A fix is available
APAR status
Closed as unreproducible in next release.
Error description
Potential exploits found by 3rd party scans are fixed: 1) Clickjacking. 2) Cross-Site WebSocket Hijacking. 3) TSOID is stored in the cookies. 4) Dojo is upgraded to 1.17.2.
Local fix
Problem summary
1) Clickjacking; 2) Cross-Site WebSocket Hijacking; 3) TSOID is stored in the cookies; 4) Dojo is upgraded to 1.17.2.
Problem conclusion
Temporary fix
Comments
×**** PE23/04/21 PTF IN ERROR. SEE APAR PH52036 FOR DESCRIPTION
APAR Information
APAR number
PH49166
Reported component name
DB2 REC EXPERT
Reported component ID
5697H7400
Reported release
320
Status
CLOSED UR1
PE
NoPE
HIPER
NoHIPER
Special Attention
NoSpecatt / Xsystem
Submitted date
2022-08-31
Closed date
2022-10-03
Last modified date
2023-04-21
APAR is sysrouted FROM one or more of the following:
APAR is sysrouted TO one or more of the following:
Modules/Macros
ARY#LSQL ARY$$PRM ARY$$SEQ ARY$CONV ARY0DT@ ARY0PROD ARY0SM@ ARY10173 ARY4COMM ARY4CREF ARY4DLL ARY4IOHR ARY4LOG ARY4LOGI ARY4MSG ARY4MVSF ARY4QCLO ARY4QGLO ARY4QRHC ARY4QRRC ARY4QRSU ARY4SAXB ARY4SAXC ARY4SCNV ARY4SERV ARY4SGLO ARY4SOCK ARY4SRRC ARY4SRRD ARY4SRWR ARY4THRD ARY4TIME ARY4TYPS ARY4XMLU ARY4XMLW ARY4XSWR ARY5ACUR ARY5AREP ARY5ASYS ARY5BBIN ARY5BINT ARY5BLOG ARY5BPST ARY5BVCH ARY5CMAP ARY5CONT ARY5DLL ARY5STMP ARY5TIME ARY5UTIL ARY8693 ARY@APRN ARYAGTCF ARYAGTJB ARYAGTSP ARYBABAL ARYBABAQ ARYBABCK ARYBABCS ARYBABDB ARYBABDT ARYBABHE ARYBABIP ARYBABOB ARYBABOI ARYBABOP ARYBABPK ARYBABPL ARYBABRL ARYBABRO ARYBABRS ARYBABRT ARYBABSC ARYBABSG ARYBABSN ARYBABSQ ARYBABSR ARYBABTB ARYBABTP ARYBABTR ARYBABTS ARYBABUR ARYBABUT ARYBABVA ARYBABWM ARYBACS4 ARYBACSA ARYBADBV ARYBADC ARYBADCS ARYBADMA ARYBADT@ ARYBADTM ARYBAICG ARYBAIPM ARYBALA ARYBAMAN ARYBAMRR ARYBAOBM ARYBAODM ARYBAOEN ARYBAOPT ARYBAORD ARYBAPBB ARYBAPBP ARYBAPDM ARYBAPPL ARYBARC ARYBARCE ARYBARCS ARYBAROM ARYBARPA ARYBARPD ARYBARPS ARYBASAM ARYBASDM ARYBASEI ARYBASIM ARYBASR ARYBASRC ARYBASYM ARYBATA ARYBATAS ARYBATD ARYBATDM ARYBATDS ARYBATPM ARYBATRM ARYBATSM ARYBAUTL ARYBAVDM ARYBAVIM ARYBAVOM ARYBBADM ARYBBASL ARYBBBOS ARYBBCAI ARYBBCFO ARYBBCK ARYBBCOS ARYBBCSI ARYBBCSL ARYBBDDM ARYBBDES ARYBBDFL ARYBBDSL ARYBBDSQ ARYBBDTM ARYBBDTS ARYBBERS ARYBBGLO ARYBBGOC ARYBBGOL ARYBBGRJ ARYBBGRP ARYBBGRS ARYBBIDM ARYBBIEN ARYBBIPM ARYBBIPS ARYBBISL ARYBBJCL ARYBBJOB ARYBBJRN ARYBBKSG ARYBBLIR ARYBBLRJ ARYBBOBM ARYBBOBS ARYBBOCN ARYBBOCR ARYBBODM ARYBBOPS ARYBBOSV ARYBBOXG ARYBBPA ARYBBPAC ARYBBPCJ ARYBBPCO ARYBBPCV ARYBBPDM ARYBBPI ARYBBPLM ARYBBPLN ARYBBPLS ARYBBPQS ARYBBPSL ARYBBQTA ARYBBQTJ ARYBBRA ARYBBRDM ARYBBRDS ARYBBRMA ARYBBROM ARYBBROS ARYBBRPA ARYBBRPC ARYBBRSL ARYBBSAM ARYBBSAS ARYBBSCM ARYBBSDM ARYBBSGD ARYBBSLR ARYBBSR ARYBBSRC ARYBBSSL ARYBBSYM ARYBBSYS ARYBBTDM ARYBBTHD ARYBBTIR ARYBBTPM ARYBBTPS ARYBBTRM ARYBBTRS ARYBBTSJ ARYBBTSL ARYBBTSM ARYBBTSS ARYBBTUJ ARYBBUCD ARYBBUCI ARYBBUCL ARYBBUCO ARYBBUCR ARYBBUDC ARYBBUES ARYBBUGC ARYBBULA ARYBBULD ARYBBUNM ARYBBUPR ARYBBUPV ARYBBUQU ARYBBURB ARYBBURC ARYBBURD ARYBBURL ARYBBURP ARYBBURV ARYBBUSR ARYBBUSS ARYBBUTH ARYBBUTM
Fix information
Fixed component name
DB2 REC EXPERT
Fixed component ID
5697H7400
Applicable component levels
R320 PSY UI82671
UP22/11/01 P F210
Fix is available
Select the PTF appropriate for your component level. You will be required to sign in. Distribution on physical media is not available in all countries.
[{"Business Unit":{"code":"BU058","label":"IBM Infrastructure w\/TPS"},"Product":{"code":"SSZJXP","label":"DB2 Tools for z\/OS"},"Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"3.2.0","Line of Business":{"code":"LOB10","label":"Data and AI"}}]
Document Information
Modified date:
22 April 2023