Patch-ID# 117874-02 NOTE: *********************************************************************** READ THE TERMS OF THE AGREEMENT ("AGREEMENT") IN THE LEGAL_LICENSE.TXT FILE CAREFULLY BEFORE USING THIS SOFTWARE. BY USING THE SOFTWARE, YOU AGREE TO THE TERMS OF THIS AGREEMENT. IF YOU DO NOT AGREE TO ALL OF THE TERMS, PROMPTLY DESTROY THE UNUSED SOFTWARE. *********************************************************************** Keywords: security solaris Synopsis: Application Server 7.1_x86: Load Balancing Plugin Date: Feb/27/2006 Install Requirements: Reboot after installation, an alternative may be in Special Install Instructions Install in Single User Mode Solaris Release: 9_x86 SunOS Release: 5.9_x86 Unbundled Product: Application Server Unbundled Release: 7.1 Xref: This patch available for Solaris SPARC as patch 117873 and RHEL 2.1 as patch 118102. Topic: Application Server 7.1_x86: Load Balancing Plugin Relevant Architectures: i386 BugId's fixed with this patch: 4693581 4781119 4916390 4928556 5006654 5024923 5027250 5048226 5048234 5053854 6101639 6155236 6156737 6157310 6157465 6157477 6170685 6171762 6171994 6172138 6173355 6175824 6177502 6177522 6178431 6178742 6178969 6179712 6181948 6182861 6183278 6185520 6186811 6189919 6192715 6192955 6200386 6200592 6208875 6209453 6210327 6211709 6215977 6216970 6217112 6217658 6218086 6218460 6220602 6223083 6223279 6223367 6223368 6224453 6226096 6230908 6230921 6233088 6233123 6236311 6239408 6240422 6240771 6240774 6241348 6247856 6250556 Changes incorporated in this version: 4928556 6192715 6208875 6185520 6211709 6200592 6179712 6217112 4781119 4916390 5024923 5027250 5048226 5048234 6157477 6171762 6172138 6186811 6200386 6209453 6210327 6215977 6216970 6217658 6218086 6218460 6220602 6223083 6223279 6223367 6223368 6224453 6226096 6230908 6230921 6233088 6233123 6236311 6239408 6240422 6240771 6240774 6241348 6247856 6250556 Patches accumulated and obsoleted by this patch: Patches which conflict with this patch: Patches required with this patch: Obsoleted by: Files included with this patch: /opt/$ASINSTDIR/lib/install/templates/loadbalancer.xml.example Problem Description: 4928556 Add support to flush changes to a datastore in postInvoke 6192715 appserver 7.1UR2 installation fails on Solaris 10 OS 6208875 Upgrade installation Failed:java.io.FileNotFoundException:/sun/appserver7/./SUNWhadb/4-File Base 6185520 Installer doesn't upgrade load balancer plugin component 6211709 S1AS7 fails to persist relationship between CMP entity beans in n-to-m relationship 6200592 as8: the tag breaks basic authentication 6179712 Sample Application(JSTL): JSP's cannot be Pre-Compiled with precompile jsp set to TRUE 6217112 Incremental installation is not working on Windows 2000 professional. 4781119 ServletContext.log() content written as FINE rather than INFO 4916390 Can't pass command line options to javac during deployment of apps 5024923 AS7EE crashes if passed with illegal/unknown Request method (denial of service) 5027250 Silent installation fails for non-root user 5048226 Incorrect link in EJB Samples tutorials 5048234 Incorrect link in CMP Simple Application Tutorial 6157477 AS7 instance hangs when HADB database is down or hung. 6171762 Client JNDI lookups via S1ASCtxFactory fail when jndi-name contains a "." 