IBM Support

IT21779: ANR2035E WITH SELECT ON ARCHIVE_OBJECTS TABLE OR SPACEMAN_OBJECTS TABLE

Subscribe

You can track all active APARs for this component.

APAR status

  • Closed as program error.

Error description

  • To remove the exposure to
    Tivoli Storage Manager (IBM Spectrum Protect) SQL interface
    vulnerable to unauthorized access (CVE-2016-8940)
    http://www-01.ibm.com/support/docview.wss?uid=swg21998946
    access to most working tables used by the server, has been
    blocked and the following messages are logged:
    ANR2035E SELECT: Administrator <ADMIN> is not authorized to
    issue this command.
    ANR0516E SQL processing for statement select * from
    archive_objects failed.
    ANS8001I Return code 9.
    This is also true for the ARCHIVE_OBJECTS and SPACEMAN_OBJECTS
    table, however information from those tables is needed to
    properly calculate capacity information.
    OBJID and BFSIZE information should be available for
    ARCHIVE_OBJECTS and SPACEMAN_OBJECTS as they are today for the
    BACKUP_OBJECTS view.
      IBM Spectrum Protect Versions Affected: 6.3.6.100 and newer,
    7.1.7.100 and newer, 8.1
      Initial Impact: Medium
      Additional Keywords: TSM
      | MDVREGR 7.1.7.100 |
    

Local fix

Problem summary

  • ****************************************************************
    * USERS AFFECTED:                                              *
    * All IBM Tivoli Storage Manager and IBM Spectrum Protect      *
    * server users.                                                *
    ****************************************************************
    * PROBLEM DESCRIPTION:                                         *
    * See error description.                                       *
    ****************************************************************
    * RECOMMENDATION:                                              *
    * Apply fixing level when available. This problem is currently *
    * projected to be fixed in levels 7.1.8 and 8.1.3.. Note that  *
    * this is subject to change at the discretion of IBM.          *
    ****************************************************************
    

Problem conclusion

  • This problem was fixed.
    Affected platforms for reported release:  AIX, HP-UX, Solaris,
    Linux, and Windows.
    Platforms fixed:  AIX, HP-UX, Solaris, Linux, and Windows.
    

Temporary fix

Comments

APAR Information

  • APAR number

    IT21779

  • Reported component name

    TSM SERVER

  • Reported component ID

    5698ISMSV

  • Reported release

    71A

  • Status

    CLOSED PER

  • PE

    NoPE

  • HIPER

    NoHIPER

  • Special Attention

    NoSpecatt / Xsystem

  • Submitted date

    2017-08-04

  • Closed date

    2017-08-09

  • Last modified date

    2017-08-09

  • APAR is sysrouted FROM one or more of the following:

  • APAR is sysrouted TO one or more of the following:

Fix information

  • Fixed component name

    TSM SERVER

  • Fixed component ID

    5698ISMSV

Applicable component levels

  • R71A PSY

       UP

  • R71H PSY

       UP

  • R71L PSY

       UP

  • R71S PSY

       UP

  • R71W PSY

       UP

  • R81A PSY

       UP

  • R81L PSY

       UP

  • R81W PSY

       UP



Document information

More support for: Tivoli Storage Manager

Software version: 7.1.3

Reference #: IT21779

Modified date: 09 August 2017