RBM APPLY-CLI OPTION MAY CAUSE SCHEMA FAILURES SSH CLIENT PROFILES |
| IT38088 | UPDATE JRE TO ADDRESS CVE-2021-2341 |
| IT38096 | APIC OAUTH PROVIDER SETTINGS NOT DISPLAYING CORRECTLY |
| IT38112 | ERROR IN JWT AUTHENTICATION |
| IT38156 | NEW XSLT EXTENSION FUNCTION APIGW:OUTPUT-CONTENT-TYPE FOR APIC API GATEWAY SERVICE |
| IT38167 | AU CACHING IS FAILING, NO CACHE HIT, WITH FORMS BASED LOGIN. |
| IT38193 | XML PARSE ERROR IN APIC GATEWAY V5 POLICY WHEN PARSING MORE THAN 4 MB OF DATA |
| IT38220 | DELETING A CATALOG SHORTLY AFTER IT IS CREATED MIGHT CAUSE API CONNECT GATEWAY SERVICE INITIALIZATION FAILURE |
2018.4.1.17
Release date: 6 August 2021
Last modified: 6 August 2021
Status: Available
|
APAR
|
Description
|
| IT21079 | POTENTIAL MEMORY GROWTH WITH AN XQUERY ACTION THAT USES JSON INPUT LANGUAGE |
| IT32464 | POTENTIALLY RESTART WITH AN XQUERY ACTION THAT USES XML INPUT LANGUAGE, JSON OUTPUT LANGUAGE, FN:NUMBER(), AND THE PIPE OUTPUT CONTEXT |
| IT33993 | NEGOTIATION MODE OF LINK AGGREGATION INTERFACE IS UNKNOWN |
| IT35157 | DATAPOWER DELIMITS COALESCED COOKIES WITH COMMA INSTEAD OF SEMICOLON |
| IT35539 | FAILURE NOTIFICATION WITH SMTP FAILS TO TRANSITION TO UP WHEN ENDPOINT USES AN IPV6 ADDRESS |
| IT35554 | DATAPOWER ALLOWS DOTDOT IN URI WHEN USING PATCH METHOD EVEN IF DISALLOWED |
| IT36001 | DATAPOWER MIGHT RESTART WHEN CLEANING UP AN IBM MQ MANAGEMENT STORE |
| IT36084 | IBM MQ HANDLER STOPS PROCESSING MESSAGES |
| IT36096 | DATAPOWER MIGHT NOT PROPERLY READ RESPONSE FROM THE BACK END |
| IT36109 | ENSURE RFC 2616 HTTP CACHING CONFORMS TO SPECIFICATION |
| IT36143 | EXPIRATION TIME IN LOCAL RATE LIMIT CACHE WAS NOT UPDATED WHEN THE LIMIT IS EXCEEDED |
| IT36156 | PARALLEL UPDATES TO API GATEWAY CONFIGURATION FILES MIGHT CAUSE CORRUPTED FILES |
| IT36162 | DATAPOWER MIGHT RESTART WHEN PROCESSING RBM FOR THE GUI, XML MANAGEMENT, OR REST MANAGEMENT INTERFACES |
| IT36180 | DATAPOWER MIGHT RESTART WHILE UPLOADING A FILE WITH THE DATAPOWER GUI |
| IT36191 | RESTART WHEN QUERYING FOR A ?WSDL WHEN USING OAUTH SECURITY POLICY |
| IT36204 | DURING API PROCESSING WHEN RESPONSE CONTAINS NO BODY, REQUEST CONTENT-TYPE RETURNED TO CLIENT |
| IT36219 | HTTP/2 POST OR PUT REQUEST WITH NO BODY DATA WILL CAUSE TIME OUT ERROR |
| IT36268 | DATAPOWER MIGHT UNEXPECTEDLY RESTART WHILE PROCESSING A COUNT MONITOR |
| IT36332 | DUPLICATE CSR ENTRIES CREATED WITH THE DATAPOWER KEYGEN UTILITY |
| IT36346 | CONFIGURATION SEQUENCE PROCESSING DOES NOT COMPLETE AFTER PASSWORD ALIAS PROCESSING |
| IT36407 | MITIGATION FOR TLS CVE-2021-3449 |
| IT36415 | FIX REGRESSION TO APAR IT34339 |
| IT36417 | UPDATE SECURE GATEWAY CLIENT TO ADDRESS MULTIPLE CVES |
| IT36448 | DATAPOWER MIGHT PRINT EXTRA TEXT WHEN A LONG XML TEXT NODE IS LOGGED FROM AN XSLT ACTION |
| IT36463 | WSDL FAILS TO DEPLOY ON DATAPOWER FOR VMWARE |
| IT36471 | ALLOW TIME OUT TO BE CONFIGURED FOR NODE HTTP SERVER (CVE-2020-8251) |
| IT36479 | API CONNECT GATEWAY V5C POLICIES STOPPED WORKING AFTER FIRMWARE UPGRADE |
| IT36481 | DATAPOWER RESTARTS WHEN VIEWING GATEWAY PEERING STATUS |
| IT36517 | SPECIAL CASE THREADS MIGHT BE SUSCEPTIBLE TO LOGGING TO A TARGET THAT NO LONGER EXISTS CAUSING AN UNEXPECTED RESTART |
| IT36579 | DATAPOWER SNMP SHOULD NOT QUERY IBM MQ APPLIANCE STATUS PROVIDERS |
| IT36585 | INACCURATE LIST OF SUPPORTED FEATURES DUE TO UNDEFINED CATALOG ID |
| IT36597 | TYPE 8441: DATAPOWER MIGHT FAIL TO ESTABLISH TLS CONNECTIONS IF CERTIFICATES ARE STORED IN HSM |
| IT36624 | API CONNECT GATEWAY EXTENSIONS FAIL TO IMPORT ALL OBJECTS |
| IT36625 | DATAPOWER MIGHT RESTART DUE TO API SUBSCRIBER CACHE MANAGEMENT |
| IT36627 | ADDRESS FALSE-POSITIVE VULNERABILITY FINDINGS REPORTED BY SCAN UTILITIES |
| IT36635 | DATAPOWER DOES NOT CONVERT ISO-8859-1 CHARACTERS TO UTF-8 CORRECTLY IN HTTP HEADER |
| IT36637 | DATAPOWER MIGHT RESTART WHEN MODIFYING WEB SERVICE PROXY WHILE REQUESTING WSDL |
| IT36655 | API CONNECT UNABLE TO INPUT INLINED PARAMETER FOR THE TLS PROFILE NAME OF THE ASSEMBLY INVOKE ACTION |
| IT36705 | NEED MORE ERROR MESSAGES WHEN TRYING TO GET A NON-EXISTING CONTEXT VARIABLE WITH LONG VARIABLE NAME |
| IT36715 | ADDRESS CORS MISCONFIGURATION CVE-2020-4992 |
| IT36714 | USER-DEFINED POLICY PARAMETER ORDER IN EXPORT.XML DIFFERS FROM ORDER SPECIFIED ON ASSEMBLY TAB IN API MANAGER |
| IT36723 | DATAPOWER MIGHT RESTART IF A DSA KEY IS USED IN THE SFTP POLLER HANDLER |
| IT36726 | MEMORY GROWTH AFTER CALLING DP:GATEWAYSCRIPT XSLT FUNCTION |
| IT36727 | DATAPOWER DOES NOT CORRECTLY CALCULATE FREE MEMORY |
| IT36732 | ASSEMBLY VALIDATE ACTION MIGHT RESTART DATAPOWER |
| IT36779 | DATAPOWER TPS MIGHT BECOME LIMITED BY ASSEMBLY REDACT ACTION |
| IT36780 | API CONNECT GATEWAY SERVICE LOGS ERRORS AFTER THE PRIMARY GATEWAY RESTARTS AND RECONNECTS |
| IT36822 | MIGRATION PUSH OF CERTAIN CUSTOM POLICIES FAILS |
| IT36838 | DATAPOWER MIGHT RESTART WHILE RECEIVING A NULL POST REQUEST |
| IT36843 | UNQUIESCING DATAPOWER TENANT CAN CAUSE RESTART |
| IT36946 | API CONNECT REDACT STYLESHEETS ARE NOT RECOMPILED WHEN REPUBLISHED |
| IT36949 | MITIGATION FOR DOJO VULNERABILITIES CVE-2018-15494 AND CVE-2020-4051 |
| IT36963 | ECC CERTIFICATES FAIL TO BE RECOGNIZED WHEN ONLY TLSV1.3 CIPHER SUITES ARE AVAILABLE |
| IT36988 | XSLT APIM:GETAPIPROPERTY NOT WORKING AFTER MIGRATION |
| IT37018 | API CONNECT XSLT VERSION 1.0.0 POLICY FAILS TO COMPILE |
| IT37035 | API CONNECT GATEWAY SERVICE MIGHT RESTART UNEXPECTEDLY WHEN CLI SHOW CONNECTIONS IS RUN |
| IT37053 | DATAPOWER SQL TRACING FAILS TO CREATE LOGS |
| IT37082 | MITIGATION FOR CVE-2020-7774 UPDATE Y18N NODE MODULE |
| IT37131 | DATAPOWER RESTARTS WHEN USING PROXY POLICY AND PROXY USER AUTHENTICATION |
| IT37152 | VERSION 1.0.0 XSLT POLICY APIM:GETVARIABLE OF MESSAGE.STATUS ALWAYS RETURNS 200 OK |
| IT37175 | API GATEWAY V5C FAILS WITH SESSION AUTHENTICATION FAILURE |
| IT37214 | DATAPOWER ACCESS MANAGER CLIENT GOES DOWN AFTER UPGRADING |
| IT37278 | MITIGATE NODE LIBRARY FOR CVE-2020-8287 AND CVE-2020-8265 |
| IT37298 | MITIGATE TLS LIBRARY CVE-2021-23840 |
| IT37331 | ADD CLIENT.THIRD_PARTY.RESPONSE.USER API GATEWAY CONTEXT VARIABLE FOR EXTRACTING DATA FROM LDAP FOR SECURITY DEFINITION |
| IT37464 | DUE TO A TIMING WINDOW, LAST PROCESSED EVENT MIGHT NOT BE SENT TO API MANAGER |
| IT37523 | UPDATE ICU LIBRARY TO ADDRESS SEVERAL CVES |
| IT37577 | MULTI-PART REQUEST WITH SECURITY RETURNS 401 ERROR |
| IT37933 | UPDATE ANGULARJS TO ADDRESS MULTIPLE CVES |
2018.4.1.16
Release date: 2 April 2021
Last modified: 2 April 2021
Status: Available
|
APAR
|
Description
|
| IT33579 | ENSURE THE ORDER FOR THE LDAP OBJECTS ARE CORRECT AND DEFINED FOR CONFIGURATION. |
| IT34576 | ZE IT30835 FIX APAR: USE OF VAR://SERVICE/TLS-INFO VARIABLE MIGHT LEAD TO UNEXPECTED RESTART |
| IT34677 | APPLICATION METADATA CONTAINING COMMAS MIGHT CAUSE IBM DATAPOWER TO RESTART UNEXPECTEDLY |
| IT34680 | LIVE STREAM HANG TRIGGER DATAPOWER WATCHDOG RESTART |
| IT34742 | MEMORY GROWTH MIGHT OCCUR WHEN USING ASSEMBLY LOG ACTION |
| IT34767 | DATAPOWER MIGHT RESTART DUE TO A NETWORK ERROR IN THE MQ FTE HANDLER WHILE BACKOUT |
| IT35219 | DATAPOWER MIGHT RELOAD DUE TO AN INTERNAL DEFECT WITH MQ REFERENCE COUNTING |
| IT35248 | CLIENT SECRET IS NOT REDACTED ON API GATEWAY |
| IT35370 | ADDED HANDLING OF SPECIAL IMS IRM_TIMER VALUES 0 AND -1 |
| IT35454 | ONLY FLUSH CACHE FOR MODIFIED FILES TO PREVENT INTERMITTENT ERRORS |
| IT35462 | DATAPOWER MIGHT RESTART WHILE PROCESSING A LARGE CONFIGURATION FILE OR MULTIPLE CONCURRENT CONFIGURATION FILES |
| IT35492 | DATAPOWER MIGHT RESTART WHILE CLOSING AN LDAP CONNECTION |
| IT35498 | ADD DOMAIN NAME TO ANALYTICS RECORDS |