6172138 Entries in statefulsessionbean table not clear when SJAS 7.0 2004Q2 EE crashes 6186811 RichAccess: HADB primary key constraint violation problem 6200386 Data format is not uniform in clresource.conf and clresource.conf.windows 6209453 Load balancer does not failover to other clusters when all instances are disabled on one cluster 6210327 *HOT* Appserver Reverse SSL Proxy plugin is vulnerable to MITM attacks 6215977 static file restriction failed for SJAS 7.1 6216970 Minor changes to documentation in logging 6217658 "Server-Parsed HTML" can lead to display jsp source with trailing '/' on URI 6218086 Invalid configuration: HTTP3205: Cannot postparse ACLs. In acl default, method = is undefined 6218460 Doc: Transactions can fail due to a transaction timeout even when the JTS timeout is large enough 6220602 Stateful session being passivated to disk as files are not removed LONG after removal timeout 6223083 Upgrading ONLY hadb via installer fails from 7.1UR1 6223279 ejb-ref-name jndi-name mapping generated wrongly for those that do not have jndi-name mapping 6223367 modification of acl does not add object into server1-obj.conf 6223368 Not able to see the ACL's in admin UI eg "B. Pick an existing ACL". 6224453 Files have to be changed to display right version (UR3) 6226096 Unable to build Application Server 7.1 outside of red.iplanet.com domain 6230908 change the sample loadbalancer.xml.example 6230921 loadbalancer crashes when reconfig is executed and loadbalancer.xml is not present. 6233088 Installer seems to indicate failure on upgrade install ERROR - Error replacing tokens in file 6233123 XA transaction with Oracle and JMS can lose a msg when the Oracle side dies 6236311 HADB-E-11309: Too many statement handles allocated. 6239408 RMI-IIOP Appclient tests are failing. 6240422 cross-site scripting vulnerability in a default error page 6240771 SJS Application Server 7.x -- EJB classloader does not close JAR input streams -- memory leak 6240774 After uninstalling loadbalancer plugin, new telnet connections don't work. 6241348 Failed to redirect to https (http-https-http) 6247856 In index.html app server version is Update 2 instead of update 3 6250556 In README.txt under System Requirements On Solaris x86 section mentions about Solaris 10. (from 117874-01) 6101639 Incremental installation for EE/File based enables HADB Admin client even after HADB installed 5053854 Require support for Sun-branded DataDirect JDBC driver. 6157310 Runtime reloads Collection field during relationship management 6155236 RHEL3.0: sometimes create-domain hangs and fails to create a domain in RHEL3.0 5006654 Request to deprecate sesssion id length configuration 4693581 RN: Exec to launch iMQ broker fails with IOException: Not Enough Space 6156737 Unable to start app server on HPUX with heap=1GB 6157465 HADB's full path is hard-coded asenv.conf file 6170685 Loadbalancer plugin does not detect an Appserver hang 6171994 Improper permissions in security.policy file causing startup hang 6173355 InvocationException when trying to get database connection when application server restarted 6175824 clsetup needs modification 6177502 REG: The About.html of SJAS 7.1 UR2 should be updated. 6177522 The CLSETUP assumptions should be updated 6178431 CLI: cannot programmatically delete jvm options from newly created instance with asadmin 6178742 s1as7.1_ur2-b01 failed to config: ssl3tlsciphers 6178969 RHEL3.0: sometimes create-instance hangs and fails to create an instance in RHEL3.0 6181948 alleged input validation error. 6182861 Exceptions with WSI Sample App running against SJSWS 6.1 with SJSAS 7.1UR1 EE loadbalancer plugin 6183278 cladmin is not working on AS7.1EE (2004Q2UR1-ee) WINDOWS Platform 6189919 cladmin is not working on 7.1UR2 WINDOWS Platform when instancefile or passwordfile options are used 6192955 Couldn't upgrade from 71UR1 to 71UR1ER1 or 71UR1ER1 to 71UR1ER2 Patch Installation Instructions: -------------------------------- Refer to the man pages for instructions on using 'patchadd' and 'patchrm' scripts provided with Solaris, to install and remove patches. Special Install Instructions: ----------------------------- None. README -- Last modified date: Monday, February 27, 2006