PTF MH01796 and MH01797 Readme

Hardware Management Console Readme

For use with Version 8 Release 8.7.0 Service Pack 2

Date: 07 December 2018
(C) Copyright International Business Machines Corp., 2018 All rights reserved.

The information in this Readme contains the fix list and other package information about the Hardware Management Console.

PTF MH01796
PTF MH01797
List of fixes
Installation

PTF MH01796

This package includes a fix for HMC V8 R8.7.0 Service Pack 2. You can also reference this package by PTF MH01796 and APAR MB04186. This image can be installed on top of HMC Version 8 Release 8.7.0 Service Pack 2 with or without additional fixes.

NOTE: This PTF supersedes PTF MH01785.

*Package information*
Package name	Size	Checksum (sha1sum)	APAR#	PTF#
MH01796_x86.iso	2639153152	8e3118dbb903449d3c59738b58d3d7431b0ed5d6	MB04186	MH01796
Splash Panel information (or lshmc -V output)
version= Version: 8 Release: 8.7.0 Service Pack: 2 HMC Build level 1811200231 MH01754 - HMC 870 Service Pack 2 Release [x86_64] MH01796 - iFix for HMC V8R8.7.0 SP2 ","base_version=V8R8.7.0 "

PTF MH01797

This package includes a fix for HMC V8 R8.7.0 Service Pack 2. You can also reference this package by PTF MH01797 and APAR MB04187. This image can be installed on top of HMC Version 8 Release 8.7.0 Service Pack 2 with or without additional fixes.

NOTE: This PTF supersedes PTF MH01786.

*Package information*
Package name	Size	Checksum (sha1sum)	APAR#	PTF#
MH01797_ppc.iso	2595592192	e7eeb7f6604c03a6c05ca0c24ec77d575b9c25fe	MB04187	MH01797
Splash Panel information (or lshmc -V output)
"version= Version: 8 Release: 8.7.0 Service Pack: 2 HMC Build level 1811200231 MH01755 - HMC 870 Service Pack 2 Release [ppc64le] MH01797 - iFix for HMC V8R8.7.0 SP2 ","base_version=V8R8.7.0 "

General fixes

Fixed an issue that caused / (root file system) to fill up due to heapdump collection E332FFFF while compressing a dump file resulting in the report of service event E212E136.
Fixed a problem that can generate service event E355092F when there are many LDAP users configured on the HMC.
Fixed an issue that caused a failure in modification of partition processor values in UI when the HMC locale uses a different decimal separator from the browser locale.
Fixed an issue that caused excessive logging for message "/opt/hsc/bin/backupLog: line 445: archiveCredMgrLogFile: command not found".
Fixed a problem that caused the Server Adapter Id in "Edit connection panel" for virtual Fibre Channel to be created with "next available slot" even when the user specified the id information. This occurred only when the Server Adapter field was not in focus or user did not click "enter".
Added event descriptions for reference code B181BA24.
Fixed an issue where applying an HMC update would reset the lpar_rmc_comm_ifs value to default.
Fixed the system backplane image for System 9080-MHE in the system plan.

Security fixes

Addressed the BIND vulnerabilities: CVE-2018-5740.
Added login details such as IP address of SSH clients in secure logs.

Previously released fixes also included in this PTF:

MH01785/MH01786
08/27/18

Fixed an issue where opening multiple vterm applets intermittently fails after the first open.
Fixed an issue that can cause /var to fill up and report service event E212E134 when snmp is enabled.
Fixed an issue that can cause /var to fill up and report service event E212E134 when cloud connector process is running.
Fixed an issue that can cause /var to fill up and report service event due to a log rotation policy issue for ssl and httpd logs
Fixed an issue that can cause /var to fill up and report service event E212E13D under heavy use of REST APIs due to incorrect log rotation of credmgr.log.
Fixed an issue that can cause /var to fill and report service event E212E134 due to improper log rotation of journald logs.
Fixed issue with PCM dashboard showing "no activity" for network use when networking is configured but usage is very low.
Fixed an issue with 7063-CR1 where the HMC may fail to boot to the log on panel with "error 1901" and all network adapters disabled when one or more adapters are plugged into a dcbx capable switch that has dcbx enabled.
Fixed a persistence issue when the capacity field of SRIOV Adapter in Edit partition Template is reset by switching between use captured IO and do not use captured IO modes.
Added additional logic to check filesystem space during update. This prevents a potential failure in the post-reboot phase of the PTF install which can leave the HMC in an unbootable state.
Fixed an issue where non-hscroot users may experience significantly worse performance then hscroot user for the same tasks.
Fixed an issue where using the server/vios/partition "informational click-card" (i icon) to turn off an attention indicator can cause unintended modifications to other properties. The unintended modifications may include deletion of in use virtual adapters resulting in an impact to running partitions/VIOS.
Apache Header fix for Qualys QID 11827
Addressed Kerberos vulnerabilities: CVE-2017-11368 and CVE-2017-7562
Added Security fix for openssh CVE-2017-15906
Addressed Kernel vulnerabilities:CVE-2018-1000004, CVE-2018-6927, CVE-2017-1000410, CVE-2017-1000407, CVE-2017-18017, CVE-2017-15126, CVE-2017-15116, and CVE-2016-8633
Addressed NTP vulnerabilities: CVE-2017-6464 and CVE-2017-6463
Addressed OpenSSL vulnerabilities: CVE-2017-3737 and CVE-2017-3736
Addressed glibc vulnerabilities:CVE-2017-15670, CVE-2017-12132, CVE-2015-5180, and CVE-2014-9402

Installation

Installation instructions for HMC Version 8 upgrades and corrective service can be found at these locations:

Upgrading or restoring HMC Version 8

Installation methods for HMC Version 8 fixes

Instructions and images for upgrading via a remote network install can be found here:

HMC V8 network installation images and installation instructions

Hardware Management Console Readme

Contents

PTF MH01796

PTF MH01797

Installation