support.sas.com
 
 
support.sas.com


SAS Environment Manager 2.5

Hot Fix Downloads

* Important changes to Hot Fixes!

V76015 was replaced by V76019

V76016 was replaced by V76019

V76017 was replaced by V76019

V76018 was replaced by V76019

V76019
SAS Environment Manager 2.5
Issue(s) Addressed:Introduced:
56688 You cannot log on to SAS® Environment Manager when an external reverse proxy is configured V76002
57130 SAS® Environment Manager has known high-severity security issues V76003
57612 ALERT - The Apache Commons Collections library is vulnerable to remote code execution V76004
58196 The Apache Groovy library is vulnerable to remote code execution V76004
58351 ALERT - The SAS® Environment Manager agent log might contain a security vulnerability V76007
58686 SAS® Environment Manager exhibits a session-fixation vulnerability V76007
58688 SAS® Environment Manager exhibits a Reflected File Download vulnerability V76007
56119 SAS® Environment Manager has a known security vulnerability (CVE-2011-2730) V76008
60381 A cross-site scripting vulnerability exists in SAS® Environment Manager V76011
60408 ALERT - The JCraft and JSch libraries that reside in the SAS® Environment Manager server and agent are vulnerable to directory traversal V76011
60664 SAS® Environment Manager contains commons-beanutils libraries that are vulnerable to CVE-2014-0114 V76012
60809 A cross-site scripting vulnerability exists in SAS® Environment Manager V76013
61159 A security scan might report a vulnerability in SAS® Environment Manager V76015
62144 SAS® Environment Manager contains security vulnerabilities (multiple CVEs) V76016
62511 SAS® Environment Manager contains a stored cross-site scripting vulnerability V76018
62513 SAS® Environment Manager is vulnerable to jackson-databind vulnerabilities V76018
62914 SAS® Environment Manager Server is affected by multiple Apache Tomcat vulnerabilities V76019
62955 SAS® Environment Manager contains vulnerable Apache Struts libraries V76019
NOTE: If you install this hot fix and have SAS Environment Manager Agent 2.5 installed, you must also install hot fix W85006.
Windows for x64 Released: September 21, 2018     Documentation: V76019x6.html       Download: V76019pt.zip  
64-bit Enabled Solaris Released: September 21, 2018     Documentation: V76019s6.html       Download: V76019pt.zip  
64-bit Enabled AIX Released: September 21, 2018     Documentation: V76019r6.html       Download: V76019pt.zip  
HP-UX IPF Released: September 21, 2018     Documentation: V76019hx.html       Download: V76019pt.zip  
Linux for x64 Released: September 21, 2018     Documentation: V76019la.html       Download: V76019pt.zip  
Solaris for x64 Released: September 21, 2018     Documentation: V76019sx.html       Download: V76019pt.zip  
Top ^




PLEASE CAREFULLY READ THE TERMS AND CONDITIONS OF THIS LICENSE AGREEMENT ("AGREEMENT") BEFORE DOWNLOADING MATERIALS FROM THIS SITE. BY DOWNLOADING ANY MATERIALS FROM THIS SITE, YOU ARE AGREEING TO THESE TERMS.
You are downloading software code ("Code") which will become part of a product ("Software") you currently have licensed from SAS Institute Inc. or one of its subsidiaries ("the Institute"). this Code is designed to either correct an error in the Software or to add functionality to the Software. The code is governed by the same agreement which governs the Software. If you do not have an existing agreement with the Institute governing the Software, you may not download the Code.
SAS and all other SAS Institute Inc. product or service names are registered trademarks or trademarks of SAS Institute Inc. in the USA and other countries. ® indicates USA registration. Other brand and product names are registered trademarks or trademarks of their respective companies.

Copyright © 2018 SAS Institute Inc. All Rights Reserved.