Fix Readme
Abstract
IBM API Connect V5.0.8.12-ifix4 is available. This update addresses an important security fixes reported since the availability of API Connect v5.0.8.12.
Content
IBM API Connect V5.0.8.12-ifix4 is now available to address internal fixes and customer APARs reported since API Connect v5.0.8.12. We advise all users of IBM API Connect V5.0 to install this update to take advantage of the fixes.
Special Note:
-- YOU MUST INSTALL API CONNECT V5.0.8.10-ifix2 PRIOR TO UPGRADING V5.0.8.11 or later
-- All RSS nodes need to be removed and re-added to the cluster after the upgrade
API Connect v5.0.8.11 includes an upgrade of platform in version 5 from Bedrock to the Centos operating system. Bedrock systems were based upon RHEL6 which went out of support in Nov 2020. There are major changes in platform code specifically and involved a rebuild/fix of application packages on Centos7. Centos 7 is supported until June 2024.
In order to upgrade to 5.0.8.11 or later, Customers MUST upgrade first to 5.0.8.10-ifix2 (as this build contains the code required for upgrade to 5.0.8.11) as a pre-requisite. The steps for upgrading from 5.0.8.10-ifix2 to 5.0.8.11 are documented here.
An important note for customers who leverage API Connect v5 analytics before upgrading to 5.0.8.11 (from a version earlier than 5087-ifix4): A one time upgrade step is required to retain analytics data during the upgrade window when updating to 5087-ifix4 or later, see the following link for details: https://www.ibm.com/support/knowledgecenter/SSMNED_5.0.0/com.ibm.apic.install.doc/prereq_5087ifix4_dpgw_certs.html
An important on migrating Developer Portal OVAs from Ubuntu V16.04 to Ubuntu V18.04: It is strongly recommended that you migrate your Developer Portal to Ubuntu V18.04 because support for Ubuntu V16.04 is being withdrawn in March 2021. To migrate your Developer Portal OVAs from Ubuntu V16.04 to Ubuntu V18.04, you need to perform a backup and restore method of migration. This method involves backing up your current Ubuntu V16.04 Developer Portal content, standing up new OVAs on Ubuntu V18.04, and then restoring the Developer Portal content onto the new OVAs. See the following link for details: https://www.ibm.com/support/knowledgecenter/SSMNED_5.0.0/com.ibm.apic.install.doc/tapim_portal_production_migrate_ubuntu18.html
Note: The Linux® distribution for the Developer Portal OVA has moved from a Debian V7 base to an Ubuntu V16.04 base. Support for the Debian V7 OVA was withdrawn in May 2018. You are encouraged to migrate your Developer Portal to the Ubuntu V16.04 base now, as support for Debian V7 upgrades was removed in May 2018.
Deprecation of IBM API Connect Micro Gateway Component on 31 March 2020:
IBM® API Connect Micro Gateway was deprecated in IBM API Connect Version 5.0.8 in favor of DataPower® Gateway. From 1 April 2020, Micro Gateway will no longer be supported.
Existing users can migrate their API definitions to IBM DataPower Gateways. For information on supported API policies, see Built-in policies.
Support lifecycle policy for IBM API Connect Version 5.0.8.12:
IBM API Connect Version 5.0.8.x is a Long Term Supported (LTS) release and is a recommended product level for which support, including defect and security updates, will be provided through cumulative, in-place fixpacks until the effective end of support (EOS) date for IBM API Connect Version 5.0. An LTS release is intended for customers that might need a longer-term deployment for their environment.
