This fix resolves the log4j2 security issue CVE-2021-44832 with log4j 2.17.1.

Readme documentation for IBM Spectrum LSF Suite V10.2.0 Fix including installation-related instructions, prerequisites and co-requisites, and list of fixes.
This fix resolves the following issue:
The log4j2 utility has 3 security issues (CVE-2021-44228, CVE-2021-45046, CVE-2021-44832).

Readme file for: IBM® Spectrum LSF Suite
Product/Component Release: 10.2.0.12
Update Name: Fix 600958
Fix ID: Suite-10.2.0.12-build600958
Publication date: Jan. 9, 2022
Last modified date: Jan. 9, 2022

• List of fixes
• Download location
• Product notifications
• Products or components affected
• System requirements
• Installation and configuration
• Uninstallation
• List of files
• Copyright and trademark information

• List of fixes
  

  P104528

• Download location

  Download from the following location: http://www.ibm.com/eserver/support/fixes/

• Product notifications:

  To receive information about product solution and patch updates automatically, subscribe to product notifications on the My notifications page http://www.ibm.com/support/mynotifications/ on the IBM Support website (http://support.ibm.com). You can edit your subscription settings to choose the types of information you want to get notification about, for example, security bulletins, fixes, troubleshooting, and product enhancements or documentation changes.

• Products or components affected

  Application Center Server
  Explorer
  Resource Connector

• System requirements
  • Linux-x86_64
  • PPC64LE
• Installation and configuration
  • 6.1  Before installation
    • Log on to the IBM Spectrum LSF Suite installer host as root.
  • 6.2  Installation steps for IBM Spectrum LSF Suite V10.2.0.
    

    Note: 1. This patch is only for LSF Suite V10.2.0. If you are using other versions, you must first migrate to V10.2.0 before applying this patch.

    • Run suite10.2.0.12-build600958-${ARCH}.bin. Where ${ARCH} is x86_64 or ppc64le
      ./suite10.2.0.12-build600958-${ARCH}.bin
    • Follow the instructions to install the patch.
• Uninstallation
  • 7.1  Before uninstallation

    Log on to the IBM Spectrum LSF Suite installer host as root.

  • 7.2  Roll back the fix
    • Go to Ansible playbook directory
      #cd /opt/ibm/lsf_installer/playbook
    • Rollback the ifix
      #ansible-playbook -i lsf-inventory lsf-rollback-ifix.yml
• List of files
  

  lsf-gui.rpm

  lsf-appcenter.rpm

  lsf-perf.rpm

  lsf-resource-connector.rpm

  lsf-explorer-server.rpm

• Copyright and trademark information

  ©Copyright IBM Corporation 2022
  
  U.S. Government Users Restricted Rights - Use, duplication or disclosure restricted by GSA ADP Schedule Contract with IBM Corp.
  
  IBM®, the IBM logo and ibm.com® are trademarks of International Business Machines Corp., registered in many jurisdictions worldwide. Other product and service names might be trademarks of IBM or other companies. A current list of IBM trademarks is available on the Web at "Copyright and trademark information" at http://www.ibm.com/legal/copytrade.shtml