SAS Institute. The Power to Know
 
 
 

SAS Web Report Viewer 4.4_M6

Hot Fix Downloads

* General Information about Hot Fixes

E3F001 was replaced by E3F009

E3F002 was replaced by E3F009

E3F004 was replaced by E3F009

E3F005 was replaced by E3F009

E3F006 was replaced by E3F009

E3F007 was replaced by E3F009

E3F008 was replaced by E3F009

E3F009
SAS Web Report Viewer 4.4_M6
Issue(s) Addressed:Introduced:
62370 OLAP dimensions defined with a period for the All level cannot be resized in SAS® Web Report Studio E3F001
62499 In SAS® Web Report Studio, the section name field contains a cross-site scripting vulnerability E3F001
62972 SAS® Web Report Studio URL has a cross-site scripting vulnerability E3F001
63519 SAS® Web Report Studio contains parameter-sanitization vulnerabilites E3F001
63844 Application parameters are not sanitized in SAS® Web Report Studio E3F001
63899 Opening a SAS® Web Report Studio report from SAS® BI Dashboard returns an HTTP 500 or an HTTP 403 error E3F001
61043 Drilling to detail data in an OLAP-based SAS® Web Report Studio report might result in an MDX error E3F002
64019 NLNUM format is not honored when accessing a SAS® Web Report Studio report via a remote link or URL E3F002
64984 SAS® Web Report Studio contains an information-disclosure vulnerability E3F004
64867 SAS® Web Report Studio contains a stored cross-site scripting vulnerability in the "Folder Name" field E3F005
66816 SAS® Web Report Studio contains a cross-site scripting vulnerability in the Report Properties dialog box E3F006
67581 The tool-tip function in the SAS® Web Report image tool contains a cross-site scripting vulnerability E3F007
67583 The "Section Data" panel in SAS® Web Report Studio contains a cross-site scripting vulnerability E3F007
68008 SAS® Web Report Studio contains a cross-site scripting vulnerability that is related to the software's information-map input fields E3F008
68796 SAS® Web Report Studio contains a stored cross-site scripting (XSS) vulnerability E3F009
NOTE: If you install this hot fix, you must also install hot fix E3G009 for SAS BI Report Services 4.4_M6.
Windows for x64 Released: January 18, 2022     Documentation: E3F009x6.html D       Download: E3F009pt.zip  
64-bit Enabled Solaris Released: January 18, 2022     Documentation: E3F009s6.html D       Download: E3F009pt.zip  
64-bit Enabled AIX Released: January 18, 2022     Documentation: E3F009r6.html D       Download: E3F009pt.zip  
HP-UX IPF Released: January 18, 2022     Documentation: E3F009hx.html D       Download: E3F009pt.zip  
Linux for x64 Released: January 18, 2022     Documentation: E3F009la.html D       Download: E3F009pt.zip  
Solaris for x64 Released: January 18, 2022     Documentation: E3F009sx.html D       Download: E3F009pt.zip  
D indicates that the Documentation has special pre-installation, post-installation or other unique instructions not commonly used for hot fix deployment.
Top ^

E3G001 was replaced by E3G009

E3G002 was replaced by E3G009

E3G004 was replaced by E3G009

E3G005 was replaced by E3G009

E3G006 was replaced by E3G009

E3G007 was replaced by E3G009

E3G008 was replaced by E3G009

E3G009
SAS BI Report Services 4.4_M6 hot fix for SAS Web Report Viewer 4.4_M6
Issue(s) Addressed:Introduced:
62370 OLAP dimensions defined with a period for the All level cannot be resized in SAS® Web Report Studio E3G001
62499 In SAS® Web Report Studio, the section name field contains a cross-site scripting vulnerability E3G001
62972 SAS® Web Report Studio URL has a cross-site scripting vulnerability E3G001
63519 SAS® Web Report Studio contains parameter-sanitization vulnerabilites E3G001
63844 Application parameters are not sanitized in SAS® Web Report Studio E3G001
63899 Opening a SAS® Web Report Studio report from SAS® BI Dashboard returns an HTTP 500 or an HTTP 403 error E3G001
61043 Drilling to detail data in an OLAP-based SAS® Web Report Studio report might result in an MDX error E3G002
64019 NLNUM format is not honored when accessing a SAS® Web Report Studio report via a remote link or URL E3G002
64984 SAS® Web Report Studio contains an information-disclosure vulnerability E3G004
64867 SAS® Web Report Studio contains a stored cross-site scripting vulnerability in the "Folder Name" field E3G005
66816 SAS® Web Report Studio contains a cross-site scripting vulnerability in the Report Properties dialog box E3G006
67581 The tool-tip function in the SAS® Web Report image tool contains a cross-site scripting vulnerability E3G007
67583 The "Section Data" panel in SAS® Web Report Studio contains a cross-site scripting vulnerability E3G007
68008 SAS® Web Report Studio contains a cross-site scripting vulnerability that is related to the software's information-map input fields E3G008
68796 SAS® Web Report Studio contains a stored cross-site scripting (XSS) vulnerability E3G009
z/OS Released: January 18, 2022     Documentation: E3G009os.html       Download: E3G009pt.zip  
Windows Released: January 18, 2022     Documentation: E3G009wn.html       Download: E3G009pt.zip  
Windows for x64 Released: January 18, 2022     Documentation: E3G009x6.html       Download: E3G009pt.zip  
64-bit Enabled Solaris Released: January 18, 2022     Documentation: E3G009s6.html       Download: E3G009pt.zip  
64-bit Enabled AIX Released: January 18, 2022     Documentation: E3G009r6.html       Download: E3G009pt.zip  
HP-UX IPF Released: January 18, 2022     Documentation: E3G009hx.html       Download: E3G009pt.zip  
Linux for x64 Released: January 18, 2022     Documentation: E3G009la.html       Download: E3G009pt.zip  
Solaris for x64 Released: January 18, 2022     Documentation: E3G009sx.html       Download: E3G009pt.zip  
Top ^



PLEASE CAREFULLY READ THE TERMS AND CONDITIONS OF THIS LICENSE AGREEMENT ("AGREEMENT") BEFORE DOWNLOADING MATERIALS FROM THIS SITE. BY DOWNLOADING ANY MATERIALS FROM THIS SITE, YOU ARE AGREEING TO THESE TERMS.
You are downloading software code ("Code") which will become part of a product ("Software") you currently have licensed from SAS Institute Inc. or one of its subsidiaries ("the Institute"). this Code is designed to either correct an error in the Software or to add functionality to the Software. The code is governed by the same agreement which governs the Software. If you do not have an existing agreement with the Institute governing the Software, you may not download the Code.
SAS and all other SAS Institute Inc. product or service names are registered trademarks or trademarks of SAS Institute Inc. in the USA and other countries. ® indicates USA registration. Other brand and product names are registered trademarks or trademarks of their respective companies.
Copyright © 2022 SAS Institute Inc. All Rights Reserved.