PK00154: WEBSPHERE SECURITY CODE NEEDS TO HANDLE CASE WHEN SYSTEM CALL GETGRGID() RETURNS NULL, CURRENTLY THIS CAUSES A SERVANT CRASH.

 A fix is available

Obtain the fix for this APAR



APAR status
Closed as program error.

Error description
In WebSphere for z/OS currently the security code does not
handle the case when the return value from the system call
getgrgid() is NULL. This may occur in certain situations when
a particular userid belongs to a large number of groups. This
could cause the server to crash when such a situation occurs.
This apar will address this problem.
Local fix Problem summary
****************************************************************
* USERS AFFECTED: All users of WebSphere Application Server    *
*                 V5.0 for z/OS                                *
****************************************************************
* PROBLEM DESCRIPTION: ABENDS0C4/ABENDS0C4 in BBOSEC,          *
*                      signal=SIGSEGV, sigcode=SEGV_PROTECT,   *
*                      when performing security administration *
*                      functions on a userid.                  *
****************************************************************
* RECOMMENDATION:                                              *
****************************************************************
In WebSphere Application Server for z/OS currently the
security code does not handle the case when the return value
from the system call getgrgid() is NULL.
Problem conclusion
Add code to only process the results from getgrgid() if a
non-null value was returned by the system call.

APAR PK00154 is associated with SERVICE LEVEL W502024 of
WebSphere Application Server V5.0 for z/OS.
Temporary fix Comments
APAR information
APAR number PK00154
Reported component name WEBSPHERE FOR Z
Reported component ID 5655I3500
Reported release 500
Status CLOSED PER
PE NoPE
HIPER NoHIPER
Special Attention NoSpecatt
Submitted date 2005-01-27
Closed date 2005-02-19
Last modified date 2005-04-28

APAR is sysrouted FROM one or more of the following:

APAR is sysrouted TO one or more of the following:
PK00155

Modules/Macros
BBOUBINF          

Publications Referenced

Fix information
Fixed component name WEBSPHERE FOR Z
Fixed component ID 5655I3500

Applicable component levels
R500 PSY UK00732    UP05/02/23 P F502

  Fix is available
Select the PTF appropriate for your component level. You will be required to sign in. Distribution on physical media is not available in all countries.


Document Information


Current web document: swg1PK00154.html
Product categories: Software > Application Servers > Distributed Application & Web Servers > WebSphere Application Server for z/OS
Operating system(s):
Software version: 500
Software edition:
Reference #: PK00154
IBM Group: Software Group
Modified date: Apr 28, 2005