PK00154: WEBSPHERE SECURITY CODE NEEDS TO HANDLE CASE WHEN SYSTEM CALL GETGRGID() RETURNS NULL, CURRENTLY THIS CAUSES A SERVANT CRASH. | |||||||||||||||||||||||||||||||||||||||||||
![]() |
|||||||||||||||||||||||||||||||||||||||||||
![]() APAR status Closed as program error. Error description In WebSphere for z/OS currently the security code does not handle the case when the return value from the system call getgrgid() is NULL. This may occur in certain situations when a particular userid belongs to a large number of groups. This could cause the server to crash when such a situation occurs. This apar will address this problem.Local fix Problem summary **************************************************************** * USERS AFFECTED: All users of WebSphere Application Server * * V5.0 for z/OS * **************************************************************** * PROBLEM DESCRIPTION: ABENDS0C4/ABENDS0C4 in BBOSEC, * * signal=SIGSEGV, sigcode=SEGV_PROTECT, * * when performing security administration * * functions on a userid. * **************************************************************** * RECOMMENDATION: * **************************************************************** In WebSphere Application Server for z/OS currently the security code does not handle the case when the return value from the system call getgrgid() is NULL.Problem conclusion Add code to only process the results from getgrgid() if a non-null value was returned by the system call. APAR PK00154 is associated with SERVICE LEVEL W502024 of WebSphere Application Server V5.0 for z/OS.Temporary fix Comments
APAR is sysrouted FROM one or more of the following: APAR is sysrouted TO one or more of the following: PK00155 Modules/Macros
Publications Referenced
|
Document Information |
Current web document: swg1PK00154.html
Product categories: Software > Application Servers >
Distributed Application & Web Servers > WebSphere Application
Server for z/OS
Operating system(s):
Software version: 500
Software edition:
Reference #: PK00154
IBM Group: Software Group
Modified date: Apr 28, 2005
(C) Copyright IBM Corporation 2000, 2009. All Rights Reserved.