IBM Support

Rational Change Interim Fix 1 for 5.3.2.1

Download


Abstract

IBM Rational Change 5.3.2.1_iFix001 has been made generally available and contains fixes to version 5.3.2.1.

Download Description

Table of Contents
Sections Description

The Change history section provides an overview on what is new in this release with a description of any new functions or enhancements when applicable.

The How critical is this fix section provides information related to the impact of this release to allow you to assess how your environment may be affected.

The Prerequisites section provides important information to review prior to the installation of this release.

The Download package section provides the direct link to obtain the download package for installation in your environment.

The Installation instructions section provides the installation instructions necessary to apply this release into your environment.

The Known side effects section contains a link to the known problems (open defects) identified at the time of this release.
Supporting Documentation
Document Description

Click to review the detailed system requirements information for a complete list of hardware requirements, supported operating systems, prerequisites and optional supported software, with component-level details and operating system restrictions.

IBM Knowledge Center provides an entry point to product documentation. You can view, browse, and search online information related to the product.

Click to review a complete list of the defects (APARs) resolved in this release including a list of resolved defects for the entire version family.

Find technical developer content and resources.

Prerequisites

Prerequisites include:

Rational Change 5.3.2.1

Rational Synergy Fix Pack 1(7.2.2.1) for 7.2.2

Back to top

Installation Instructions

Review the Installation page in the IBM Knowledge Center.

Review also the Upgrading page in the IBM Knowledge Center for additional details.
Procedure:
  1. Log in to the machine where Rational Change 5.3.2.1 is installed as the user who installed Rational Change.
  2. Unzip (Windows) or untar (UNIX) the patch file into <CHANGE_APP_HOME>/WEB-INF/packages. The resultant directory will have the name rc<patch version>.

    For example, on UNIX:
    $ cd <CHANGE_APP_HOME>/WEB-INF/packages
    $ tar xvf <file path>
  3. Open <CHANGE_APP_HOME>/WEB-INF/web.xml in a text editor.
  4. Update the display-name tag (which is at beginning of web.xml) from Rational Change 5.3.1 to Rational Change 5.3.2.

    <display-name>Rational Change 5.3.2</display-name>
    web.xml - Display tab name
  5. Add below entry to web.xml, just before the line
    <!-- Add HTTP compression to reduce download time. 
            <!-- Apply Headers such as XSS protection,Cookie etc for all the pages -->
               <filter>  
                        <filter-name>Header Filter</filter-name>  
                        <filter-class>com.telelogic.cs.filters.HeaderPatternFilter</filter-class>   
               </filter>
               <filter-mapping>  
                   <filter-name>Header Filter</filter-name>  
                  <url-pattern>/*</url-pattern>  
               </filter-mapping>
    web.xml - Display tab name
  6. Add below entry to web.xml, just before the tag "</web-app>" which is at the end of web.xml. 
    <!-- Cookie security - HTTPOnly not set -->
            <session-config>
                      <cookie-config>
                            <http-only>true</http-only>
                            <secure>true</secure>
                      </cookie-config>
             </session-config>
        
            <!-- Redirect all 500 server page error to exception.jsp page -->
            <error-page>
            <error-code>500</error-code>
            <location>/WEB-INF/wsconfig/templates/pt/forms/exception.jsp</location>
            </error-page>
    web.xml - Display tab name2
  7. Save web.xml file. (Please refer below the sample web.xml). 
    Sample_web_xml.docx
  8. Install the iFix
    1. Login to Rational Change as Admin, and click the System Administration link in the action panel.
    2. Click on the Package Installer tab, select this iFix from the Available Packages list box, and click the Install button.
  9. After the patch installation is successful, stop and re-start Rational Change service.
REVERSING THE IFIX
  1. If it is necessary to remove the iFix after it was installed, follow these steps.
  2. Login to Rational Change as Admin, and click the System Administration link in the action panel. Uninstall the iFix.
  3. Remove the added entries of point 5 and 6 of the iFix installation instruction from web.xml
  4. Click on the Package Installer tab, select the iFix from the Installed Packages list box, and click the Uninstall button.
  5. Stop and start Rational Change service.