| IT35529 | WHEN USING MQ HANDLER, DATAPOWER MIGHT RESTART IF CONNECTIONS CANNOT BE ESTABLISHED WITH THE MQ SERVER |
| IT35543 | THE LOCATION HEADER GETS REWRITTEN IN ANY CASE BY THE LOCATION HEADER REWRITE FEATURE WHEN THE HOST CANNOT BE RESOLVED |
| IT35677 | XML FIREWALL CANNOT SET DYNAMIC SSL PROFILE FOR A SSL CLIENT PROFILE |
| IT35724 | DATAPOWER MIGHT RESTART DUE TO A BAD MQRFH2 HEADER IN AN MQ MESSAGE |
| IT35737 | DATAPOWER MIGHT LEAK MEMORY IF A WSDL BASED API IS INVOKED BY BASEPATH ONLY |
| IT35825 | DATAPOWER VALIDATION ERROR MESSAGES STATE ERROR REASON AT MESSAGE END, WHICH GETS TRUNCATED BY DATAPOWER LOG FOR LONG MESSAGES |
| IT35863 | THE CRYPTO-BINARY ACTION GOES DOWN DUE TO NO DATAGLUE LICENSE. |
| IT35869 | DATAPOWER MIGHT RESTART IF A STREAM IS READ WHILE THERE IS FATAL ERROR ON THAT STREAM |
| IT35871 | ANALYTICS CERTIFICATES REMOVED WHEN API CONNECT GATEWAY SERVICE IS RESTARTED |
| IT35909 | DATAPOWER MIGHT RESTART DUE TO LOCK ISSUE |
| IT35921 | API CALL FAILS WHEN REQUEST URL CONTAINS NEGATIVE VALUES FOR PATH PARAMETERS OF INTEGER TYPE |
| IT35924 | ANALYTICS CERTIFICATES ARE NOT RESTORED WHEN RE-ADDING ANALYTICSTO APIC GATEWAY |
| IT35930 | CANNOT REFRESH API GATEWAY SERVICE IF OAUTH PROVIDER CONTAINS A USER REGISTRY USING TLS |
| IT35938 | API GATEWAY ONLY ALLOWS SECP256R1 CURVE ALGORITHM FOR TLS CONNECTIONS AS A CLIENT |
| IT35947 | SPACE_NAME CONTAINS SPACE_ID IN ANALYTICS INSTEAD OF THE REAL SPACE NAME |
| IT35980 | API OPERATION OBJECT STAYS UP EVEN IF PARAMETER REFERENCE IS MISSING |
| IT35996 | MULTIPLE CVE FOR MCP AND UBI |
| IT36029 | MITIGATE RACOON VULNERABILITY IN TLS (CVE-202-1968) |
| IT36032 | ADD PASSWORD CONFIGURATION FOR INTRA-CLUSTER COMMUNICATIONS |
| IT36037 | AN INVALID CATALOG CLEAR DURING A PRODUCT DELETE EVENT |
| IT36039 | THE SHARE RATE LIMIT COUNT PROPERTY IN API GATEWAY NOT HONORED WHEN API REPUBLISHED. |
| IT36078 | GUI ISSUE IN ADDING MESSAGE COUNT MONITOR IN WEB SERVICE PROXY |
| IT36089 | ZE IT34014 FIX APAR: COMPRESSION ON HTTPS RESULTS IN FAILING RESPONSES AFTER IT34014 |
| IT36121 | FOR API CONNECT, SSL PROFILE CHANGES IN THE LDAP IS NOT PICKED UP |
| IT36129 | DATAPOWER MIGHT RESTART DUE TO AN INVALID POINTER TO AN LDAP USER REGISTRY |
| IT36325 | THE SECURITY ACCESS MANAGER CLIENT MIGHT FAIL TO START |
| IT36346 | CONFIGURATION SEQUENCE PROCESSING DOES NOT COMPLETE AFTER PASSWORD ALIAS PROCESSING |
| IT36586 | JRE UPDATE TO ADDRESS CVE-2020-14779, CVE-2020-14782, CVE-2020-14803 AND CVE-2020-27221 |
2018.4.1.15
Release date: 01 February 2021
Last modified: 01 February 2021
Status: Available
|
APAR
|
Description
|
| IT32643 | STYLESHEET WITH INPUT CONTEXT NULL AND COMPILE OPTIONS POLICY ATTEMPT-STREAMING-RULE MIGHT CAUSE A RESTART |
| IT32767 | DATAPOWER MIGHT RESTART IF A LOG TARGET CONFIGURATION IS MODIFIED |
| IT33795 | GATEWAYSCRIPT READASBUFFERS() CANNOT READ >2GB SIZE INPUT |
| IT33856 | QUIESCE STATE NOT PROPERLY SET IN SELF BALANCE RESULTS IN FAILED REQUESTS TO DOWN SERVICES |
| IT33927 | ERRORS FOR ISAM CLIENT |
| IT34586 | FREEZE GATEWAYSCRIPT GLOBAL OBJECT FOR SECURITY VULNERABILITY |
| IT34610 | ASSEMBLY INVOKE ACTION MIGHT CHANGE VERB FROM HEAD TO POST |
| IT34611 | API CONNECT GATEWAY SERVICE MIGHT FAIL TO PROCESS SOME API GATEWAY CONFIGURATION UPDATES |
| IT34622 | USER DEFINED POLICIES MIGHT NOT REFLECT PROPERLY ON API CONNECT GATEWAY WHEN UPDATING |
| IT34706 | PEERING ASSEMBLY BURST LIMIT DOES NOT SYNCHRONIZE ALL COUNTERS CORRECTLY |
| IT34798 | DATAPOWER SSH CLIENT MIGHT RESTART WHEN ACTING AS AN SFTP CLIENT FOR LARGE FILES |
| IT34805 | DATAPOWER MIGHT RESTART UNEXPECTEDLY WHILE CHANGING/SAVING DOMAIN CONFIGURATIONS |
| IT34843 | UNABLE TO GET CLIENT CERTIFICATE INFORMATION FROM THE ASSEMBLY CONTEXT IN API GATEWAY |
| IT34847 | CANNOT DELETE PASSWORD ALIAS OBJECT WHEN THE SSH CLIENT PROFILE ASSOCIATED WITH IT IS DELETED |
| IT34848 | REQUEST.HEADERS.X-CLIENT-IP NEEDS TO BE POPULATED IN DATAPOWER API GATEWAY |
| IT34915 | INVOKE 1.5.0 POLICY DOES NOT EXECUTE WITH LONG API NAME |
| IT34971 | API CONNECT GATEWAY SERVICE WITH USER-DEFINED POLICIES MIGHT CAUSE DATAPOWER TO RESTART |
| IT35000 | POST REQUEST BODY FORM PARAMETERS WHEN ADDED TO A GET REQUEST AS QUERY PARAMETERS ARE NOT REJECTED BY THE WEBGUI |
| IT35035 | IN API CONNECT INTEGRATION, ELIMINATE DUPLICATE TLS PROFILE CONFIGURATIONS IN CATALOGS. |
| IT35038 | FALLBACK TO CATALOG TITLE IF CATALOG NAME IS NOT FOUND |
| IT35044 | OAUTH ENDPOINTS REJECT REQUESTS WITH A ;CHARSET=XXX APPENDED TO THE CONTENT-TYPE HEADER |
| IT35051 | MAP POLICY FAILS WITH WRONG STATUS CODE WHEN OUTPUT SCHEMA IS INVALID |
| IT35079 | UNEXPECTED RESTART LOGGING RESULT OF DP:BINARYNODETOSTRING CHILD::NODE() FOR EMPTY OR STRING CHILD |
| IT35090 | IN POSTPROCESSING STEP OF AN AAA POLICY, USER CANT ADD ROLE INTO WS-SECURITY USERNAMETOKEN |
| IT35121 | UNNECESSARY CONVERSION BY API GATEWAY OF JSON DATA TO STRING DATA MIGHT CAUSE DATAPOWER TO RESTART |
| IT35172 | WHEN ASSEMBLY NAME CONTAINS SPACES, API GATEWAY CANNOT CATCH AN ERROR |
| IT35179 | USAGE OF A LARGE AMOUNT OF CUSTOM RATE LIMIT KEYS UNDER HIGH LOAD MIGHT RESULT IN A SYSTEM HANG |
| IT35275 | DATAPOWER MIGHT UNEXPECTEDLY RELOAD ACCESSING THE API SUBSCRIBER CACHE |
| IT35317 | NODE.JS SECURITY VULNERABILITES (CVE-2020-8174) |
| IT35327 | IBM DATAPOWER GATEWAY POTENTIALLY VULNERABLE TO AN RCE ATTACK (CVE-2020-5014) |
| IT35364 | MEMORY GROWTH WHEN API DEFINITION LOGS PAYLOAD ON SUCCESS |
| IT35447 | GATEWAY PEERING IN STANDALONE MODE CAN HANG WHEN PROCESSING HIGH VOLUME RATE LIMITING |
| IT35449 | UNDER CERTAIN CIRCUMSTANCES, ENCODING IS SET INCORRECTLY DURING VALIDATION OF JSON/GRAPHQL SCHEMA FILE |
| IT35451 | A FOREACH PROPERTY IN A MAP POLICY SET ACTION FAILS IF NOT SPECIFIED AS A STRING VALUE |
| IT35452 | DATAPOWER MIGHT RESTART UNEXPECTEDLY IN RARE CASES WHEN READING STREAM |
| IT35769 | ON ERROR, REDACT POLICY NOT HONORED BEFORE SENDING MESSAGE TO ANALYTICS ENDPOINT. |
2018.4.1.14
Release date: 18 November 2020
Last modified: 18 November 2020
Status: Available
|
APAR
|
Description
|
| IT31762 | EMPTY MESSAGES AS RESPONSE IN TIBCO EMS FOR SPECIFIC FLOWS |
| IT32057 | <XSL:MESSAGE> CALLED WITH NON-UTF8 CHARACTER WILL PREVENT JSON KEY AND XML NAME CLEANUP |
| IT32347 | SHOW MEMORY COMMAND RESULTS IN CANNOT FETCH STATUS DATA ERROR |
| IT32349 | KEYS STORED IN LUNA MIGHT FAIL TO LOAD |
| IT32577 | HSM PARTITION GIVES ERROR CANNOT LOAD KEY WHEN INCORRECT PASSWORD IS GIVEN |
| IT32876 | DATAPOWER NOW RETURNS PROPER GZIP CONTENT FOR AN HTTP RESPONSE BODY OF LENGTH 0. |
| IT32937 | DATAPOWER DISREGARDS THE TTL VALUE IN THE DNS CNAME RECORD WHEN USING FIRST ALIVE ALGORITHM |
| IT33495 | DATAPOWER RESTARTS DUE TO ODR OBJECTS |
| IT33551 | CREATE TOGGLE FOR LLDP ON THE INTERFACES |
| IT33588 | DELETED DATAPOWER APPLICATION DOMAINS RESURFACE AFTER RESTART |
| IT33679 | SESSION.CLIENTADDRESS API CONTEXT VARIABLE DOES NOT USE CLIENT IP ADDRESS IN X-FORWARDED-FOR OR X-CLIENT-IP HEADER |
| IT33775 | ASSEMBLY RATE LIMIT CACHE STATUS IS INCORRECT |
| IT33778 | LUNA HA GROUP UP IF ONE MEMBER IS UP |
| IT33779 | WHEN A LUNA HA GROUP OR PARTITION OBJECT IS DOWN THE CERTIFICATE OBJECT SHOULD BE DOWN |
| IT33890 | DATAPOWER OPERATIONS DASHBOARD V1.0.10 DOES NOT DISPLAY API RESPONSE SIZE FOR V2018.4.1 API CONNECT DOMAINS |
| IT33897 | MEMORY LEAK WHEN USING OAUTH AND RATE LIMITING |
| IT33898 | GATEWAY PEERING CACHE STATUS DOES NOT INCLUDE GATEWAY RATELIMIT DATA |
| IT33923 | MAXIMUM CONSENT TTL SETTING IN OAUTH PROVIDER SETTINGS DOES NOT WORK PROPERTY |
| IT33925 | EXTENSION FUNCTION DP:AUTH-INFO WAS NOT RETURNING CORRECT DATA |
| IT33953 | RESTART OF DATAPOWER ON PASSWORD ALIAS |
| IT33981 | ACCESS POLICIES DOES NOT TAKE EFFECT IN CONFIGURATION SEQUENCE |