APAR fixes
| APAR | SUMMARY |
| LI82011 | STACK OVERFLOW OCCURS WHEN QUERY PARAM VALUE MATCHES THE VARIABLE NAME ITS TRYING TO RESOLVE |
| LI82077 | App oauthRedirectURI field should only allow valid URL |
| LI82100 | INCREASE DEFAULT STYLESHEET CACHE FOR V508 |
| LI82115 | API DEFINITION PROPERTIES EXAMPLE VALUE TYPE ISSUE FOR INT AND BOOL |
| LI82185 | RESTORE DEV PORTAL SITES AFTER MIGRATION FAILS |
| LI82213 | API TAKES FOR EVER TO RENDER AND WEB PAGE FINALLY CRASHES |
| LI82244 | OpenSSL update |
| LI82246 | OpenSSL update |
| LI82288 | API Connect CVE-2021-29715 |
| LI82292 | Drupal SA-CORE-2021-004 |
| LI82294 | nginx CVE-2021-23017 |
| LI82296 | IBM HTTP SERVER vulnerabilities |
| APAR | SUMMARY |
| LI82257 | ADDING A GATEWAY FAILS AFTER UPGRADING TO APIC 5.0.8.12 |
| APAR | SUMMARY |
| LI81954 | API MANAGER DOESN'T SHOW ALL SUBSCRIPTIONS WHEN TYPING PRODUCT NAME DURING SEARCH |
| LI82112 | MISSING UPLOADED WSDL FILETYPE |
| LI82285 | Password for informix database user not decrypted correctly after upgrade to 50811-iFix. |
| LI82289 | ALLOW /OAUTH BASEPATH FOR API |
| LI82299 | API CONNECT V5 LOG ROTATION NOT WORKING AFTER APPLYING 5.0.8.11 |
| LI82351 | UNABLE TO UPDATE OR DELETE PROVIDER ORGANIZATION IN CMC |
| APAR | SUMMARY |
| LI82358 | VALIDATE POLICY MAY EXPERIENCE ISSUES IN RETRIEVING THE SCHEMA TO USE IN THE VALIDATION |
| LI82369 | UPGRADE FAILURE FROM 50810IFIX2 TO 50812 LEADS TO NON BOOTABLE APPLIANCE |
| APAR | SUMMARY |
| LI82440 | API Connect - LOG4J CVE PVR0312071 -- CVE-2021-4104 -- high PVR0310626 -- CVE-2021-4104 -- High PVR0309953 -- CVE-2021-44228 -- Critical |
Upgrade paths for API Connect:
For more information on IBM API Connect upgrade paths, see Supported Upgrade Paths.
There are specific validated upgrade paths between IBM® API Management Version 4.0 or later and IBM API Connect Version 5.0 or later. For more information, see Validated upgrade path for API Connect
In addition to the specific validated upgrade paths for the API Management appliance, you must upgrade your IBM DataPower Gateway appliance. For more information, see Upgrading your DataPower appliances
Refer to the life-cycle support page for the IBM DataPower Gateway
Downloads:
Full installation and upgrade files for IBM API Connect Version 5.0.8.12-ifix4 can be downloaded from Fix Central: IBM API Connect Version 5.0.8.12-ifix4
There may be newer fixes posted to Fix Central that do not contain APARs or any API Connect code changes but are made available as they contain updates to underlying dependent software packages.
A one time upgrade step is required to retain analytics data during the upgrade window when updating from a version prior to 5087 iFix 4 to 5087 iFix 4 or later. See the following link for details: https://www.ibm.com/support/knowledgecenter/SSMNED_5.0.0/com.ibm.apic.install.doc/prereq_5087ifix4_dpgw_certs.html
An important on migrating Developer Portal OVAs from Ubuntu V16.04 to Ubuntu V18.04: It is strongly recommended that you migrate your Developer Portal to Ubuntu V18.04 because support for Ubuntu V16.04 is being withdrawn in March 2021. To migrate your Developer Portal OVAs from Ubuntu V16.04 to Ubuntu V18.04, you need to perform a backup and restore method of migration. This method involves backing up your current Ubuntu V16.04 Developer Portal content, standing up new OVAs on Ubuntu V18.04, and then restoring the Developer Portal content onto the new OVAs. See the following link for details: https://www.ibm.com/support/knowledgecenter/SSMNED_5.0.0/com.ibm.apic.install.doc/tapim_portal_production_migrate_ubuntu18.html
Ensure that you have read and understood the upgrade and installation instructions before downloading and using the installation or upgrade files. You can find detailed installation instructions in IBM API Connect Knowledge Center -- Installing API Connect
| What is Fix Central (FC)? |
Was this topic helpful?
Document Information
Modified date:
16 December 2021
UID
ibm16463575