You are not connected. The newsletter may include some user information, so they may not be displayed correctly.

Service News for Informix - Release 14.10FC7W1 - log4j Fix-Packs available

Service News for Informix - Release 14.10FC7W1 - log4j Fix-Packs available
 

CURSOR Service Distribution

  

Service News for Informix

Giessen, January 12, 2022

Hello Visitor,

shortly after the Apache log4j bug (CVE-2021-44228) became known, we have checked current Informix versions for the corresponding files. It quickly became clear that the actual database server is not at risk, but that "Informix HQ", the administration tool delivered by IBM with the database, may be affected.

An official statement from IBM regarding the vulnerability of Informix was not made during the first few days. We advised our Informix customers at short notice not to start Informix HQ. Upon request, we provided a workaround by disabling the critical classes.

For those administrators who are using the Admin-Scout for Informix from our company, there was no need for action - the Admin-Scout does not use any Java libraries.

As of January 7, IBM is now making official fix packs available for download through IBM Fix Central.

The CVE-2021-44228 vulnerability affects users running Informix HQ 1.5.0 in Informix versions 14.10.FC6 / 14.10.FC7 or 12.10.xC15. Informix HQ uses Apache Log4j 2.14.0.

The downloads are posted at the following links:

  • Informix 14.10.FC7W1 is the fix release for versions 14.10.FC6 or 14.10.FC7. (Download via Fix Central or for our customers in the download area of our website).

  • For the Informix 12.10.xC15 version, only a download of the affected .jar files informixhq-server and informixhq-agent is offered (download via Fix Central). Alternatively, the jar files can also be taken from the 14.10.FC7W1 Developer Edition.

For more information on the fix packs, Scott Pickett (IBM Informix WW Technical Sales) gives a good summary in the IBM Hybrid Data Management Community. You can access the post here in the IBM Community!

With best regards from Giessen,

Your CURSOR Service Distribution Team

Informix 14.10.FC7W1 - currently available:

  • Informix Developer Edition V14.10.FC7W1

    The corresponding edition installers of 14.10.FC7 have not changed and can be used for 14.10FC7W1 too.
  CURSOR Service Distribution Legal notice Data Privacy News unsubscribe Admin-Scout  
 
 

This e-mail, including the information contained therein, is confidential and subject to telecommunications secrecy and any other restrictions. It is intended exclusively for the addressee or addressees; any access by other persons is prohibited. If the content or circumstances of this e-mail are not intended for you, we apologize for the inconvenience and assure you that we do not pursue any advertising purposes. Please send this e-mail back so that we can take appropriate measures. In all other respects, any publication, duplication, passing on or storage as well as the taking or omission of measures with regard to the obtained information is forbidden to you with erroneous forwarding.

Diese E-Mail einschließlich der in ihr enthaltenen Informationen ist vertraulich und unterliegt dem Fernmeldegeheimnis sowie ggfs. weiteren Beschränkungen. Sie ist ausschließlich für den oder die Adressaten bestimmt; jeglicher Zugriff durch andere Personen ist untersagt. Sollte diese E-Mail nach ihrem Inhalt oder den Umständen nicht für Sie bestimmt sein, so entschuldigen wir uns für die Unannehmlichkeiten und versichern, dass wir keinerlei werbliche Zwecke verfolgen. Bitte senden Sie diese E-Mail zurück, damit wir entsprechende Maßnahmen ergreifen können. Im Übrigen ist Ihnen bei irrtümlicher Zusendung jede Veröffentlichung, Vervielfältigung, Weitergabe oder Aufbewahrung wie auch das Ergreifen oder Unterlassen von Maßnahmen im Hinblick auf die erlangten Informationen untersagt.

CURSOR Software AG

Executive Board:
Thomas Ruehl (CEO),
Juergen Heidak, Andreas Lange

Chairperson of the CURSOR Supervisory Board:
Prof. Dr. Axel Schwickert

Commercial Register Giessen:
HRB 3396