| IT33989 | EXPECTING JSON IN BADGERFISH FORMAT FOR NULL VALUES |
| IT34009 | _LINKS STANZA IN REST MGMT RESPONSE CONTAINS UNEXPECTED CONTENT |
| IT34014 | HTTP RESPONSE WHERE COMPRESSION REQUESTED AND NO DATA RETURNED CAUSES A DECOMPRESSION ERROR |
| IT34027 | PROVIDE PROTECTIVE CODING AGAINST MALFORMED XML IN REQUEST.CATALOGS AND REQUEST.SWAGGER |
| IT34034 | A CATALOG WITH NO SPACES AND THAT CATALOG IS PARTITIONED INTO SPACES WILL BRING DOWN ALL CATALOGS |
| IT34047 | SLM PEER MESSAGES COUNTS ARE INCORRECT AFTER RESTARTING THE PEER |
| IT34050 | X-IBM-CLIENT-ID HEADER EXTRA VALUES IS IGNORED IN OAUTH AUTHENTICATION |
| IT34070 | THE GATEWAY UNCONDITIONALLY OVERWRITES THE HOST HEADER |
| IT34075 | OAUTH IDENTITY EXTRACTION LOGS INCORRECT MESSAGE WHEN USING A CUSTOM HTML FORM |
| IT34082 | API CALL WITH BASICAUTH SECURITY ENFORCEMENT IS SUCCESSFUL WITHOUT PASSWORD |
| IT34084 | UNDER CERTAIN CIRCUMSTANCES, USER-DEFINED POLICIES ERRONEOUSLY DO NOT MEET AVAILABILITY CRITERIA DUE TO INVALID PEERING DATA |
| IT34142 | DATAPOWER GATEWAY MIGHT RESTART WHEN PROCESSING GATEWAY NAMED RATE-LIMIT POLICIES WITH ASSEMBLY-RATE-LIMIT ACTION |
| IT34175 | UPDATES TO AN API GATEWAY CATALOG WITH A LARGE NUMBER OF PRODUCTS MIGHT CAUSE API CONNECT GATEWAY SERVICE RESTART |
| IT34176 | UPDATES TO AN API GATEWAY CATALOG WITH A LARGE NUMBER OF PRODUCTS MIGHT CAUSE DATAPOWER RESTART |
| IT34198 | DNS STATIC HOSTS MIGHT NOT WORK WHEN LOAD BALANCING ALGORITHM IS FIRST ALIVE |
| IT34236 | SSL CLIENT PROFILE NOT ACCESSIBLE BY WEBAPI GATEWAY |
| IT34285 | MEMORY GROWTH SEEN WHEN DOMAIN IS RESTARTED IF GATEWAY PEERING IS USED IN THE DOMAIN OR GATEWAY PEERING IS MODIFIED |
| IT34286 | API CONNECT GATEWAY V5 COMPATIBILITY INCORRECTLY SENDS API CONNECTS APP CLIENT ID |
| IT34287 | API CONNECT GATEWAY V5 COMPATIBILITY, WHEN REFRESH TOKEN IS USED TO GENERATE NEW ACCESS TOKEN THE NEW TOKEN STILL HAS THE OLD REVOCATION URL |
| IT34333 | AAA LDAP REQUIRES USERPASSWORD, EMPTY PASSWORD ERROR SHOULD BE THROWN ON FAILURE |
| IT34339 | WHEN YOU REPLACE A PRODUCT IN API MANAGER, INVOKING APIS IN THE PRODUCT MIGHT FAIL DURING THE REPLACEMENT |
| IT34349 | STRICT TRANSPORT SECURITY WILL BE ADDED TO OAUTH APIS IN ORDER TO IMPROVE SECURITY CONCERNS |
| IT34366 | GATEWAYSCRIPT CRYPTO.CREATESIGN() API FAILS WITH PSASSA-PSS ALGORITHM |
| IT34370 | API CONNECT INTEGRATION: DATAPOWER MIGHT RESTART AFTER ADDING IT AS A GATEWAY SERVICE |
| IT34376 | FIX AN ERRONEOUS ERROR MESSAGE ABOUT CLI ARGUMENTS. |
| IT34387 | REMOVE SQUARE BRACKETS FROM IPV6 ADDRESSES WHEN REPORTING ANALYTICS. |
| IT34388 | API CONNECT GATEWAY V5 COMPATIBILITY FEATURES FOR MIGRATED APIS ARE NOW SUPPORTED |
| IT34420 | WHEN FILES IN TEMPORARY: DIRECTORY, XSLT APIGW:SWAGGER-DOCUMENT EXTENSION DOES NOT WORK |
| IT34447 | API CONNECT GATEWAY SERVICE MONITORS INCORRECT FILE LOCATIONS |
| IT34462 | ROUTING TABLES MIGHT HAVE MISSING BROADCAST ENTRIES FOR INTERFACES |
| IT34467 | GATEWAYSCRIPT ERROR MIGHT OUTPUT NAN INSTEAD OF MULTIPLE PERCENT CHARACTERS |
| IT34616 | LOGS SENT BY SEND-ONLY AND GATHER-AND-SEND OF ASSEMBLY LOG ACTION CAN CAUSE AN IMPACT TO CPU USAGE. |
| IT34627 | APP ID IS INVALID OR NOT WELL-FORMED ERROR WHEN UPDATING AN API SUBSCRIPTION WITH THE WEBGUI |
| IT34652 | SECURE GATEWAY CLIENT RESTART AT HIGH LOAD |
| IT34657 | CATALOG SNAPSHOT PAYLOADS WAS MISSING FROM DATAPOWER GATEWAY |
| IT34809 | UDP NOT INSTALLED ON DATAPOWER V5C IF REQUEST CAME IN AS SNAPSHOT |
| IT34858 | SECURITY VULNERABILITIES IN LODASH AND MINIMIST PACKAGES (API CONNECT GATEWAY SERVICE) |
| IT34954 | ADDRESS MULTIPLE JRE SECURITY VULNERABILITIES |
Fix Pack 13 (2018.4.1.13)
Release date: 31 August 2020
Last modified: 31 August 2020
Status: Available
|
APAR
|
Description
|
| IT32051 | SSH KNOWN HOSTS FILE DOES NOT ACCEPT KEYS LARGER THAN 1024 BYTES |
| IT32283 | VAR://SERVICE/LOCAL-SERVICE-ADDRESS IS NOT POPULATED FOR HTTP/2 REQUESTS |
| IT32522 | IN THE ERROR REPORT, LOGTEMP///:XACT-LOG AND ASSOCIATED STANZA REPORT A RANDOM OBJECT NAME FOR ACCEPTED CONNECTIONS |
| IT32758 | DATAPOWER MIGHT RELOAD DURING "SAVE INTERNAL-STATE" COMMAND |
| IT32964 | DATAPOWER ODR INTEGRATION MIGHT GENERATE INVALID PEER CERTIFICATE. ERROR ON WEBSPHERE APPLICATION SERVER |
| IT32966 | MULTIPLE CVE FOR MCP AND UBI |
| IT33036 | VAR://SERVICE/AAA-ERROR-LOGS IS NOT POPULATED WHEN LOG LEVEL IS ERROR |
| IT33116 | DATAPOWER USES AN OBSOLETE AAA HEADER |
| IT33129 | MULTIPLE SECURE BACKUPS MIGHT CAUSE A RELOAD |
| IT33142 | X-GLOBAL-TRANSACTION-ID IS NOT GENERATED FOR SOME CALLS IN API GATEWAY |
| IT33166 | SUBSCRIPTION ERROR WHEN MULTIPLE PRODUCTS USE SAME API PATH |
| IT33185 | A TRANSACTION MIGHT HANG UNTIL A RESTART IF THERE IS AN ERROR IN ITS HANDLER |
| IT33220 | RBM PASSWORD AGING INTERFERES WITH CONFIGURATION SEQUENCE THAT USE ACCESS PROFILE |
| IT33232 | INVALID DOMAIN NAME IS LOGGED IF AUTHENTICATION FAILS AND USES AN INVALID DOMAIN NAME |
| IT33233 | CONTENT-ENCODING HEADER SET WITH EMPTY BODY RESPONSE THROWS A READ ERROR |
| IT33247 | SUPPRESS AUTOMATIC GENERATION OF SSH DSA KEYS |
| IT33251 | QUEUE MANAGER CONNECTION FAILS WITH MQ:// PROTOCOL IN API GATEWAY GATEWAYSCRIPT |
| IT33327 | 401 UNAUTHORIZED AFTER INTRODUCING A NEW API VERSION WITH DIFFERENT SECURITY CONFIGURATION |
| IT33351 | XSS AND HTML INJECTION VULNERABILITY |
| IT33361 | DATAPOWER MIGHT RESTART ON A PARSE ACTION |
| IT33365 | COPY COMMAND MIGHT INCLUDE PASSWORD IN LOG MESSAGES |
| IT33374 | ADDING ASSEMBLY FUNCTION THAT CONTAINS RATE LIMIT ACTION TO API GATEWAY THROWS ERROR |
| IT33375 | MEMORY GROWTH MIGHT OCCUR DURING PAYLOAD LOGGING |
| IT33401 | ENABLE ALLOW COMPRESSION BY DEFAULT FOR API GATEWAY HANDLERS |
| IT33450 | BLUEPRINT CONSOLE MIGHT BE SLOW DISPLAYING MULTI-PROTOCOL GATEWAY SERVICE CONFIGURATION |
| IT33455 | UNEXPECTED RESTART DUE TO MEMORY CORRUPTION IN TLS |
| IT33460 | JSON SCHEMA THAT FAILS COMPILATION WITH INVALID REFERENCE OR INVALID JSON SYNTAX DOES NOT LOG SPECIFIC ERROR |
| IT33517 | POTENTIAL DENIAL OF SERVICE VULNERABILITY |
| IT33536 | DATAPOWER XSLT DYN:EVALUATE() COMPILED CODE CACHE ALLOWS FOR ONLY 32 ENTRIES |
| IT33543 | DATAPOWER MIGHT WATCHDOG RESTART WHILE READING AND SAVING A CONFIGURATION AT THE SAME TIME |
| IT33564 | POTENTIAL DENIAL OF SERVICE IN REDIS (CVE-2020-14147) |
| IT33597 | WHEN USING API GATEWAY, A PAYLOAD ON AN OPTIONS REQUEST ECHOES BACK ON THE RESPONSE |
| IT33607 | PASSWORD ALIAS FORGETS PASSWORD IF DOMAIN IS DISABLED THEN RE-ENABLED |
| IT33621 | SSH SERVICE DOES NOT COME UP IF DOMAIN AVAILABILITY IS ENABLED AND THE DOMAIN HAS A MISCONFIGURED SERVICE |
| IT33663 | DATAPOWER MIGHT RELOAD UNEXPECTEDLY ON RECONFIGURING PASSWORD ALIAS |
| IT33701 | THIRD PARTY OAUTH FAILURE RETURNS 403 FORBIDDEN |
| IT33736 | COLLECTION CONFIGURATION NOT REMOVED BY DYNAMIC REREGISTRATION AND RECONFIGURATION (DRR) PROCESS AND COLLECTION IS EMPTY |
| IT33737 | TOLERATE MULTIPLE CONTENT-TYPE HEADERS |
| IT33738 | UNDER CERTAIN CIRCUMSTANCES, DYNAMIC REREGISTRATION AND RECONFIGURATION (DRR) MIGHT CLEAR THE CERT: DIRECTORY |
| IT33741 | DATAPOWER MIGHT RESTART ON A RARE WEBGUI ACTIVITY RACE CONDITION |
| IT33746 | WEBGUI NOT PERSISTING CHANGES FOR MULTI-PROTOCOL GATEWAY ADVANCED OPTIONS |
| IT33774 | IN V5 GATEWAY EXTENSIONS, FILE REFERENCES CONTAINING ONLY TWO SLASH CHARACTERS ARE NOT PROCESSED CORRECTLY |
| IT33802 | DATAPOWER MIGHT UNEXPECTEDLY RELOAD WHILE RUNNING A SECURE BACKUP |
| IT33845 | CONTENT-TYPE HEADER SET TO UNKNOWN MIGHT CAUSE ISSUES WITH INVOKE POLICY TARGET SERVERS |
| IT33857 | MUTUAL TLS BETWEEN API MANAGER AND API CONNECT GATEWAY SERVICE NOT POSSIBLE WHEN DEPLOYED IN KUBERNETES |
