WebSphere Applicaiton Server is susceptible to vulnerabilities in Apache Struts.
PI64303 resolves the following problem:
ERROR DESCRIPTION:
WebSphere application server is susceptible to vulnerabilities in Apache Struts.
PROBLEM SUMMARY:
WebSphere application server is susceptible to vulnerabilities in Apache Struts.
PROBLEM CONCLUSION:
The vulnerability has been addressed.
THE FOLLOWING FIXES ARE PROVIDED:
7.0.0.33-WS-WAS-IFPI64303.pak applies to fixpacks 7.0.0.33 through 7.0.0.41.
8.0.0.9-WS-WASProd-IFPI64303.zip applies to fixpacks 8.0.0.9 through 8.0.0.12.
8.5.5.2-WS-WASProd-IFPI64303.zip applies to fixpacks 8.5.5.2 through 8.5.5.9.
9.0.0.0-WS-WASProd-IFPI64303.zip applies to 9.0.0.0.
Please download the UpdateInstaller below to install this fix.
[{"PRLabel":"UpdateInstaller","PRLang":"US English","PRSize":"7250000","PRPlat":{"label":"AIX","code":"PF002"},"PRURL":"http://www.ibm.com/support/docview.wss?rs=180&uid=swg21205991"}]
Please review the readme.txt for detailed installation instructions.
[{"INLabel":"V70 Readme","INLang":"US English","INSize":"4914","INURL":"ftp://public.dhe.ibm.com/software/websphere/appserv/support/fixes/PI64303/7.0.0.41/readme.txt"},{"INLabel":"V80 Readme","INLang":"US English","INSize":"2235","INURL":"ftp://public.dhe.ibm.com/software/websphere/appserv/support/fixes/PI64303/8.0.0.12/readme.txt"},{"INLabel":"V85 Readme","INLang":"US English","INSize":"2298","INURL":"ftp://public.dhe.ibm.com/software/websphere/appserv/support/fixes/PI64303/8.5.5.9/readme.txt"},{"INLabel":"V90 Readme","INLang":"US English","INSize":"2151","INURL":"ftp://public.dhe.ibm.com/software/websphere/appserv/support/fixes/PI64303/9.0.0.0/readme.txt"}]
On
[{"DNLabel":"7.0.0.33-WS-WAS-IFPI64303","DNDate":"06-28-2016","DNLang":"US English","DNSize":"359417","DNPlat":{"label":"AIX","code":"PF002"},"DNURL":"http://www-933.ibm.com/eserver/support/fixes/fixcentral/swgquickorder?fixes=7.0.0.33-WS-WAS-IFPI64303&productid=WebSphere%20Application%20Server&brandid=5","DNURL_FTP":null,"DDURL":null},{"DNLabel":"8.0.0.9-WS-WASProd-IFPI64303","DNDate":"06-28-2016","DNLang":"US English","DNSize":"571350","DNPlat":{"label":"AIX","code":"PF002"},"DNURL":"http://www-933.ibm.com/eserver/support/fixes/fixcentral/swgquickorder?fixes=8.0.0.9-WS-WASProd-IFPI64303&productid=WebSphere%20Application%20Server&brandid=5","DNURL_FTP":null,"DDURL":null},{"DNLabel":"8.5.5.2-WS-WASProd-IFPI64303","DNDate":"06-28-2016","DNLang":"US English","DNSize":"577372","DNPlat":{"label":"AIX","code":"PF002"},"DNURL":"http://www-933.ibm.com/eserver/support/fixes/fixcentral/swgquickorder?fixes=8.5.5.2-WS-WASProd-IFPI64303&productid=WebSphere%20Application%20Server&brandid=5","DNURL_FTP":null,"DDURL":null},{"DNLabel":"9.0.0.0-WS-WASProd-IFPI64303","DNDate":"06-28-2016","DNLang":"US English","DNSize":"568351","DNPlat":{"label":"AIX","code":"PF002"},"DNURL":"http://www-933.ibm.com/eserver/support/fixes/fixcentral/swgquickorder?fixes=9.0.0.0-WS-WASProd-IFPI64303&productid=WebSphere%20Application%20Server&brandid=5","DNURL_FTP":null,"DDURL":null}]
[{"Product":{"code":"SSEQTP","label":"WebSphere Application Server"},"Business Unit":{"code":"BU053","label":"Cloud & Data Platform"},"Component":"General","Platform":[{"code":"PF002","label":"AIX"},{"code":"PF010","label":"HP-UX"},{"code":"PF012","label":"IBM i"},{"code":"PF013","label":"Inspur K-UX"},{"code":"PF016","label":"Linux"},{"code":"PF022","label":"OS X"},{"code":"PF027","label":"Solaris"},{"code":"PF033","label":"Windows"},{"code":"PF014","label":"iOS"},{"code":"PF035","label":"z\/OS"}],"Version":"7.0.0.33;7.0.0.35;7.0.0.37;7.0.0.39;7.0.0.41;8.0.0.10;8.0.0.11;8.0.0.12;8.0.0.9;8.5.5.2;8.5.5.3;8.5.5.4;8.5.5.5;8.5.5.6;8.5.5.7;8.5.5.8;8.5.5.9;9.0.0.0","Edition":"Network Deployment;Single Server","Line of Business":{"code":"LOB45","label":"Automation"}}]
Problems (APARS) fixed
Problems (APARS) fixed