S48012 for Solaris for x64 |
SAS Web Server 9.4_M1 hot fix for SAS Environment Manager 2.1_M1 |
Issue(s) Addressed: | Introduced: |
52725 | ALERT - An OpenSSL Heartbleed vulnerability exists in SAS® 9.4 Web Server |
S48001 |
53341 | ALERT - OpenSSL vulnerabilities (05 Jun 2014) exist in the SAS® 9.4 Web Server |
S48001 |
54700 | ALERT - OpenSSL vulnerabilities (06 Aug 2014 and 15 Oct 2014) exist in the SAS® 9.4 Web Server |
S48001 |
54701 | SAS® Environment Manager does not recognize the updated SAS® Web Server |
S48001 |
56119 | SAS® Environment Manager has a known security vulnerability (CVE-2011-2730) |
S48002 |
56481 | ALERT - OpenSSL vulnerabilities exist in the SAS® 9.4 Web Server (OpenSSL advisories through 9th July 2015) |
S48003 |
57130 | SAS® Environment Manager has known high-severity security issues |
S48004 |
58194 | OpenSSL vulnerabilities exist in the SAS® 9.4 Web Server (OpenSSL advisories through 3rd May 2016) |
S48005 |
58351 | ALERT - The SAS® Environment Manager agent log might contain a security vulnerability |
S48005 |
58686 | SAS® Environment Manager exhibits a session-fixation vulnerability |
S48005 |
58688 | SAS® Environment Manager exhibits a Reflected File Download vulnerability |
S48005 |
57612 | ALERT - The Apache Commons Collections library is vulnerable to remote code execution |
S48005 |
59371 | OpenSSL vulnerabilities exist in the SAS® 9.4 Web Server (OpenSSL advisories through 26th September 2016) |
S48007 |
59239 | The SAS® 9.4 Installation Qualification Tool (W83001 Update) installation fails |
S48007 |
60108 | ALERT - OpenSSL vulnerabilities exist in the SAS® 9.4 Web Server (OpenSSL advisories through 2nd January 2017) |
S48008 |
60381 | A cross-site scripting vulnerability exists in the SAS® Environment Manager administrative application |
S48009 |
60408 | ALERT - The JCraft and JSch libraries that reside in the SAS® Environment Manager server and agent are vulnerable to directory traversal |
S48009 |
60664 | SAS® Environment Manager contains commons-beanutils libraries that are vulnerable to CVE-2014-0114 |
S48009 |
60908 | OpenSSL vulnerabilities exist in the SAS® 9.4 Web Server (OpenSSL advisories through 26th January 2017) |
S48010 |
61480 | SAS® Web Server uses an end-of-life version of the Apache 2.2 Server |
S48011 |
62144 | SAS® Environment Manager contains security vulnerabilities (multiple CVEs) |
S48011 |
62190 | OpenSSL vulnerabilities exist in the SAS® 9.4 Web Server (OpenSSL advisories through 27th March 2018) |
S48012 |
62511 | SAS® Environment Manager contains a stored cross-site scripting vulnerability |
S48012 |
62513 | SAS® Environment Manager is vulnerable to jackson-databind vulnerabilities |
S48012 |
62914 | SAS® Environment Manager Server is affected by multiple Apache Tomcat vulnerabilities |
S48012 |
62955 | SAS® Environment Manager contains vulnerable Apache Struts libraries |
S48012 |
NOTE: If you install this hot fix and have SAS Environment Manager Agent 2.1 installed, you should also install hot fix Y47005. |
|
D indicates that the Documentation has special pre-installation, post-installation or other unique instructions not commonly used for hot fix deployment. |