Hardware Management Console Readme For use with HMC Version 10 Release 1 M1011 Updated: 07 June 2022 (C) Copyright International Business Machines Corp., 2022 All rights reserved. Contents <#ibm-content> The information in this Readme contains the fix list and other package information about the Hardware Management Console. * PTF MF69722 <#MF69722> * PTF MF69724 <#MF69263> * Package information <#package> * Fixes included <#fixes> * Installation <#install> Terminology *x86* - This term is used to reference the Intel hypervisors (KVM, VMWare, Xen) on which Virtual HMC can be installed. *Note*: HMC V10R1 release for x86 is not supported on bare metal (7042 hardware appliances). *ppc64 or ppc64le* - describes the Linux code that is compiled to run on Power-based servers or LPARS (Logical Partitions) PTF MF69722 HMC V10 R1 M1011.4 – for vHMC for x86_64 hypervisors (5765-VHX) This package represents an interim fix for the HMC V10 R1 M1011 for vHMC on x86_64 hypervisors. You can also reference this package by APAR MB04334 and PTF MF69722. *Note*: This PTF supersedes MF69262, MF69286, and MF69288. /Package information/ Package name Size Checksum (sha1sum) APAR# PTF# MF69722_x86.iso 3830183936 544133a55bc44ab5bf4bab63e898b802b0a5562b MB04334 MF69722 Splash Panel information (or lshmc -V output) "version= Version: 10 Release: 1 Service Pack: 1011 HMC Build level 2205090541 MF69180 - HMC V10R1 M1011 MF69722 - iFix for HMC V10R1 M1011 ","base_version=V10R1 " PTF MF69724 HMC V10 R1 M1011.4 – for 7063 Hardware or vHMC for PowerVM (5765-HMB) This package represents an interim fix for the HMC V10 R1 M1011 on 7063 machine type or vHMC for PowerVM. You can reference this package by APAR MB04335 and PTF MF69724. *Note*: This PTF supersedes MF69263, MF69287, and MF69289. /Package information/ Package name Size Checksum (sha1sum) APAR# PTF# MF69724_ppc.iso 3843870720 f5b02f70f3ba7d95b2f648db3663a739513ea015 MB04335 MF69724 Splash Panel information (or lshmc -V output) "version= Version: 10 Release: 1 Service Pack: 1011 HMC Build level 2205090541 MF69181 - HMC V10R1 M1011 MF69724 - iFix for HMC V10R1 M1011 ","base_version=V10R1 " *General fixes* * Fixed the cause of SRC E3D46FFF being reported when the submission fails to create a ticket. * Fixed an issue with primary console arbitration for managed systems resulting in errors returned from chprimhmc of "/Unable to set this management console as primary./" or "/Failed to get service operation information from peer./" * Fixed an issue that caused SRC E35A0083 in environments with large numbers of lpars and virtual adapters. * Change call home SRC 0B0F0500 to customer notify for a temporary ethernet link down message * Fixed an issue that caused message "/IllegalArgumentException/" in the Code Update Wizard when in the system readiness tab the UAK date query returns unavailable * Prevent SRC E2FF4600 from calling home. * Fixed an issue where E212E13A may be reported during a network upgrade installation. * Prevented the call home of SRC E212E151 for high HMC CPU usage which can occur on HMCs that have Performance and Capacity Monitoring enabled. * Fixed an issue where the update LIC task indicated a concurrent firmware update but powered down the system because it was IPL'd on the P-side flash. * Fixed an issue that required LDAP to be reconfigured in order to be able to login after upgrading to V10 R1 M1010. * Fixed the issue that causes SRC E35A0021 to be generated reporting "/The Solid DB size has exceeded the threshold limit of 80%/". * Fixed an issue that causes the HMC to show high CPU utilization even when there are no activities on HMC. Another symptom of this issue are possible call home SRCs E23D0503 and E212E302. * Allow custom password policies to be retained across HMC updates. * Fixed an issue that caused a Power Enterprise Pool add or remove resource request to silently fail. This problem only occurs when the request is issued from a managing HMC for the pool that is not the controller HMC for the pool and the controller HMC for the pool is not managing the server which is the target of the request. * Fixed an issue that causes system Power off / Power on to take a longer time when Remote Restart is enabled. * Fix for kerberos users with expired password are allowed to login into HMC. * Fixed an issue that denies login to HMC by all the users except hscroot, when a kerberos user auth type changes to local. Workaround was to to reconfigure the kerberos realm details to resolve the issue. * Fixed Kerberos user login issue where local username is mapped to a different remote username. *Security fix* * Addressed httpd vulnerabilities: CVE-2021-26690 and CVE-2021-30641 * Addressed openssl vulnerabilities : CVE-2021-3712, CVE-2021-23841 and CVE-2021-23840 * Addressed bind vulnerability: CVE-2021-25214 * Addressed openssl vulnerability: CVE-2022-0778 * Addressed IBM JDK vulnerabilities: CVE-2022-21341, CVE-2022-21294, CVE-2022-21293 and CVE-2022-21248 **Previously released fixes also included in this PTF: * * *MF69288/**MF69289* 02/24/22 * Fix for lpar_netboot with -D -A selecting a ping failed adapter instead of ping success adapter for netboot installation * Fix for migration vNIC Manual mappings selecting the incorrect VIOS Partitions when user specified only VIOS Partition names information. * Automatically clean up core files present under /usr/lib64/power9/ directory that can cause SRC E35F0020 to report. * Fixed a UI windows sizing issue with the Install Corrective Service window that would shrink down with a long scroll bar after clicking next to progress to the Select Service Package panel when run on the local console session. * Fixed an intermittent issue causing the selected Lpar Partition menu to not list any actions on the HMC GUI and requiring an HMC reboot to recover. * Fixed an intermittent issue where the local console session boots to the “Initialization in Progress” page and does not present the login screen until a user closes the window. * Fixed an issue that caused the reporting of SRC E35A0063 repeatedly during VIOS installation * Fixed the issue that caused SRC E35A0074 and E35A0075 to report. * Fixed an issue where callhome may fail on the first HMC boot up after an upgrade. A restart of the HMC resolves the issue . * Fixed an issue that caused callhome of SRC E23D040C due to core dump of the actzzmon process. * Removed extraneous message “Job returned error: No updates available.” after performing a successful firmware upgrade operation to a new release from the GUI. * Fixed an incorrect report of heap threshold exceeded resulting in reporting of SRC E35A0043 * Addressed log4j vulnerability: CVE-2021-44832 *MF69286/**MF69287* 01/07/22 * The checkbox behavior for accepting the Managed System code update on the HMC GUI has been changed to accept by default. * Addressed log4j2 vulnerabilities: CVE-2021-45105 and CVE-2021-45046 * ***MF69262/**MF69263** 12/14/21 * Addressed the log4j2 vulnerability: CVE-2021-44228 Installation Installation instructions for HMC Version 10 upgrades and corrective service can be found at these locations: Upgrading or restoring HMC Version 10 Updating, upgrading, and migrating your HMC machine code