Hardware Management Console Readme For use with HMC Version 10 Release 1 M1010 Updated: 07 April 2022 (C) Copyright International Business Machines Corp., 2021 All rights reserved. Contents <#ibm-content> The information in this Readme contains the fix list and other package information about the Hardware Management Console. * PTF MF68994 <#MF68994> * PTF MF68970 <#MF68970> * Package information <#package> * General and Security fixes <#fixes> * Known issues <#known> * Installation <#install> Terminology *x86* - This term is used to reference the Intel hypervisors (KVM, VMWare, Xen) on which Virtual HMC can be installed. *Note*: HMC V10R1 release for x86 is not supported on bare metal (7042 hardware appliances). *ppc64 or ppc64le* - describes the Linux code that is compiled to run on Power-based servers or LPARS (Logical Partitions) PTF MF68994 HMC V10 R1 M1010.1 – for vHMC for x86_64 hypervisors (5765-VHX) This package represents an interim fix for the HMC V10 R1 M1010 for vHMC on x86_64 hypervisors. You can also reference this package by APAR MB04294 and PTF MF68994. This PTF can be installed on HMC V10 R1 M1010. /Package information/ Package name Size Checksum (sha1sum) APAR# PTF# MF68994_x86.iso 3569666048 801c803ef36188c26edba1e6f16c8be102d04fe4 MB04294 MF68994 Splash Panel information (or lshmc -V output) "version= Version: 10 Release: 1 Service Pack: 1010 HMC Build level 2110172144 MF68994 - iFix for HMC V10R1 M1010 ","base_version=V10R1 " PTF MF68970 HMC V10 R1 M1010.1 – for 7063 Hardware or vHMC for PowerVM (5765-HMB) This package represents an interim fix for the HMC V10 R1 M1010 on 7063 machine type or vHMC for PowerVM. You can reference this package by APAR MB04291 and PTF MF68970. This PTF can be installed on HMC V10 R1 M1010. /Package information/ Package name Size Checksum (sha1sum) APAR# PTF# MF68970_ppc.iso 3558672384 36caf84b87aa15ac3fcc97014dca36220bfa0378 MB04291 MF68970 Splash Panel information (or lshmc -V output) "version= Version: 10 Release: 1 Service Pack: 1010 HMC Build level 2110172144 MF68970 - iFix for HMC V10R1 M1010 ","base_version=V10R1 " *General fixes* * Fixed a problem where the UI server firmware update task does not honor the checkbox selection to not auto accept' and commit the current FSP firmware level prior to installing the new one. * Fixed scenario where a successful firmware update generates an error message "/Job returned error: The following levels are not available /". This occurs if multiple systems are targeted, as the process attempts to clean up the staging file for each system. No recovery action is needed. * Fixed an issue where the AIX Serviceable Events (SAEL) would not trigger a customer notification. * Fixed an issue with the UI server firmware update task and IBM Web Site repository returning the error "/Unable to access repository or no images available./" even though the repository was successfully accessed and updates are available. * Fixed an issue that cause call home SRC E23D040A due to hdwr_svr core dump. * Fixed missing check for simplistic password while updating an expired password for BMC Console Inband credentials * Fixed issue where fluxbox core dump file is created in root fs during reboot/shutdown of HMC. * Serviceability improvement to allow authorized service providers to clear inband credentials on the 7063-CR2 using a HMC user with hmcpe role. Fixed an issue causing a Power enterprise pool create or update operation to fail with the error: "/HSCL9085 An error occurred parsing the Power enterprise pool configuration file . The error is:// // cvc-pattern-valid: Value '' is not facet-valid with respect to pattern '[\w]{34}' for type 'ActivationCode'. // // Please verify that you specified the correct file. If so, contact your CoD administrator./" This error can only occur if a Power E1080 is in the pool XML file. *Security **fixes* * Addressed the glib2 vulnerabilities: CVE-2021-27218 and CVE-2021-27219 * Addressed the krb5 vulnerability: CVE-2020-28196 * Addressed the httpd vulnerabilities: CVE-2018-17199 and CVE-2020-11993 * Addressed the bash vulnerability : CVE-2019-18276 * Addressed the bind vulnerability: CVE-2021-25215 *Known Issues* * Following HMC backup restore, sometimes, HMC GUI fails to login with "invalid credentials". Some of the commands on the CLI also won't work. The workaround is to reboot the HMC. * Login using kerberos user fails if the user id is different from the remote user id. * After migration of save upgrade data from 942 to 1010 level, PCM operations result in exception failures. Installation Installation instructions for HMC Version 10 upgrades and corrective service can be found at these locations: Upgrading or restoring HMC Version 10 Updating, upgrading, and migrating your HMC machine code