A8X009 |
SAS Environment Manager 2.5_M1 |
Issue(s) Addressed: | Introduced: |
60408 | ALERT - The JCraft and JSch libraries that reside in the SAS® Environment Manager server and agent are vulnerable to directory traversal |
A8X001 |
60381 | A cross-site scripting vulnerability exists in the SAS® Environment Manager administrative application |
A8X002 |
60664 | SAS® Environment Manager contains commons-beanutils libraries that are vulnerable to CVE-2014-0114 |
A8X003 |
60809 | A cross-site scripting vulnerability exists in SAS® Environment Manager |
A8X004 |
62144 | SAS® Environment Manager contains security vulnerabilities (multiple CVEs) |
A8X005 |
62511 | SAS® Environment Manager contains a stored cross-site scripting vulnerability |
A8X007 |
62513 | SAS® Environment Manager is vulnerable to jackson-databind vulnerabilities |
A8X007 |
62914 | SAS® Environment Manager Server is affected by multiple Apache Tomcat vulnerabilities |
A8X008 |
62955 | SAS® Environment Manager contains vulnerable Apache Struts libraries |
A8X008 |
66022 | The SAS® Environment Manager Server and Agent do not start, and you see the error "Version number may be negative or greater than 255" |
A8X009 |
66144 | The SAS® Environment Manager server fails to start after you upgrade the SAS® 9.4 Private Java Runtime Environment |
A8X009 |
NOTE: If you install this hot fix and have SAS Environment Manager Agent 2.5_M1 installed, you should also install hot fix A6R006. |
|
D indicates that the Documentation has special pre-installation, post-installation or other unique instructions not commonly used for hot fix deployment. |