| IT33858 | DEBUG MESSAGE LISTING POLICIES REGISTERED WITH API MANAGER MIGHT BE TRUNCATED IF MESSAGE EXCEEDS 2048 CHARACTERS |
| IT33872 | LDAP USER REGISTRY BASIC AUTHENTICATION FAILS FOR UPPERCASE USER NAMES |
Fix Pack 12 (2018.4.1.12)
Release date: 26 June 2020
Last modified: 26 June 2020
Status: Available
|
APAR
|
Description
|
| IT30835 | USAGE OF SYSTEM VARIABLE MIGHT LEAD TO UNEXPECTED RESTART |
| IT31897 | CUSTOM POLICIES DIRECTORIES WILL GET REMOVED ON DRR |
| IT32293 | GATEWAYSCRIPT CLI DEBUGGER PRINT COMMAND FAILS IF THE VALUE HAS A SPACE INIT |
| IT32296 | SNMP POLLING MQ CONNECTION STATUS PROVIDER LEAKS MEMORY |
| IT32372 | CANNOT MODIFY VARIABLES USING THE SCOPE PANEL WHEN DEBUGGING GATEWAYSCRIPT REMOTELY |
| IT32380 | REFRESH TOKEN SCOPE MIGHT BE IGNORED IN API CONNECT GATEWAY SERVICE |
| IT32445 | SSL CLIENT PROFILE MIGHT FAIL TO WORK IN GATEWAYSCRIPT URLOPEN |
| IT32486 | GATEWAYSCRIPT ACTION MIGHT LEAK MEMORY WHEN THE TRANSACTION ENCOUNTERS A FATAL ERROR |
| IT32565 | SNMP USER ACCOUNTS MIGHT ENCOUNTER AN ERROR WHEN ASSIGNING A KEY GENERATED FROM PLAINTEXT |
| IT32585 | API CONNECT GATEWAY SERVICE MIGHT RESTART THE DEVICE IF MISCONFIGURED. |
| IT32617 | EXPIRED SUBSCRIBER DATA INCORRECTLY MANAGED BY API SUBSCRIPTION GATEWAY PEERING |
| IT32620 | USER DEFINED POLICIES CANNOT HAVE THE NAME AS AN OUT-OF-THE-BOX POLICY EVEN IF THE VERSIONS DO NOT MATCH |
| IT32626 | PREPARING SCHEMA VALIDATION ACTION MIGHT RESTART THE DEVICE |
| IT32642 | CONTINUOUS ERROR MESSAGES EVEN AFTER POLICY HAS REACHED CONSENSUS |
| IT32770 | SECURITY VULNERABILITY IN "MINIMIST" PACKAGE (API CONNECT GATEWAY SERVICE) |
| IT32781 | WHEN A CATALOG HAS MORE THAN ONE USER DEFINED POLICY, ONLY ONE OF THE POLICIES IS RESTORED BY DRR |
| IT32782 | APIC GATEWAY SERVICE OBJECT MIGHT RESTART DATAPOWER CREATING YAML CONFIG |
| IT32798 | USER DEFINED POLICIES ARE NOT ADVERTISED TO API MANAGER ALTHOUGH GATEWAY REGISTRATION DATA IS AVAILABLE |
| IT32800 | ILLEGAL CATALOG METADATA MIGHT LEAD TO A CATALOG OUTAGE |
| IT32839 | UPDATE FOR LOW LEVEL CODE ON 4 PORT 10GB MODULE |
| IT32891 | IMPROVEMENTS TO GATEWAY PEERING FOR RATELIMIT MODULE |
| IT32914 | X-FORWARDED-FOR HEADER SHOULD BE SANITIZED FOR CORRECT ANALYTICS DATA |
| IT32931 | DATAPOWER MIGHT NOT PARSE UTF16 XML IF BOM IS SPLIT ON DIFFERENT TCP PACKETS |
| IT32934 | DATAPOWER UNQUIESCE LEAVES API GATEWAY SERVICE OBJECT IN DOWN STATE |
| IT32942 | WHEN FIRST RULE IN A POLICY CONTAINS ONLY ONE PROCESSING ACTION, THE EDITOR SHOWS ONLY THE MATCHING ACTION |
| IT32982 | IF INVOKES PASSWORD CONTAINS THE CHARACTER OF =, IT WILL BE CONVERTED TO = |
| IT33002 | NATIVE DATAPOWER SERVICE VARIABLES ARE NOT AVAILABLE IN APIGW |
| IT33203 | DATAPOWER MIGHT RESTART CAUSED BY POST-HOOK GATEWAYSCRIPT |
Fix Pack 11 (2018.4.1.11)
Release date: 11 May 2020
Last modified: 11 May 2020
Status: Available
|
APAR
|
Description
|
| IT27822 | B2B TRANSACTION VIEWER CANNOT QUERY 10 DIGITS TRANSACTION ID |
| IT30481 | NON UTF-8 CHARACTERS IN ELLIPTIC CURVE LIST DEBUG MESSAGES CAUSE GUI TO FAIL TO DISPLAY SYSTEM LOGS |
| IT30776 | UNEXPECTED RELOAD WHEN RUNNING GATEWAYSCRIPT WITH BINARY OUTPUT |
| IT31445 | DECRYPTION OPERATIONS USING THE AES GCM SYMMETRICAL ENCRYPTION ALGORITHM MIGHT FAIL ON LARGE BLOCKS OF DATA |
| IT31667 | BACKUP UNABLE TO BE TAKEN FROM REST MANAGEMENT INTERFACE |
| IT31819 | INVALID TARGET-URL MIGHT RELOAD THE DATAPOWER |
| IT31834 | SOAP PROXY API FAILED DUE TO SUPPLIED SOAPACTION NOT MATCHING GATEWAY CONFIGURATION |
| IT31854 | QUOTA ENFORCEMENT CONCURRENT TRANSACTION DOES NOT WORK CORRECTLY FOR MULTIPLE KEYS IN SAME TRANSACTION |
| IT31858 | GUI 500 ERROR WHEN TRYING TO CLONE HSM KEY WRAPPING KEY |
| IT31874 | UNEXPECTED RELOAD DUE TO TAM OBJECT INITIALIZATION FAILURE |
| IT31904 | UNDER CERTAIN CIRCUMSTANCES, ASYNCHRONOUS CALLS TO THE TOKEN MANAGER MIGHT CAUSE THE CLIENT CONNECTION TO HANG. |
| IT31967 | EXPORT OF SYSTEM SETTING FROM REST INTERFACES SHOWS INVALID JSON |
| IT32003 | VALIDATE ACTION ALLOWS INVALID MONTH VALUES |
| IT32004 | NETWORK INTERFACES INCORRECTLY DISPLAYS OTHER FOR AGGREGATE INTERFACES |
| IT32013 | ASSEMBLY FUNCTION WITH SINGLE QUOTE CHARACTER IN TITLE OR DESCRIPTION CAUSES API CONNECT GATEWAY SERVICE TO FAIL |
| IT32040 | TOO MANY REQUEST ERRORS MESSAGE OCCURS WHEN TRANSACTION RATE LIMIT NOT EXCEEDED |
| IT32041 | SECURE GATEWAY CLIENT MIGHT INCORRECTLY RELEASES CONNECTIONS |
| IT32046 | GATEWAY PEERING MIGHT BECOME STUCK IN PENDING STATE |
| IT32095 | CUSTOM POLICIES (UDP) ARE NOT VISIBLE IN API MANAGER UI |
| IT32103 | CONSISTENT BEHAVIOR FOR MESSAGE.STATUS IN API GATEWAY TO MATCH V5 COMPATIBLE GATEWAY |
| IT32109 | 405 NOT RETURNED FOR UNDEFINED METHODS FOR AN API PATH WITH PATH PARAMETERS |
| IT32113 | GATEWAY PEERING GOES DOWN ON TENTH ADDED ASSEMBLY FUNCTION TO API CONNECT GATEWAY SERVICE |
| IT32124 | MISCALCULATION OF IN-USE MEMORY |
| IT32131 | JWE IAT HEADER THROWS PARSE ERROR WHEN NOT NUMERIC |
| IT32139 | WEBGUI NOT DISPLAYING TABS FOR WEB SERVICE PROXY |
| IT32140 | LARGER OUTBOUND JMS MESSAGES CANNOT BE TRANSMITTED TO DESTINATION |
| IT32159 | HIGH CPU AFTER A WEBSPHERE JMS CONNECTION ERROR |
| IT32163 | JWT VALIDATE ISS PCRE NOT WORKING AS EXPECTED |
| IT32177 | POTENTIAL BUFFER OVERFLOW IN OPENSSL (CVE-2019-1551) |
| IT32197 | API MANAGER REGISTRATION FAILS WHEN PASSWORD-PROTECTED KEYS ARE USED |
| IT32202 | VULNERABILITIES IN DOJO LIBRARY (CVE-2019-10785, CVE-2020-5259, CVE-2020-5258) |
| IT32210 | UNABLE TO FIND THE RESOURCE TO ACCESS SPACE NAME IN CONTEXT VARIABLE |
| IT32214 | GENERATING INVALID FOR OAUTH AND SECURITY OBJECTS WHEN X-IBM-NAME IS MORE THAN 107 CHARACTERS |
| IT32239 | FLOAT VALUE MIGHT BE TRUNCATED IN API GATEWAY |
| IT32260 | CANNOT ATTACH OR CONNECT TO GATEWAYSCRIPT DEBUGGER |
| IT32266 | MULTIPLE SECURITY VULNERABILITIES IN HANDLEBARS PACKAGE (API CONNECT GATEWAY SERVICE) |
| IT32277 | DBCS CHARACTERS IN CATALOG SNAPSHOTS MIGHT BE CORRUPTED IN API GATEWAY |
| IT32282 | POTENTIAL DOS IN MQ (CVE-2019-4614) |
| IT32305 | TYPE 8436: PSU SHOWS OUTPUT FAILURE BUT PSU LED IS GREEN |
| IT32323 | MULTIPLE CVES IN JAVA RUNTIME ENVIRONMENT |
| IT32373 | API EXTENSIONS INCORRECTLY APPLIED DURING DRR |
| IT32376 | MULTIPLE CVES IN NODE.JS SHIPPED AS PART OF DATAPOWER FIRMWARE |
| IT32383 | CPU MISCALCULATED FOR DOCKER, LINUX, AND TENANT IMAGES |
| IT32422 | LONG ENUMS IN JSON SCHEMA MIGHT CAUSE A RELOAD |
| IT32470 | DATAPOWER MIGHT RELOAD ON INVALID SUBSCRIPTION DATA |
| IT32498 | CANNOT ORDER URL REWRITE POLICIES IN GUI |
| IT32504 | CANNOT DEFINE API LDAP REGISTRY THAT IS TLS-SECURED |
| IT32521 | NOT EXECUTING SWITCH ACTION WITH SAME CONDITIONS IN ORDER |
| IT32723 | NOT DELIVERING ALL GATEWAY EXTENSIONS DURING DRR |
Fix Pack 10 (2018.4.1.10)
Release date: 2 March 2020
Last modified: 2 March 2020
Status: Available
|
APAR
|
Description
|
| IT30563 | MEMORY USAGE INACCURATE FOR API DOMAIN FROM THE GUI VIEW |
| IT30890 | WHEN A DOMAIN IS QUIESCED, CANNOT IMPORT PASSWORD ALIASES, AND POTENTIALLY OTHER OBJECTS |
| IT30935 | ABSOLUTE-REWRITE PARAMETER IN A URL-REWRITE DUPLICATES ITSELF |
| IT30971 | DATAPOWER MIGHT RESTART WHEN API CONNECT AND DATAPOWER VERSIONS ARE MISMATCHED |
| IT31021 | PROTOCOL HANDLER LOSES ASSOCIATION WHEN GATEWAY SERVICE ADDRESS IS CHANGED |
| IT31083 | PRIVATE KEYS CAN BE VIEWED IN THE GUI |
| IT31092 | AES128-GCM ENCRYPTION ALGORITHM MIGHT CAUSE A RESTART |
| IT31131 | UPDATES FROM API CONNECT INCORRECTLY REPORT THE NEED TO SAVE THE CONFIGURATION |
| IT31230 | API CONNECT CATCH POLICY CANNOT CATCH SOAPERROR EXCEPTION |
| IT31255 | VIRTUAL PLATFORM STATUS PROVIDER UNAVAILABLE IN THE GUI |
| IT31353 | MEMORY GROWTH MIGHT OCCUR DURING LOG MESSAGE PROCESSING |
| IT31371 | SSL CLIENT PROFILE ENFORCES ONLY HOST NAME VALIDATION OR VALIDATION CREDENTIALS |
