Providing software solutions since 1976


SAS Web Server 9.4_M1

Hot Fix Downloads

* Important changes to Hot Fixes!

S48001 was replaced by S48010

S48002 was replaced by S48010

S48003 was replaced by S48010

S48004 was replaced by S48010

S48005 was replaced by S48010

S48006 was replaced by S48010

S48007 was replaced by S48010

S48008 was replaced by S48010

S48009 was replaced by S48010

S48010
SAS Web Server 9.4_M1
Issue(s) Addressed:Introduced:
52725 ALERT - An OpenSSL Heartbleed vulnerability exists in SASŪ 9.4 Web Server S48001
53341 ALERT - OpenSSL vulnerabilities (05 Jun 2014) exist in the SASŪ 9.4 Web Server S48001
54700 ALERT - OpenSSL vulnerabilities (06 Aug 2014 and 15 Oct 2014) exist in the SASŪ 9.4 Web Server S48001
54701 SASŪ Environment Manager does not recognize the updated SASŪ Web Server S48001
56119 SASŪ Environment Manager has a known security vulnerability (CVE-2011-2730) S48002
56481 ALERT - OpenSSL vulnerabilities exist in the SASŪ 9.4 Web Server (OpenSSL advisories through 9th July 2015) S48003
57130 SASŪ Environment Manager has known high-severity security issues S48004
58194 OpenSSL vulnerabilities exist in the SASŪ 9.4 Web Server (OpenSSL advisories through 3rd May 2016) S48005
58351 ALERT - The SASŪ Environment Manager agent log might contain a security vulnerability S48005
58686 SASŪ Environment Manager exhibits a session-fixation vulnerability S48005
58688 SASŪ Environment Manager exhibits a Reflected File Download vulnerability S48005
57612 ALERT - The Apache Commons Collections library is vulnerable to remote code execution S48005
59371 OpenSSL vulnerabilities exist in the SASŪ 9.4 Web Server (OpenSSL advisories through 26th September 2016) S48007
59239 The SASŪ 9.4 Installation Qualification Tool (W83001 Update) installation fails S48007
60108 ALERT - OpenSSL vulnerabilities exist in the SASŪ 9.4 Web Server (OpenSSL advisories through 2nd January 2017) S48008
60381 A cross-site scripting vulnerability exists in SASŪ Environment Manager S48009
60408 ALERT - The JCraft and JSch libraries that reside in the SASŪ Environment Manager server and agent are vulnerable to directory traversal S48009
60664 SASŪ Environment Manager contains commons-beanutils libraries that are vulnerable to CVE-2014-0114 S48009
60908 OpenSSL vulnerabilities exist in the SASŪ 9.4 Web Server (OpenSSL advisories through 26th January 2017) S48010
NOTE: If you install this hot fix and have SAS Environment Manager Agent 2.1 installed, you should also install hot fix Y47004.
Windows for x64 Released: September 13, 2017     Documentation: S48010x6.html D       Download: S48010pt.zip  
64-bit Enabled Solaris Released: September 13, 2017     Documentation: S48010s6.html D       Download: S48010pt.zip  
64-bit Enabled AIX Released: September 13, 2017     Documentation: S48010r6.html D       Download: S48010pt.zip  
HP-UX IPF Released: September 13, 2017     Documentation: S48010hx.html D       Download: S48010pt.zip  
Linux for x64 Released: September 13, 2017     Documentation: S48010la.html D       Download: S48010pt.zip  
Solaris for x64 Released: September 13, 2017     Documentation: S48010sx.html D       Download: S48010pt.zip  
D indicates that the Documentation has special pre-installation, post-installation or other unique instructions not commonly used for hot fix deployment.
Top ^




PLEASE CAREFULLY READ THE TERMS AND CONDITIONS OF THIS LICENSE AGREEMENT ("AGREEMENT") BEFORE DOWNLOADING MATERIALS FROM THIS SITE. BY DOWNLOADING ANY MATERIALS FROM THIS SITE, YOU ARE AGREEING TO THESE TERMS.
You are downloading software code ("Code") which will become part of a product ("Software") you currently have licensed from SAS Institute Inc. or one of its subsidiaries ("the Institute"). this Code is designed to either correct an error in the Software or to add functionality to the Software. The code is governed by the same agreement which governs the Software. If you do not have an existing agreement with the Institute governing the Software, you may not download the Code.
SAS and all other SAS Institute Inc. product or service names are registered trademarks or trademarks of SAS Institute Inc. in the USA and other countries. ® indicates USA registration. Other brand and product names are registered trademarks or trademarks of their respective companies.

Copyright © 2017 SAS Institute Inc. All Rights Reserved.