SAS Institute. The Power to Know
 
 
 

DataFlux Data Management Server 2.9

Hot Fix Downloads for Windows

* General Information about Hot Fixes

J6K001 for Windows
DataFlux Data Management Server 2.9
Issue(s) Addressed:Introduced:
67117 DataFlux® Data Management Studio 2.9 and DataFlux® Data Management Server 2.9 are affected by the JQuery vulnerability described in CVE-2020-11022 J6K001
NOTE: Additional patches are required for DataFlux Secure. To obtain the DataFlux Secure patches, please contact SAS Technical Support and reference SAS Note 67117.
Released: December 21, 2020     Documentation: J6K001wn.txt D       Download: J6K001wn.zip  
D indicates that the Documentation has special pre-installation, post-installation or other unique instructions not commonly used for hot fix deployment.
Top ^

J6K002 for Windows
DataFlux Data Management Server 2.9
Issue(s) Addressed:Introduced:
67285 DataFlux® Data Management Studio 2.9 and DataFlux® Data Management Server 2.9 contain an Apache Tika component with known vulnerabilities J6K002
Released: January 25, 2021     Documentation: J6K002wn.txt D       Download: J6K002wn.zip  
D indicates that the Documentation has special pre-installation, post-installation or other unique instructions not commonly used for hot fix deployment.
Top ^

J6K003 for Windows
DataFlux Data Management Server 2.9
Issue(s) Addressed:Introduced:
67319 DataFlux® Data Management Server 2.9 REST APIs contain a cross-site request forgery (CSRF) vulnerability J6K003
NOTE: Additional patches are required for DataFlux Secure. To obtain the DataFlux Secure patches, please contact SAS Technical Support and reference SAS Note 67319.
Released: January 28, 2021     Documentation: J6K003wn.txt D       Download: J6K003wn.zip  
D indicates that the Documentation has special pre-installation, post-installation or other unique instructions not commonly used for hot fix deployment.
Top ^

J6K005 for Windows
DataFlux Data Management Server 2.9
Issue(s) Addressed:Introduced:
68493 DataFlux® Data Management Server 2.9 contains an Apache Velocity component with a known vulnerability J6K005
Released: October 19, 2021     Documentation: J6K005wn.txt D       Download: J6K005wn.zip  
D indicates that the Documentation has special pre-installation, post-installation or other unique instructions not commonly used for hot fix deployment.
Top ^

J6K006 for Windows
DataFlux Data Management Server 2.9
Issue(s) Addressed:Introduced:
68491 DataFlux® Data Management Server 2.9 contains an Apache Tika component with known vulnerabilities J6K006
Released: October 19, 2021     Documentation: J6K006wn.txt D       Download: J6K006wn.zip  
D indicates that the Documentation has special pre-installation, post-installation or other unique instructions not commonly used for hot fix deployment.
Top ^

J6K007 was replaced by J6K009

J6K009 for Windows
DataFlux Data Management Server 2.9
Issue(s) Addressed:Introduced:
68699 ALERT - DataFlux® Data Management Studio and DataFlux® Data Management Server 2.9 contain an Apache Log4j component with known vulnerabilities J6K007
NOTE: Before installing this hot fix, you must first complete the SAS 9.4 platform-level Instructions for the SAS Response to Log4j Vulnerabilities. With this hot fix, SAS updates the log4j version included with Data Management Server to 2.17.1.
Released: January 25, 2022     Documentation: J6K009wn.txt D       Download: J6K009wn.zip  
D indicates that the Documentation has special pre-installation, post-installation or other unique instructions not commonly used for hot fix deployment.
Top ^

J6K015 for Windows
DataFlux Data Management Server 2.9
Issue(s) Addressed:Introduced:
69836 ALERT - DataFlux® Data Management Studio and DataFlux® Data Management Server 2.9 contain components with known vulnerabilities J6K015
Released: February 21, 2023     Documentation: J6K015wn.txt D       Download: J6K015wn.zip  
D indicates that the Documentation has special pre-installation, post-installation or other unique instructions not commonly used for hot fix deployment.
Top ^



PLEASE CAREFULLY READ THE TERMS AND CONDITIONS OF THIS LICENSE AGREEMENT ("AGREEMENT") BEFORE DOWNLOADING MATERIALS FROM THIS SITE. BY DOWNLOADING ANY MATERIALS FROM THIS SITE, YOU ARE AGREEING TO THESE TERMS.
You are downloading software code ("Code") which will become part of a product ("Software") you currently have licensed from SAS Institute Inc. or one of its subsidiaries ("the Institute"). this Code is designed to either correct an error in the Software or to add functionality to the Software. The code is governed by the same agreement which governs the Software. If you do not have an existing agreement with the Institute governing the Software, you may not download the Code.
SAS and all other SAS Institute Inc. product or service names are registered trademarks or trademarks of SAS Institute Inc. in the USA and other countries. ® indicates USA registration. Other brand and product names are registered trademarks or trademarks of their respective companies.
Copyright © SAS Institute Inc. All Rights Reserved.