| IT31407 | INCORRECT SYSLOG TIMESTAMP AFTER DAYLIGHT SAVINGS TIME CHANGES |
| IT31414 | PREVENT DOWNGRADE WARNING WHEN UPGRADING FROM VERSION 2018.4.1.X |
| IT31444 | SLM HIGH-LOW THRESHOLD IS NOT RESETTING |
| IT31464 | DATAPOWER MIGHT RESTART WHEN THE INPUT CONTEXT OF AN EXTRACT ACTION IS NOT AN XML DOCUMENT |
| IT31504 | DATAPOWER MIGHT RELOAD DURING A DOMAIN DEPLOYMENT |
| IT31507 | USERS LOST WHEN DATAPOWER REMOVED FROM CONTAINER |
| IT31527 | SMTP URL-OPEN CALLS MIGHT INCORRECTLY REQUIRE ESCAPING |
| IT31530 | INVOKE TO API GATEWAY RETURNS 500 AFTER REPUBLISHING PRODUCT ON DEVELOPMENT CATALOG. |
| IT31533 | X-CLIENT-IP HEADER IS SET FROM THE GATEWAY ADDRESS INSTEAD OF THE CLIENT ADDRESS |
| IT31546 | DATAPOWER MIGHT RESTART WHEN MANY SSL NETWORK ERRORS ARE BEING WRITTEN TO THE LOG |
| IT31548 | GUI BANNER ALWAYS SHOWING UNSAVED CHANGES |
| IT31636 | DATAPOWER MIGHT SHOW HIGHER LATENCY WHEN ODR IN USE |
| IT31705 | CONTENT-TYPE HEADER IS APPLICATION/JSON WITHOUT CHARSET |
| IT31718 | XSS SECURITY VULNERABILITY |
| IT31721 | JSON SCHEMA VALIDATION ON LARGE SCHEMA MIGHT RESTART DATAPOWER |
| IT31748 | UPDATE HDD FIRMWARE ON TYPE 8441 APPLIANCE |
| IT31806 | GATEWAYSCRIPT ACTION THAT CALLS THE MS.CALLRULE() API OF THE MULTISTEP MODULE MIGHT CAUSE A RESTART. |
| IT31977 | API IS NOT AVAILABLE DURING PRODUCT REPLACE CAUSING TRAFFIC DISRUPTION |
| IT32058 | JRE SECURITY UPGRADE |
| IT32084 | POTENTIAL DENIAL OF SERVICE IN REGULAR EXPRESSION PROCESSING |
Fix Pack 9 (2018.4.1.9)
Release date: 13 December 2019
Last modified: 13 December 2019
Status: Available
|
APAR
|
Description
|
| IT29556 | IMPORTING A DOMAIN WITH A STANDBY-CONTROL OBJECT THAT HAS A NULL VIP CAN CAUSE A RELOAD |
| IT30133 | NTP SERVICE CHANGING AUTOMATICALLY AND ASKING TO SAVE CHANGES. |
| IT30269 | DOMAIN RESTART IS DELAYED, LOGS SHOW CANNOT BE DELETED. IN USE BY: PASSWORD-ALIAS |
| IT30483 | THE ESCAPING FOR A PLUS SIGN IN AN LDAP RDN IS REMOVED DURING PROCESSING. |
| IT30517 | DATAPOWER ON ICP IS RELOADED IF AN API CALL INCLUDES A VALIDATION PROCESS WITH COMPLEX SCHEMA. |
| IT30525 | DATAPOWER MIGHT RELOAD UNEXPECTEDLY DUE TO PROBE USAGE ON A SERVICE CONTAINING ASYNCHRONOUS ACTION |
| IT30565 | AFTER UPGRADE TO 2018.4.1.7 THE DATAPOWER "DELETE ALL RECORDS FROM ALL DOMAINS" GUI ACTION NO LONG WORKS. |
| IT30604 | THE 'DELETE API-RATELIMIT' COMMAND DOES NOT WORK AS DOCUMENTED. |
| IT30607 | EXAMPLE FROM THE MAP POLICY PROPERTY'S INLINE SCHEMA FAILS MAP POLICY TO COMPLETE SUCCESSFULLY |
| IT30611 | ASSEMBLY RATE LIMIT KEY GENERATED IN PLAN-DEFAULT CANNOT BE DELETED |
| IT30716 | ASYNC RATELIMIT DELETE COMMANDS FOR QUOTA-ENFORCEMENT NOT WORKING CORRECTLY. |
| IT30815 | OAUTH EMPTY USER ID CAN RESULT IN RELOAD OF FIRMWARE |
| IT30836 | MEMORY GROWTH MAY OCCUR ON DATAPOWER WHEN USING DISTRIBUTED CACHING FOR OAUTH APIS. |
| IT30858 | TTL VALUE IN FS MODULE IS HANDLED DIFFERENTLY FROM THE SETTING. |
| IT30869 | DATAPOWER MAY RETURN INVALID JSON IN RESPONSE DUE TO ADDING A COMMA. |
| IT30947 | POTENTIAL EXPOSURE OF SENSITIVE DATA (CVE-2018-14348) |
| IT30948 | 2 SSL ISSUES (CVE-2018-0734, CVE-2019-1559) |
| IT30949 | POTENTIAL EXPOSURE OF SENSITIVE DATA (CVE-2018-0495, CVE-2018-12404) |
| IT30950 | SECURITY VULNERABILITIES IN OPENSSL (CVE-2019-1547, CVE-2019-1563) |
| IT31037 | MEMORY GROWTH MAY OCCUR ON DATAPOWER WHEN USING SPECIFIC FUNCTIONS THAT RELATE TO JSONX CONVERSIONS. |
| IT31066 | TLS CLIENT PROFILES DEFINED IN API ASSEMBLY SOMETIMES ARE MISSING IDENTIFICATION AND VALIDATION CREDENTIALS |
| IT31093 | CANNOT BE DELETED ERRORS FOR GATEWAY-PEERING / GATEWAY-PEERING-MANAGER / APIC-GW-SERVICE OBJECTS |
| IT31124 | APIPROBE-SETTINGS IS DOWN ENABLED THE OBJECT HAS NOT PROCESSED ANY CONFIGURATION |
| IT31447 | API CONNECT TEST TOOL MIGHT FAIL TO TEST API IF MULTIPLE APIS HAVE THE SAME PATH |
Fix Pack 8 (2018.4.1.8)
Release date: 29 October 2019
Last modified: 4 December 2019
Status: Available
The original 2018.4.1.8 fix pack published on 29 October 2019 is replaced to include the fixes for IT30849 and IT30923.
|
APAR
|
Description
|
| IT19884 | CPA IMPORT CREATES DEPRECATED SSL PROXY PROFILES |
| IT27493 | IPMI SERIAL-OVER-LAN SESSION MIGHT BE LEFT OPEN IF NOT CLOSED CORRECTLY |
| IT28436 | DATAPOWER JMS CONNECTION IGNORES WEBSPHERE APPLICATION SERVER RETRY SETTINGS |
| IT29519 | SSH SERVICE ON DATAPOWER USE PUBLIC KEY WITH LENGTH 1024 BITS. |
| IT29791 | TLS SERVER PROFILE INCOMPLETELY POPULATED FROM API CONNECT IF IT CONTAINS INTERMEDIATE CA CERTIFICATES |
| IT29881 | MEMORY GROWTH MIGHT OCCUR IN PEER MEMBERS WHEN API RATE LIMITING IS ENABLED. |
| IT29882 | JWT/JWS ISSUE - API GATEWAY NOT COMPLIANT WITH RFC 7797 |
| IT29947 | AFTER RESTORING API CONNECT, THE GATEWAY LOSES CONNECTION |
| IT30022 | SECURITY ACCESS MANAGER MIGHT HANG OR RELOAD ON STARTUP |
| IT30046 | INVOKE ASSEMBLY ACTION MIGHT INCORRECTLY ENCODE THE TARGET URL |
| IT30100 | SOURCE-IMS-CALLOUT OBJECT CAN CAUSE DATAPOWER TO RELOAD DURING CONFIGURATION, STARTUP OR QUIESCE AND RESTART DOMAIN |
| IT30116 | JWS EXP HEADER MIGHT YIELD A PARSE ERROR IF IT IS NUMERIC TYPE |
| IT30150 | THE TEST HARDWARE COMMAND INDICATES PACKET DROPS AS AN INTERFACE ERROR |
| IT30171 | INCONSISTENT API DOWNSTREAM ROUTING BEHAVIOR CAUSED BY PARTIAL MATCH IN PATH TEMPLATE |
| IT30191 | DATAPOWER MIGHT RELOAD DUE TO ODR FAILING TO REBUILD THE ROUTING TABLE WHEN BACKEND CLUSTER IS OFFLINE |
| IT30192 | DATAPOWER MIGHT EXPERIENCE CPU SPIKE AFTER DOMAIN IS QUIESCED |
| IT30201 | DATAPOWER MIGHT RELOAD WHEN THE SQL AND PASSWORD MAP ALIAS INTERACT AT STARTUP |
| IT30223 | API GATEWAY MIGHT PROCESS CONFIGURATION UPDATES SLOWLY AND TIMEOUT |
| IT30246 | DATAPOWER AS SFTP POLLER OR SFTP CLIENT MIGHT LOSE CONNECTION INTERMITTENTLY |
| IT30263 | POTENTIAL KERBEROS DOS |
| IT30264 | POTENTIAL DOS INVOLVING TCP SACK MECHANISM |
| IT30265 | JRE SECURITY UPDATE |
| IT30266 | ADDRESS POTENTIAL HTTP/2 DENIAL OF SERVICE |
| IT30271 | API CONNECT GATEWAY SERVICE MIGHT GO DOWN IF CONFIGURED WITH V5 COMPATIBILITY AND RBM |
| IT30284 | DOCUMENT CACHE RETAINS INVALID STATE OF URL DOCUMENT WHEN HEAD RESPONSE ON EXPIRED DOCUMENT HAS CONTENT-LENGTH OF 0. |
| IT30295 | POST REQUEST SENT TO GUI URI DP/INDEX.HTML SHOULD NOT RETURN A HTTP 200 RESPONSE CODE |
| IT30303 | GET REQUEST SENT TO AN INVALID GUI URL INCORRECTLY RETURNS A HTTP 200 RESPONSE CODE |
| IT30438 | TYPE 8441: MISSING SEVERAL SENSORS FROM THE ERROR REPORT |
| IT30439 | IPMI SEL UNAVAILABLE IN DIAGNOSTICS MODE |
| IT30492 | DATAPOWER MAY FAIL TO START IN KUBERNETES OR DOCKER ENVIRONMENT DUE TO INCORRECT CPU CORE CALCULATION |
| IT30493 | LATENCY AND EXTLATENCY LOG MESSAGES MIGHT CONTAIN INCORRECT INFORMATION WHEN REQUEST IS HTTP GET |
| IT30513 | DATAPOWER FOR DOCKER, DATAPOWER FOR LINUX: DISABLING MEMORY THROTTLE DUE TO INCORRECT MEMORY MANAGEMENT |
| IT30567 | SUBSCRIBER GATEWAY PEERING INSTANCE INCORRECTLY MANAGES TCP CONNECTIONS |
| IT30615 | WHEN SERVER CREDENTIAL VALIDATION ENABLED IN API CONNECT, DATAPOWER DISABLED DESPITE PROVIDED TRUSTSTORE |
| IT30849 | INTERMITTENT API INVOCATION FAILURES ON THE GATEWAYS |
| IT30923 | INVOKE ASSEMBLY ACTION MIGHT INCORRECTLY TRUNCATE THE PATH OF THE TARGET URL |
Fix Pack 7 (2018.4.1.7)
Release date: 13 August 2019
Last modified: 26 August 2019
Status: Available
|
APAR
|
Description
|
| IT23601 | B2B HIGH-AVAILABILITY MIGHT FAIL TO WORK CORRECTLY IF USING A HOST-ALIAS FOR REPLICATION LISTENER ADDRESS |
| IT23808 | FORMAT:EMAIL IN JSV, REFERENCED BY ANOTHER JSV BEING COMPILED RESULTS IN CATASTROPHIC COMPILE ERROR |
| IT23870 | DATAPOWER ON DEMAND ROUTER (DP-ODR) MIGHT CAUSE RELOAD |