Back to top

Download Package

The following sections provide detailed information related to this release.

Click the FC link below to obtain the release from Fix Central.

How critical is this fix?

Impact Assessment
Impact Description

Corrective

This is a maintenance release. It contains fixes for client-reported and internally found defects.

Test Results

Close [x]

Definitions

Regression: An error in the Maintenance Delivery Vehicle (MDV) that produces incorrect or unexpected behavior causing a supported feature to stop functioning as designed.
This includes:

  • Coding errors that cause a regression
  • Documentation or packaging problems that cause a regression
  • Errors reported in a new function delivered in a MDV that cause a regression

Incomplete: An error in the MDV has not regressed, but does not work as designed.
This includes:

  • Fixed APARs which did not solve the original problem but did not break anything new
  • APARs reporting documentation errors, such as readme errors, that cause problems applying an MDV but do not lead to a regression

Notes:
  • Regression and incomplete APARs are considered fix-in-error or MDV-in-error
  • Definitions above apply only to valid APARs that result in product fixes (APARs returned as working-as-designed are not assessed for being fix-in-error)
  • Issues in major releases due to new functionality do not apply in this definition

There are no known regressions to report.

Back to top

Problems Solved

Defects resolved

Click the Fix List link in the table of contents above to review a list of the problems solved in this release.

Known Side Effects

Review the following list of known issues and open defects:

No known issues.

Back to top

Change History

What's new

Provided remediation for the following security vulnerabilities.

Sr No. Vulnerabilities Priority Remarks
Fixed Issues
1 Cross site scripting Critical Fixed
2 Cookie Security- Persistent cookie Medium Fixed
3 Cache management- Session cookie Medium Fixed
4 Cookie Security: HTTPOnly not Set Low Fixed
5 Web Server Misconfiguration- Server error Message Low Fixed
6 Cache Management-Insecure Policy Low Fixed
7 Web Server Misconfiguration-Insecure Content-Type setting Low Fixed
8 HTML5: Cross-Site Scripting Protection Low Fixed
False Positives
1 Privacy Violation: HTTP GET Medium False Positive
2 Cross-Site Scripting: Reflected Low False Positive
3 Web Server Misconfiguration: Unprotected File Low False Positive
4 Web Server Misconfiguration: Server Error Message Low False Positive
5 Insecure Transport: HSTS not Set Low False Positive

Back to top

Click the link in the Download Options column:

On
[{"DNLabel":"Rational Change 5.3 fixes","DNDate":"07 Sep 2020","DNLang":"English","DNSize":"1 B","DNPlat":{"label":"Windows","code":"PF033"},"DNURL":"https://www.ibm.com/support/fixcentral/swg/selectFixes?parent=ibm~Rational&product=ibm/Rational/Rational+Change&release=5.3.2.1&platform=All&function=all","DNURL_FTP":"","DDURL":null}]
[{"Line of Business":{"code":"LOB45","label":"Automation"},"Business Unit":{"code":"BU059","label":"IBM Software w\/o TPS"},"Product":{"code":"SSYQQ2","label":"Rational Change"},"ARM Category":[{"code":"a8m0z000000bm3qAAA","label":"Synergy"}],"ARM Case Number":"","Platform":[{"code":"PF002","label":"AIX"},{"code":"PF016","label":"Linux"},{"code":"PF027","label":"Solaris"},{"code":"PF033","label":"Windows"}],"Version":"All Version(s)"}]

Problems (APARS) fixed
PH24338, PH24346, PM43215, PM62150, PM64888, PM66266, PM70692, PM73590, PM74510, PM75217, PM84635, PM95358

Document Information

Modified date:
01 February 2021

UID

ibm16327143

Page Feedback