| R75023 for HP-UX IPF |
| SAS Middle Tier 9.4_M2 |
| Issue(s) Addressed: | Introduced: |
| 55255 | Incorrect LIBNAME statements might be generated from a library that is configured with a relative path in SAS® 9.4 TS1M2 |
R75001 |
| 56133 | An I/O error occurs when you use the Job Execution Service to submit large jobs in SAS® Visual Analytics |
R75001 |
| 56680 | A Postgres error occurs when you submit large jobs to the Job Execution Service in the SAS® System |
R75001 |
| 58787 | Specifying an email alert threshold for the SAS® Deployment Backup and Recovery Tool |
R75001 |
| 56199 | Batch import and export processes fail and return the error "Could not access HTTP invoker remote service" |
R75001 |
| 56866 | The error "The deployed job ("xxx") does not have a Job object associated to it" occurs when you edit an associated job in SAS® Management Console |
R75001 |
| 59092 | Using the Manage Deployed Jobs dialog box returns "Metadata error: The deployed job ("job-name") is not associated with a job object..." |
R75001 |
| 58867 | TLSv1.2 is not supported by Java IOM clients |
R75001 |
| 60440 | A session-hijacking vulnerability exists in SAS® web applications |
R75001 |
| 60437 | A cross-site scripting vulnerability exists in the Preferences web application for SAS® 9.3 TS1M0 and later |
R75001 |
| 60351 | Internet HTTP requests for "tgt.keepal.ive" and "www.LazySecurityContext.com" originate from SAS® 9.4 Web Infrastructure Platform |
R75001 |
| 60265 | Arbitrary redirection from SAS® 9.4 Logon Manager results in a phishing vulnerability |
R75001 |
| 55176 | An error occurs when you run the SAS® Deployment and Backup tool and you use IBM WebSEAL for web authentication |
R75001 |
| 53981 | An SQL exception occurs when you create documents with attachments in SAS® Marketing Optimization |
R75002 |
| 54914 | An error occurs if you execute the Relationship Loader batch tool when the SAS® Web Server is set to use SSL |
R75002 |
| 55053 | Errors in SAS® LIBNAME statements occur for metadata-defined libraries with relative path references |
R75002 |
| 55058 | ALERT - Dynamic prompts for a SAS® Stored Process might fail to load and return "access denied," "data source not found," or other permissions-related errors |
R75002 |
| 54865 | The SAS® Deployment Backup and Recovery Tool might not remove temporary SAS® Content Server backup files from the drop-zone directory |
R75003 |
| 54956 | The SAS® Deployment Backup and Recovery Tool purge operation leaves empty directories |
R75003 |
| 54960 | The SAS® Logon Manager might be vulnerable to reflected cross-site scripting attacks |
R75003 |
| 55358 | SAS® Management Console now supports encryption and signer options on SAS® data in HDFS libraries |
R75003 |
| 55044 | ALERT - SAS® Web Infrastructure Platform applications (including SAS® Logon Manager) might be vulnerable to Cross-Site Request Forgery attacks |
R75004 |
| 54238 | The SAS® 9.4 Web Administration Console displays old user sessions |
R75004 |
| 55362 | Job Execution Service configuration errors are displayed when you try to run a diagram |
R75004 |
| 55537 | ALERT - A reflected cross-site scripting vulnerability has been identified in SAS® Logon Manager |
R75004 |
| 55582 | Job, Deployed Job, and Deployed Flow objects created using the Schedule Manager are created in the wrong repository |
R75004 |
| 54804 | A null-pointer exception occurs in the SAS® 9.4 Web Administration Console (TS1M1) when you load user sessions |
R75004 |
| 55344 | When used in a Windows operating environment, the Deployment Backup and Recovery tool might fail to archive the backup to the central vault |
R75004 |
| 55734 | The Kerberos authentication protocol for IBM Platform Process Manager 9.1.3 is now available in SAS® 9.4 TS1M2 |
R75004 |
| 55539 | The SAS® 9.4 Web Administration interface contains a cross-site scripting vulnerability. |
R75005 |
| 55703 | OLAP-based SAS® Information Maps created in SAS® 9.1.3 might display a formula error in SAS® 9.3 and later releases |
R75005 |
| 56191 | Folders are not displayed in SAS® Management Console when you log on with credentials from a group's metadata definition |
R75005 |
| 55740 | An error occurs when you select the "Users" link (under "Environment Management") in SAS® Web Administration Console |
R75006 |
| 56550 | SAS® Studio Mid-Tier enterprise edition times out after 12 hours even if a longer time-out interval has been set |
R75006 |
| 54190 | Establishing connections to object-spawner machine definitions in SAS® Management Console might take several minutes |
R75007 |
| 56413 | SAS® Web Report Studio reports that are based on large OLAP data might exhibit poor performance |