| IT28401 | DATAPOWER INCORRECTLY ESCAPES SEQUENCE OF 2 REVERSE SOLIDUS CHARACTERS USING DP:ENCODE(_, JSON-ESCAPE ) |
| IT28435 | DATAPOWER FTP POLLER HANDLER UNABLE TO PROCESS FILE THAT HAS SPECIAL CHARACTERS IN THE FILENAME |
| IT28534 | ETHERNET COUNTERS MIGHT WRAP AT 4294967296 AND DISPLAY INCORRECT VALUES |
| IT28633 | DATAPOWER MIGHT RELOAD DURING A SECURE BACKUP. |
| IT28734 | RELOAD WHEN USING DP:GET-METADATA EXTENSION FUNCTION WHEN PROBE IS ENABLED |
| IT28859 | DATAPOWER MQ URL-OPEN CONNECTIONS MIGHT RESULT IN FREQUENT RELOADS |
| IT28867 | PARSE ACTION WITH A NULL OUTPUT CONTEXT MIGHT RELOAD THE DEVICE |
| IT28891 | ODR COMPONENT MIGHT CAUSE A RESTART ON DATAPOWER APPLIANCES WITH OLDER ODR LIBRARY VERSIONS |
| IT28895 | HTTP FRONT SIDE HANDLER MIGHT NOT BE READY FOR SUBSEQUENT TRANSACTION AND DATAPOWER MIGHT RELOAD |
| IT28936 | DATAPOWER MIGHT RELOAD WHEN INQUIRING THE QUEUE INFORMATION WITH DYNAMIC MQ URL WITHOUT DEFINING THE HOST IP |
| IT29001 | TYPE 8441 HSM3 DOES NOT ALLOW EXPONENT 3 KEYS |
| IT29022 | SLM PEERING MIGHT NOT WORK CORRECTLY DUE TO TRANSACTION ID BEING INCORRECTLY MAPPED |
| IT29026 | DATAPOWER MIGHT RESTART WHEN LOGGING SSL ERROR MESSAGES UNDER HIGH LOAD |
| IT29105 | THE SENDER MAC ADDRESS FIELD IN THE GRAT ARP CAN TO GO TO ALL 0S AFTER SOME PERIOD OF TIME |
| IT29177 | SFTP/SSH CONNECTION MIGHT WATCHDOG AND GENERATE A BACKTRACE IN TEMPORARY |
| IT29199 | SNMP MIGHT STOP RESPONDING AND AN UNEXPECTED RELOAD MIGHT BE SEEN |
| IT29214 | CONNECTION FAILURES WITH CERTAIN FEATURES SUCH AS TIBCO-EMS AND JMS MIGHT RESULT IN EMPTY STATUS PROVIDERS OR RELOAD |
| IT29236 | DATAPOWER MIGHT ERRONEOUSLY CANCEL TRANSACTION IF TRANSACTION TIMEOUT IS SET IN CONJUNCTION WITH PERSISTENT CONNECTIONS |
| IT29269 | DATAPOWER MIGHT RELOAD IF THE HTTP FRONT SIDE CONNECTION TERMINATED BEFORE THE ASYNC ACTION IN B2B GATEWAY COMPLETED |
| IT29271 | SAVING THE CONFIGURATION IN WEB GUI NOT POSSIBLE ON CRL RETRIEVAL INCERTAIN SCENARIOS |
| IT29326 | VERIFY ACTION FAILS WITH CERTIFICATE NOT FOUND IF ISSUER CONTAINS SPECIAL CHARACTERS |
| IT29353 | API CONNECT GATEWAY SERVICE, API-PROBE, API-SECURITY-TOKEN-MANAGER NEED DEFAULT CONFIGURATION TO ALLOW DISABLED AND DOWN STATE |
| IT29364 | SPECIAL CHARACTERS IN DATAPOWER NAME MIGHT CAUSE DOWNLOAD FAILURE OF AN ILMT FORCE SCAN PACKAGE. |
| IT29420 | THE CONSECUTIVE SLASHES IN THE QUERY STRING OF AN API REQUEST WILL BE STRIPPED UNEXPECTEDLY |
| IT29446 | MEMORY USE MIGHT GROW AND NEVER RELEASE, IF GATEWAY PEERING IS ENABLED |
| IT29457 | DATAPOWER GATEWAY MIGHT HAVE PROBLEMS TRYING TO SYNC CATALOGS FROM THE API MANAGER |
| IT29488 | API CONNECT GATEWAY SERVICE MAY NOT BE ABLE TO SYNC FOR LARGE CATALOGS |
| IT29502 | PLS-00306: WRONG NUMBER OR TYPES OF ARGUMENTS IN CALL TO (STARED_PROCEDURE_NAME) |
| IT29523 | ERROR MESSAGE IS INCORRECT WHEN SETTING NEW PASSWORD TO CURRENT PASSWORD WITH PASSWORD CONTROL-REUSE SETTING |
| IT29533 | GZIP RESPONSE PAYLOADS CANNOT BE PASSED THROUGH TO THE CLIENT |
| IT29544 | ARCFOUR (RC4) AND 3DES CIPHERS ARE NO LONGER IN DEFAULT LIST |
| IT29549 | DATAPOWER WEBGUI DOES NOT DISPLAY A VALIDATION CREDENTIAL ON THE SSL CLIENT PROFILE WHEN HOST NAME VALIDATION FAIL ON ERROR |
| IT29603 | DATAPOWER MIGHT LOG OAUTH TOKENS AT INFORMATION LEVEL |
| IT29677 | CSRF SUPPORT MIGHT YIELD 500 ERRORS IN WEBGUI |
| IT29691 | GATEWAY RETURNS ERROR WHEN CALL API WITH PATCH OPERATION |
| IT29703 | ADDRESS COMMAND INJECTION VULNERABILITY (CVE-2019-4294) |
| IT29747 | ASSEMBLY INVOKE ACTION MIGHT RETURN 500 ERROR |
| IT29895 | CATALOG METADATA COMMUNICATION BY API MANAGER TO API CONNECT GATEWAY SERVICE MIGHT BE PROCESSED SLOWLY |
| IT29897 | IF API CONNECT GATEWAY SERVICE RECEIVES CONFIGURATION DATA FROM API MANAGER IN WRONG ORDER, PROCESSING MIGHT BE SLOWER |
| IT29943 | API GATEWAY SERVICE EXPECTS X509 CERTIFICATE WITHOUT LINE BREAKS |
| IT30030 | ERROR 404 WHEN USING SWAGGER DATE FORMAT FOR PATH PARAMETER |
Fix Pack 6 (2018.4.1.6)
Release date: 12 June 2019
Last modified: 12 June 2019
Status: Available
|
APAR
|
Description
|
| IT25188 | DATAPOWER MIGHT WRITE TO THE INPUT CONTEXT TO OUTPUT CONTEXT WHEN NULL IS USED FOR A FILTER OR XFORM ACTION |
| IT27954 | DATAPOWER MIGHT NOT CORRECTLY PROCESS WEBSOCKET UPGRADE WHEN RESPONSE TYPE IS JSON |
| IT28391 | DOMAIN RELOAD MIGHT TAKE EXTRAORDINARILY LONG TIME IF A VERY HIGH NUMBER OF SIMILAR OBJECTS ARE DEPLOYED ACROSS MANY DOMAINS |
| IT28423 | GENERATING ERROR REPORT WHEN GATEWAYSCRIPT (JAVASCRIPT HEAP) IS OUT OF MEMORY RESULTS IN AN UNEXPECTED RELOAD |
| IT28609 | A SINGLE GWS ACTION RUNNING MULTIPLE ASYNCHRONOUS URLOPEN.OPEN CALLS MAY HANG IF ERRORS OCCUR ON THE OPEN CALL. |
| IT28667 | DATAPOWER MIGHT RELOAD IF CERTIFICATE OBJECTS ARE UPDATED WHILE BEING USED FOR ACTIVE TRANSACTIONS |
| IT28669 | WTX TRANSACTIONS MIGHT FAIL WITH INTERNAL ERROR |
| IT28795 | FTP SERVER HANDLER MIGHT SUFFER CLOSE-WAIT CONNECTIONS AND CONTRIBUTE TO CPU HIGH |
| IT28798 | MS SQL STORED PROCEDURES FAIL POST UPGRADE |
| IT28850 | DATAPOWER MIGHT EXPERIENCE A RELOAD WHILE ATTEMPTING TO LOG SSL ERROR INFORMATION |
| IT28885 | DATAPOWER MIGHT RELOAD UNEXPECTEDLY IF OAUTH SCOPE IS RETURNED EMPTY FOR INTROSPECTION |
| IT28902 | ENABLE USE OF GARBAGE COLLECTION ON DOCKER |
| IT28908 | UPDATE SECURE GATEWAY CLIENT ON DATAPOWER TO SGC 1.8.2FP1 |
| IT28956 | BASE64 CREDENTIALS MIGHT BE ECHOED BACK FOR SOME XML-MGMT RESPONSES |
| IT28992 | LARGE MIME ATTACHMENTS MAY BE MISSING END BOUNDARY WHEN USING DYNAMIC ROUTING |
| IT28999 | MIME CONTENT-ENCODING HEADER RFC CHECK MIGHT IGNORE SOME INVALID VALUES |
| IT29004 | ADMIN USER IS ENABLED BY DEFAULT FOR IPMI ACCESS |
| IT29058 | WHEN THE DATA SOURCE OBJECT STATUS IS NOT STABLE, DATAPOWER MIGHT INCORRECTLY REPORT ODBC LICENSE ERROR |
| IT29074 | DATAPOWER MIGHT RELOAD UNEXPECTEDLY IF IN-FLIGHT TRAFFIC MEETS AN IN-PROGRESS API GATEWAY CONFIGURATION CHANGE |
| IT29143 | CALLS TO AN API OPERATION MIGHT ROUTE TO THE WRONG API WHEN THE OPERATION AND URL PATH ARE NOT UNIQUE |
| IT29289 | API CONNECT GATEWAY SERVICE FAILS TO START WHEN GATEWAY PEERING USES A P12 CERTIFICATE WITH PASSWORD |
| IT29314 | SOME SPECIAL CHARACTERS IN PASSWORD CAUSE HTTP AUTHENTICATION TO FAIL |
Fix Pack 5 (2018.4.1.5)
Release date: 29 April 2019
Last modified: 29 April 2019
Status: Available
|
APAR
|
Description
|
| IT28426 | SLM RATE LIMIT POLICY IS NOT WORKING FOR DAILY INTERVALS |
| IT28720 | A JWS '?HTTP://OPENBANKING.ORG.UK/IAT' HEADER MIGHT YIELD A PARSEERROR FOR INVALID TYPE WHEN SETTING IT IN A PROTECTED HEADER |
| IT28772 | DATAPOWER IS AFFECTED BY CWE-1021 |
| IT28825 | DATAPOWER MAY RELOAD WHEN AN API IS CALLED JUST AFTER THE APIS HAVE BEEN PUBLISHED FROM API CONNECT. |
| IT28828 | POTENTIAL ORACLE ATTACK IN DATAPOWER SSL. |
| IT28833 | REQUEST HEADER WITH MORE THAN 200 CHARACTERS CAUSES RESTART OF PODS |
| IT28834 | POTENTIAL SPOOFING ATTACK VULNERABILITY IN DATAPOWER SCP. |
| IT28893 | JRE SECURITY UPDATE |
Fix Pack 4 (2018.4.1.4)
Release date: 1 April 2019
Last modified: 1 April 2019
Status: Available
|
APAR
|
Description
|
| IT26450 | CONFIGURATION MIGHT BE DUPLICATED ON DOMAIN RESTART RESULTING IN INSTABILITY WHEN MANAGING CONFIGURATION |
| IT26756 | UNABLE TO EXECUTE CONFIG://DPPATTERNS.CFG STARTUP ERROR AFTER UPGRADE FROM PRE-7.5 VERSION TO 760 |
| IT27065 | DATAPOWER MIGHT UNEXPECTEDLY RELOAD USING THE WEB SERVICE MANAGEMENT AGENT |
| IT27073 | DATAPOWER CLI TEST TCP-CONNECTION TIMEOUT PARAMETER IS NOT HONORED |
| IT27113 | DATAPOWER MIGHT RELOAD UNEXPECTEDLY IF TRACEROUTE OR PING CANNOT FIND A VALID ROUTE |
| IT27167 | MQ FILE MISSING NOTIFICATION UPON WEBGUI LOGOUT |
| IT27282 | DATAPOWER MAY RESTART UPON ENABLING RAID OBJECT |
| IT27286 | MISMATCH OF BACKUP MODE BETWEEN WEBGUI AND CLI |
| IT27355 | USING LOADBALANCER GROUP PARTIAL HEALTHCHECK DATAPOWER MIGHT RELOAD UNEXPECTEDLY |
| IT27495 | DATAPOWER MIGHT RELOAD WHEN CHECKPOINTS ARE TAKEN |
| IT27651 | DATAPOWER MIGHT FACE UNEXPECTED RELOAD IN RARE CIRCUMSTANCES THAT INVOLVE MQ CONNECTIVITY ON FRONT AND BACKSIDE. |
| IT27726 | MQ CONNECTION STATUS SHOWS HIGH NUMBER OF ACTIVE CONNECTIONS |
| IT27799 | SFTP SERVER HANDLER DOES NOT CONVERT FILE SIZES OVER 2GB CORRECTLY |
| IT27873 | DATAPOWER MIGHT RELOAD IF SFTP URL-OPENER FACES CONNECTIVITY ISSUE WITH SFTP BACKEND |
| IT27949 | PUBKEY-AUTH POLICY MIGHT NOT INCLUDE THE USER WHEN CONNECTING TO SFTP BACKENDS |
| IT28088 | REQUESTS MIGHT HANG IF HTTP RESPONSE HAS COMPRESSION ENABLED BUT NO DATA IN THE BODY |
| IT28138 | API GATEWAY SERVICE DOES NOT PROPERLY BIND TO SINGLE IP |
| IT28338 | WHEN AN API IS CALLED OR PUBLISHED, THE DATAPOWER WEBGUI SAYS THAT CONFIG HAS CHANGED |
| IT28375 | SOAP API REQUEST WITHOUT CONTENT-TYPE HEADER TO A DATAPOWER API GATEWAY WITH A SOAP API MIGHT CAUSE GATEWAY TO RELOAD |
| IT28381 | DATAPOWER MAY FAIL TO CONVERT KDB TO SSL PROXY PROFILE WITH MQ 9.0.0.1 KDB |
| IT28389 | POSSIBLE INCORRECT VALUE OF QUOTA ENFORCEMENT RATELIMIT USING CONCURRENT METHOD |
| IT28413 | WHILE CALLING API FROM ASSEMBLY, IT SHOWS CORS ERROR AND 400 BAD REQUEST |
| IT28450 | THE FAILOVER MAY NOT HAPPEN TO QUOTA ENFORCEMENT SERVER WHEN A NETWORK GOES DOWN. |
| IT28455 | UPGRADING DATAPOWER ON LINUX TO FIRMWARE VERSION 2018 REQUIRES ACCEPTANCE OF LICENSE IN WEBGUI |
| IT28494 | JSON SCHEMA COMPILATION FAILS WHEN ENUM PROPERTY ARE LARGER THAN 999999 |
| IT28542 | UPDATE SECURE GATEWAY CLIENT ON DATAPOWER TO SGC 1.8.2 |
| IT28551 | B2B GATEWAY RELOAD OCCURS WITH LOTS OF OBJECTS OR CLIENT PROFILES |
| IT28561 | UNABLE TO APPLY WS-PROXY CHANGES USING WEBGUI |
Fix Pack 3 (2018.4.1.3)
Release date: 4 March 2019
Last modified: 4 March 2019
Status: Available
|
APAR
|
Description
|
| IT25713 | WEBGUI MAY RETURN 500 INTERNAL ERROR WHEN INTERACTING. |
| IT27324 | DATAPOWER MAY RANDOMLY RESTART WHILE PARSING A MULTISTEP REQUEST |
| IT27378 | DATAPOWER MAY RELOAD WHEN USING GATEWAYSCRIPT WITH LARGE ARRAY LENGTH IN SOME SPECIFIC CASES. |
| IT27872 | WRONG HANDLING OF SOAPACTION HEADER IN EXPOSED SOAP SERVICES CAUSES HTTP 404 |
| IT28017 | A JWS B64 HEADER MIGHT YIELD A PARSE ERROR FOR INVALID TYPE WHEN SETTING IT IN A PROTECTED HEADER |
| IT28081 | API GATEWAY OAUTH SECURITY OBJECTS CAN BE CONFIGURED WITH NO SCOPES. |
| IT28095 | DATAPOWER MIGHT UNEXPECTED RESTART WHEN USING APIM GATEWAYSCRIPT MODULE |
| IT28099 | JWT GENERATE ASSEMBLY ACTION MAY RETURN A GENERIC 500 ERROR |
| IT28168 | DATAPOWER MIGHT CRASH WITH MISMATCH OF GATEWAY PEERING CONFIGURATION AMONG PEERS IN A PEER GROUP |
| IT28240 | SLM POLICY DOES NOT WORK WHEN CALLED FROM ANOTHER RULE IN MULTISTEP |
Fix Pack 2 (2018.4.1.2)
Release date: 1 February 2019
Last modified 1 February 2019
Status: Available
|
APAR
|
Description
|
| IT26947 | ARBITRARY MESSAGE INJECTION VULNERABILITY IN DATAPOWER GUI (CVE-2018-1666) |
| IT27132 | JAVA SECURITY UPDATE (CVE-2018-3180) |
| IT27142 | FIX TWO OPENSSL ISSUES (CVE-2018-0734, CVE-2018-5407) |
| IT27162 | NODE.JS SECURITY UPDATE (CVE-2018-12123) |
| IT27275 | SENSITIVE INFORMATION DISCLOSURE (BASE64 BASIC AUTH CREDENTIALS REFLECTED BACK IN RESPONSE HEADER) |
| IT27470 | DATAPOWER MAY REBOOT UNEXPECTEDLY WHEN THE APPLICATION OPTIMIZATION OPTION IS ENABLED, AND THE NETWORK IS UNSTABLE. |
| IT27698 | IPMI NULL USER-LEVEL LOGIN PERMITTED |
| IT27721 | DATAPOWER MAY NOT CORRECTLY HANDLE CORS PREFLIGHT REQUEST |
| IT27725 | API PATH AND OPERATION REQUESTS WOULD BE ALLOWED EVEN IF REQUIRED PARAMETERS ARE MISSING. |
| IT27741 | DATAPOWER GATEWAY DOES NOT RETRY UNSUCCESSFUL 911 CALL AFTER REGISTRATION FAILS |
| IT27815 | EVEN IF TLS 1.0 AND 1.1 IS DISABLED FOR API CONNECT GATEWAY SERVICE, IT IS STILL ALLOWED. |
| IT27889 | TENANT INSTALLATION FAILS WITH LICENSE ACCEPTANCE ERROR IF RBM SETTINGS ON FOR CLI. |
| IT28046 | DATAPOWER MIGHT RESTART WHEN MULTIPLE CONFIGURATION CHANGES OCCUR IN PARALLEL. |
| IT28282 | API AUTHENTICATION FAILS WITH LDAP USING TLS. |
Fix Pack 1 (2018.4.1.1)
Release date: 14 December 2018
Last modified : 14 December 2018
Status: Available
|
APAR
|
Description
|
| IT25836 | AAA NETEGRITY POLICY MAY ADD WHITESPACE TO SET-COOKIE HEADER VALUE ERRONEOUSLY |
| IT26010 | DATAPOWER STARTUP CONFIG ERRORS |
| IT26214 | B2B TRANSACTIONS WITH SOME CPA ENTRIES TEMPORARY NOT OPERATIONAL COULD CAUSE A RELOAD |
| IT26241 | HEADER COALESCE SHOULD USE , DELIMITER BY DEFAULT. |
| IT26554 | ARP RESPONSES MAY BE RANDOMLY DELAYED IF MORE THAN ONE VIP IN SAME SUBNET |
| IT26851 | HTTP STRICT TRANSPORT SECURITY HEADERS ARE ALWAYS INJECTED IN WEBGUI FLOWS |
| IT26948 | CROSS SITE REQUEST FORGERY (CSRF) VULNERABILITY IN DATAPOWER GUI (CVE-2018-1661) |
| IT27020 | DATAPOWER DOES NOT PROCESS HTTP HEADER VALUE CORRECTLY FOR THE SUPPLEMENT LATIN-1 CHARACTERS |
| IT27107 | ALWAYS REMOVE AUTHORIZATION HEADER FROM RESPONSE FOR OAUTH |
| IT27258 | IMPROVE BUFFER TO REDUCE PROCESSING LATENCY |
| IT27844 | POOR INPUT VALIDATION ON /AUTHORIZE CALL OF OAUTH API |
2018.4.1
Release date: 15 November 2018
Last modified: 15 November 2018
Status: Available
|
APAR
|
Description
|
| IT23272 | XSLT COMPILER MIGHT DEAL INCORRECTLY WITH <XSL:APPLY-TEMPLATES/> WITHOUT A SELECT ATTRIBUTE |
| IT24777 | CORRECTED REST MANAGEMENT INTERFACE TO PROPERLY USE PORT 5554 |
| IT24885 | UNEXPECTED RESTART MIGHT OCCUR ON STARTUP IF INCOMPLETE OBJECTS ARE PERSISTED TO AUTOCONFIG.CFG |
| IT25219 | ERRORS MIGHT OCCUR AFTER ADDING/REMOVING SUBSCRIPTIONS TO APIS |
| IT25233 | SOME STATUS PROVIDERS MIGHT COMPUTE INCORRECT AVERAGES |
| IT25471 | DEVICE MIGHT RESTART UNEXPECTEDLY DUE TO MQ ROLLBACK WHEN UNITS OF WORK IS GREATER THAN 0. |
| IT25545 | UNEXPECTED RESTART MIGHT OCCUR WHEN USING SMTP URL-OPEN. |
| IT25653 | TRANSACTION MIGHT FAIL WHEN JMS AND TIBCO PROTOCOLS ARE USED WITH B2B GATEWAY |
| IT25752 | GUI DOES NOT RERENDER IF SWITCHING WEB SERVICE PROXY PROXY SETTINGS TAB BACKEND TYPE RADIO BUTTON |
| IT25763 | DATAPOWER MIGHT RESTART UNEXPECTEDLY WITH THE USE OF GATEWAYSCRIPT CLEARTIMEOUT METHOD |
| IT25934 | INTERMITTENTLY DP:URL-OPEN MIGHT TRUNCATE DATA IN A NON-2XX HTTP RESPONSE |
| IT26044 | TYPE 8441 BIOS DATE IS RESET TO 1998-1-1 |
| IT26067 | DATAPOWER MIGHT RESTART IN RARE CIRCUMSTANCES OF HTTP(S) URL-OPEN FACING A BACKEND CONNECTIVITY ISSUE |
| IT26071 | DATAPOWER MIGHT RESTART IN RARE SITUATIONS OF AUTOMATICALLY RESENDING B2B TRANSACTIONS AFTER UPGRADE |
| IT26122 | INLINE CLI COMMAND TO CREATE HEALTH CHECK DOES NOT RECOGNIZE SSL CLIENT PARAMETERS |
| IT26209 | MQ FRONT SIDE WITH HTTP(S) BACKEND MIGHT UNEXPECTEDLY WATCHDOG AND RESTART DATAPOWER |
| IT26225 | CANNOT MODIFY THE LANGUAGE WHEN USING DATAPOWER ON DOCKER. |
| IT26263 | POTENTIAL DENIAL OF SERVICE IN NODE.JS |
| IT23272 | XSLT COMPILER MIGHT DEAL INCORRECTLY WITH <XSL:APPLY-TEMPLATES/> WITHOUT A SELECT ATTRIBUTE |
| IT26335 | DATAPOWER VULNERABILITY: INSUFFICIENT INPUT VALIDATION (CVE-2018-1667) |
| IT26353 | LOW TEMPORARY AND ENCRYPTED SPACE. |
| IT26363 | SECURITY APAR CVE-2018-1662 - USER ACCESS LEVEL USER ALLOWS ACCESS ESCALATION IN WEB GUI |
| IT26364 | SECURITY APAR CVE-2018-1663 - DATAPOWER ADMIN UI AND XML MANAGEMENT INTERFACES MISSING HSTS HEADER |
| IT26419 | DATAPOWER MIGHT UNEXPECTEDLY RELOAD IF DEBUG LEVEL SSL LOGGING IS ENABLED |
| IT26529 | DATAPOWER MIGHT LOG A COMPILATION WARNING FROM VERIFY.XSL EVEN IF THE SERVICE IS WORKING WITHOUT ISSUE. |
| IT26668 | UNKNOWN LOG MESSAGES (SYSTEM-WSGW-MANAGEMENT-POLICY) |
| IT26802 | SECURITY VULNERABILITIES IN DATAPOWER WEBGUI. |
7.7.1.3
Release date: 28 August 2018