R75007 |
| 56560 | SAS® Content Server is vulnerable to an XML external entity exploitation (CVE-2015-1833) |
R75007 |
| 56884 | You might not be able to save a workflow template to the repository in SAS® Workflow Studio |
R75007 |
| 57047 | Renaming a SAS® Visual Analytics report might fail with "403 (Forbidden) during MOVE" |
R75008 |
| 57149 | Renaming an object in SAS® Model Manager gives a "You do not have permission to rename ..." error |
R75008 |
| 54186 | A phishing vulnerability is possible through arbitrary redirection from the SAS® logoff page |
R75009 |
| 57131 | SAS® Data Integration Studio jobs that contain an SQL subquery lose subquery metadata after you run the Analyze and Repair Tool |
R75009 |
| 58042 | When you import tables using SAS® Management Console, the physical names of the imported tables become corrupted |
R75010 |
| 58068 | A calculated item that includes the INTNX function fails validation in SAS® Customer Intelligence Studio |
R75010 |
| 58776 | A cross-site scripting vulnerability exists in the SAS® web applications |
R75011 |
| 52971 | Results are incorrect when you use the operator EXACTLY MATCHES in the custom details of SAS® Marketing Automation |
R75013 |
| 55325 | Executing more than one communication in SAS® Customer Intelligence might fail with a java.util.ConcurrentModificationException |
R75013 |
| 57183 | Viewing the SID files in metadata via code submission for SAS® 9.4 (TS1M1) and earlier or via SAS® Management Console for SAS® 9.4 (TS1M2) and later |
R75013 |
| 58773 | Queries in SAS® Workflow Services fail for users that belong to more than 1,000 groups |
R75013 |
| 58774 | SAS® Web Infrastructure Platform Unable to log on as a user with membership in over a 1,000 groups |
R75013 |
| 59495 | SAS® 9.3 and SAS® 9.4 solutions might return an error message and stop working during the licensing warning period |
R75013 |
| 59700 | Flow contents are lost when more than one person edits the same flow concurrently in the SAS® Management Console Schedule Manager plug-in |
R75014 |
| 59608 | SAS® Content Server recovery fails with the Deployment Backup and Recovery Tool and returns "COMMAND_TOOL_ERROR_SCS" |
R75014 |
| 58970 | You cannot disable the "Required" flag in the Custom Details Groups in SAS® Customer Intelligence Studio |
R75015 |
| 61010 | Incorrect values are stored for the common data model when it is used in a SAS® Customer Intelligence Studio campaign |
R75015 |
| 61880 | The SAS® 9.4 Logon Manager time-out page is vulnerable to injection of HTML code |
R75015 |
| 60073 | Scheduling many operating system scheduler jobs causes the operating system to use a large quantity of resources and affects performance |
R75016 |
| 57097 | The Update Host Name References tool in SAS® Deployment Manager builds an invalid JDBC URL and an error message is generated |
R75016 |
| 62425 | A cross-site scripting vulnerability exists in the SAS® BI Dashboard Adobe Flash component |
R75016 |
| 62324 | The SAS® 9.4 Deployment Backup and Recovery tool prints SAS® encoded password values in the backupserver.log file |
R75016 |
| 62540 | SAS® Information Delivery Portal contains a session-fixation vulnerability |
R75020 |
| 63459 | SAS® 9.4 Logon Manager contains a version of JQuery that has reached end-of-life status |
R75020 |
| 63828 | A clustered middle tier can become unresponsive upon start-up |
R75021 |
| 60622 | Redeploying a job using SAS® Management Console fails with the "UNKNOWN_ORIGINAL_SOURCE_FILE" error when the deployed job is defined by importing |
R75022 |
| 56451 | The error "The Application is not authorized to use SAS Logon Manager" occurs when you try to log on to SAS® Environment Manager |
R75023 |
| 57799 | The WebDAV repository connection attempt fails with HTTP connection-manager errors |
R75023 |
| 60719 | Out-of-disk-space issues occur when temporary files are not removed from the \\WebAppServer\\SASServer_#\\temp directory |
R75023 |
| 62727 | Date values in Custom Detail date fields shift by -2 days in SAS® Customer Intelligence Studio |
R75023 |
| 63338 | Applications that use the comments service contain a security vulnerability with the use of comments |
R75023 |
| 67449 | A security vulnerability in IBM Platform Process Manager affects Platform Suite for SAS® |
R75023 |
NOTE: If you install this hot fix, you must also install hot fix
A2M003 for SAS Flex Application
to fully implement security related updates.
|
|
| D indicates that the Documentation has special pre-installation, post-installation or other unique instructions not commonly used for hot fix deployment. |
General Information about Hot Fixes