Last modified: 28 August 2018
Status: Available
|
APAR
|
Description
|
| IT25575 | WRONG RESOURCE OWNER IS SELECTED WHEN GENERATING A JSON WEB TOKEN FROM AAA MAP CREDENTIAL FILE |
| IT25805 | DATAPOWER SNMP ALERT DPSTATUSENVIRONMENTALSENSORSPOWERSUPPLY UPDATED TO DETECT AC POWER LOST FOR BOTH PSUS |
| IT25911 | SECURITY VULNERABILITY IN OPENSSL |
| IT25931 | SPACE NAME AND SPACE ID NOT PASSED IN ACTIVITY LOG |
| IT25958 | JAVA SECURITY UPDATE |
| IT25959 | SECURITY ISSUES IN OPENSSL |
| IT25995 | SLOW MEMORY GROWTH SEEN WHEN USING AAA OR WTX PROCESSING |
| IT25961 | TIMING ATTACK ON RSA DECRYPTION IN OPENSSL |
| IT26012 | UNEXPECTED BEHAVIOR WITH UNSUPPORTED SECURITY ACCESS MANAGER (ISAM) VERSIONS |
| IT26030 | SENSITIVE INFORMATION DISCLOSURE IN DATAPOWER MANAGEMENT AUTHENTICATION INFORMATION IN RESPONSE HEADERS. |
| IT26084 | XML EXTERNAL ENTITY INJECTION (XXE) VULNERABILITY IN DATAPOWER GUI (CVE-2018-1669) |
7.7.1.2
Release date: 27 July 2018
Last modified: 27 July 2018
Status: Available
|
APAR
|
Description
|
| IT24329 | QUIESCE CAN PREVENT OBJECTS FROM BEING DELETED |
| IT24375 | DATAPOWER SCHEMA COMPILER MIGHT INCORRECTLY GENERATE COMPILE ERROR RELATED TO XS:RESTRICTION |
| IT25130 | DATAPOWER DNS ROUND ROBIN ALGORITHM DOES NOT HONOR TCP BASED DNSRESPONSE |
| IT25176 | B2B TRANSACTION VIEWER PROVIDES EMPTY DOCUMENTS |
| IT24791 | A SERVER DIFFERENT FROM THE SERVER THAT EXECUTED QUOTA-ENFORCEMENT-SWITCH-MASTER COMMAND BECOMES THE MASTER |
| IT25289 | DATAPOWER RESTARTS MIGHT OCCUR WHEN CALLING AN API WITH INCORRECT SOAPACTION HEADER |
| IT25539 | DATAPOWER MIGHT RESTART WHILE VALIDATING CREDENTIALS DURING AN SSL HANDSHAKE |
| IT25597 | ERROR MAY OCCUR AFTER ADDING/REMOVING SUBSCRIPTION TO APIS |
| IT25962 | SECURITY VULNERABILITIES IN OPENSSL |
| IT25602 | ADDING AND/OR REMOVING SUBSCRIPTIONS MAY LEAD TO ERRORS WHEN PUBLISHING A PRODUCT |
| IT25603 | TRIGGERING 911 - CLEANING UP INACTIVE JOBS CAN THROW EXCEPTION |
| IT25605 | CONFIGURING REGISTRATION VALIDATION FAILS IF THERE IS NO CATALOGS SENT IN PAYLOAD |
7.7.1.1
Release date: 29 June 2018
Last modified: 29 June 2018
Status: Available
|
APAR
|
Description
|
| IT21452 | DATAPOWER CANNOT PARSE UTF8 BOM PREFIXED XML IF BOM IS SPLIT ON DIFFERENT TCP PACKETS |
| IT21491 | GATEWAYSCRIPT FILE WITH TRANSFORM.XSLT() MISSES XSLT CLEANUP THAT MIGHT LEAK MEMORY |
| IT21452 | DATAPOWER CANNOT PARSE UTF8 BOM PREFIXED XML IF BOM IS SPLIT ON DIFFERENT TCP PACKETS |
| IT24052 | UNEXPECTED RESTART OF ISAM REVERSE PROXY |
| IT24359 | RBM LDAP SETTINGS REQUIRE HOST AND PORT VALUES IN GUI, AFTER LOAD BALANCER GROUP IS SET |
| IT24651 | DATAPOWER LOAD BALANCER GROUP UNABLE TO HANDLE MULTIPLE SETCOOKIE |
| IT24731 | SECURE RESTORE MIGHT FAIL FOR LARGE FILE SIZES |
| IT24896 | SOME OBJECTS MIGHT BE ENABLED BUT DOWN EVEN THOUGH THE FEATURE IS NOT ACTIVATED |
| IT24906 | DOMAIN CLEANUP MIGHT NOT COMPLETE SUCCESSFULLY LEAVING OLD OBJECTS THAT MIGHT LEAD TO INSTABILITY |
| IT24941 | A LOG TARGET STATUS MEMORY VALUE IS NOT CORRECT, ALWAYS BEING TOO LOW |
| IT24998 | AAA DYNAMIC CONFIGURATION CANNOT HANDLE MULTIPLE LTPA ATTRIBUTES |
| IT25078 | CONSOLE MODULE IN GATEWAYSCRIPT ACTION RESTART ISSUE WHEN PASSING SOME ESCAPED CHARACTER |
| IT25120 | DATAPOWER NETWORK INTERFACES NOT LABELED PROPERLY. |
| IT25198 | JSON STRINGS MIGHT FAIL TO PARSE IN AAA POLICY WHEN IT CONTAINS RESERVED XML CHARACTERS |
| IT25303 | AAA CUSTOM PASSWORD RETRIEVAL FOR DERIVED-KEY IDENTITY EXTRACTION MIGHT FAIL |
| IT25410 | URLOPEN.OPEN() API IN GATEWAYSCRIPT ACTION SUPPORTS GET/DELETE/HEAD WITH DATA |
| IT25469 | DATAPOWER GUI AND SOME NETWORK INTERFACES MIGHT FAIL TO START WHEN THE ENCRYPTED SPACE IS LOW |
| IT25604 | CRASHED GATEWAY DIRECTOR MAY LEAVE REGISTRATION LOCK PREVENTING ANY NEW REGISTRATION |
| IT25670 | [PSIRT] CRYPTOGRAPHIC LIBRARY UPDATE |
7.7.1.0
Release date: 8 June 2018
Last modified: 8 June 2018
Status: Available
|
APAR
|
Description
|
| IT24970 | ERROR MESSAGE: REQUIRED PROPERTY GATEWAY-PEERING IS MISSING WHEN NOT CONFIGURING API CONNECT |
7.7.0.2
Release date: 20 April 2018
Last modified: 20 April 2018
Status: Available
|
APAR
|
Description
|
| IT24787 | ADDRESS PROBLEMS WITH API CONNECT INTEGRATION |
7.7.0.1
Release date: 5 April 2018
Last modified: 5 April 2018
Status: Available
|
APAR
|
Description
|
| IT24621 | ADDRESS PROBLEMS WITH API CONNECT INTEGRATION |
7.7.0.0
Release date: 30 March 2018
Last modified: 30 March 2018
Status: Available
|
APAR
|
Description
|
| IT19401 | DATAPOWER MAY INACCURATELY LOG BACKEND RESPONSE AS CONNECTION FAILURE |
| IT20862 | LATENCY AND EXTLATENCY LOG MESSAGES MAY CONTAIN INCORRECT INFORMATION WHEN REQUEST IS HTTP GET |
| IT22019 | CHANGE TO LOG MESSAGES RELATED TO MIME |
| IT24076 | URL-OPEN MAY PROCESS BACKEND ERRORS DIFFERENTLY WHEN FOLLOWING A REDIRECT |
| IT24130 | NON-MAIN TASK MAY EXHIBIT UNEXPECTED BEHAVIOR IF IT IS STOPPED AND THEN LATER STARTED |
| IT24881 | POTENTIAL VULNERABILITY IN THE SSL COMPONENT OF IBM DATAPOWER GATEWAYS |
| IT25182 | QUOTA ENFORCEMENT SERVER USES DES-CBC3-SHA CIPHER FOR INTERNAL COMMUNICATION |
Change history
Last modified: 26 April 2023
- 26 April 2023: Added fix list for 2018.4.1.26.
- 22 February 2023: Added fix list for 2018.4.1.25.
- 14 December 2022: Added fix list for 2018.4.1.24.
- 26 October 2022: Added fix list for 2018.4.1.23.
- 24 August 2022: Added fix list for 2018.4.1.22.
- 21 June 2022: Added fix list for 2018.4.1.21.
- 28 April 2022: Added fix list for 2018.4.1.20.
- 21 February 2022: Added fix list for 2018.4.1.19.
- 1 October 2021: Added fix list for 2018.4.1.18.
- 6 August 2021: Added fix list for 2018.4.1.17.
- 2 April 2021: Added fix list for 2018.4.1.16.
- 1 February 2021: Added fix list for 2018.4.1.15.
- 18 November 2020: Added fix list for 2018.4.1.14.
- 31 August 2020: Added fix list for 2018.4.1.13.
- 26 June 2020: Added fix list for 2018.4.1.12.
- 11 May 2020: Added fix list for 2018.4.1.11.
- 2 March 2020: Added fix list for 2018.4.1.10.
- 13 December 2019: Added fix list for 2018.4.1.9.
- 18 November 2019: Added IT30849 and IT20923 to the fix list for the refreshed 2018.4.1.8.
- 29 October 2019: Updated fix list for the original 2018.4.1.8.
- 26 August 2019: Updated fix list for 2018.4.1.7.
- 13 August 2019: Added fix list for 2018.4.1.7.
- 12 June 2019: Added fix list for 2018.4.1.6.
- 29 April 2019: Added fix list for 2018.4.1.5.
- 1 April 2019: Added fix list for 2018.4.1.4.
- 4 March 2019: Added fix list for 2018.4.1.3.
- 1 February 2019: Added fix list for 2018.4.1.2.
- 14 December 2018: Added fix list for 2018.4.1.1.
- 15 November 2018: Added fix list for 2018.4.1 long-term support release.
- 28 August 2018: Added fix list for 7.7.1 fix pack 3 CD update package that replaces 7.7.1 fix pack 2.
- 27 July 2018: Added fix list for 7.7.1 fix pack 2 CD update package that replaces 7.7.1 fix pack 1.
- 29 June 2018: Added fix list for 7.7.1 fix pack 1 CD update package that replaces 7.7.1.
- 8 June 2018: Added fix list for 7.7.1 CD update package that replaces 7.7.0.x.
- 20 April 2018: Added fix list for 7.7.0 fix pack 2.
- 5 April 2018: Added fix list for 7.7.0 fix pack 1.
- 30 March 2018: Created fix list for 7.7.0 CD update package.
Off
[{"Business Unit":{"code":"BU059","label":"IBM Software w\/o TPS"},"Product":{"code":"SS9H2Y","label":"IBM DataPower Gateway"},"ARM Category":[{"code":"a8m50000000L0rqAAC","label":"DataPower"}],"ARM Case Number":"","Platform":[{"code":"PF009","label":"Firmware"}],"Version":"2018.4","Edition":"Edition Independent","Line of Business":{"code":"LOB45","label":"Automation"}}]
Problems (APARS) fixed
Problems (APARS) fixed
Was this topic helpful?
Document Information
Modified date:
25 August 2023
UID
swg24044502