惯性聚合 高效追踪和阅读你感兴趣的博客、新闻、科技资讯
阅读原文 在惯性聚合中打开

推荐订阅源

T
Threatpost
aimingoo的专栏
aimingoo的专栏
OSCHINA 社区最新新闻
OSCHINA 社区最新新闻
T
Tailwind CSS Blog
J
Java Code Geeks
博客园_首页
Google Online Security Blog
Google Online Security Blog
Hugging Face - Blog
Hugging Face - Blog
C
CXSECURITY Database RSS Feed - CXSecurity.com
I
Intezer
P
Palo Alto Networks Blog
V
Vulnerabilities – Threatpost
雷峰网
雷峰网
O
OpenAI News
SecWiki News
SecWiki News
小众软件
小众软件
酷 壳 – CoolShell
酷 壳 – CoolShell
美团技术团队
N
News | PayPal Newsroom
Project Zero
Project Zero
Forbes - Security
Forbes - Security
IT之家
IT之家
A
Arctic Wolf
WordPress大学
WordPress大学
Jina AI
Jina AI
T
Tor Project blog
博客园 - 三生石上(FineUI控件)
S
Secure Thoughts
Google DeepMind News
Google DeepMind News
Attack and Defense Labs
Attack and Defense Labs
博客园 - 聂微东
Exploit-DB.com RSS Feed
Exploit-DB.com RSS Feed
P
Privacy International News Feed
Cloudbric
Cloudbric
G
GRAHAM CLULEY
博客园 - 叶小钗
H
Hacker News: Front Page
腾讯CDC
量子位
Help Net Security
Help Net Security
人人都是产品经理
人人都是产品经理
C
Cyber Attacks, Cyber Crime and Cyber Security
月光博客
月光博客
奇客Solidot–传递最新科技情报
奇客Solidot–传递最新科技情报
宝玉的分享
宝玉的分享
爱范儿
爱范儿
L
Lohrmann on Cybersecurity
Hacker News - Newest:
Hacker News - Newest: "LLM"
Recorded Future
Recorded Future
C
CERT Recently Published Vulnerability Notes

IT Jungle

Big Blue Ships Bob 2.0 And Premium Package For IBM i - IT Jungle Your IBM i Jobs Don’t Live On An Island Anymore - IT Jungle FalconStor Creates Cloud Clean Room To Prove Backup Recoveries Work - IT Jungle Talking Git On IBM i With A Bunch Of IBM i Gits - IT Jungle IBM i PTF Guide, Volume 28, Number 22 - IT Jungle More Power Systems Price Hikes, This Time They Are "Directional" - IT Jungle AI Is Not Just For Developers, It Is For Everyone At Your Company - IT Jungle Guru: Finding Data In The Forest – Exploring Three-Part Naming In SQL - IT Jungle Former IBMer’s New Book Puts The Midrange In The Spotlight - IT Jungle Have You Tried To Buy A Server Lately? - IT Jungle GenAI Is The Death Of Deterministic Project Budgeting - IT Jungle PTC Adds Support For VS Code With Implementer 12.7 - IT Jungle Guru: Single Threading A Program Execution - IT Jungle As I See It: Push Back - IT Jungle IBM i PTF Guide, Volume 28, Number 21 - IT Jungle Progress And Frustration With IBM i Security, Fortra Finds - IT Jungle In The Trenches With: JAMS Software - IT Jungle Guru: Where’s The Table? - IT Jungle Lightedge To Start Selling IBM PowerVS to IBM i Customers - IT Jungle IBM i PTF Guide, Volume 28, Number 20 - IT Jungle Big Blue Unveils Bob Premium Pack For IBM i - IT Jungle Midrange Dynamics Sees Solid Git Adoption On IBM i - IT Jungle Guru: SQL Sequences In RPG Let Db2 Handle The Counting - IT Jungle From Green Screens To Smart Factories: Explaining DevOps To The Next Gen IBM i Developers - IT Jungle IBM i PTF Guide, Volume 28, Numbers 18 And 19 - IT Jungle Big Blue Is Still Talking About Future Power Processors, Which Is Good - IT Jungle Who To Consult With On Your Cloud Strategy, And Who To Manage It - IT Jungle Guru: DateTime Rules Of Thumb - IT Jungle i-Rays Performance Analyzer Now Ready for Prime Time, Omniology Says - IT Jungle CNX Adds AI To Valence Development Tool - IT Jungle Q&A With IBM’s New GM Of Power, Hillery Hunter - IT Jungle When IBM i Skills Become A Resilience Risk - IT Jungle Guru: Load A Varying-Dimension Array With One SQL Fetch - IT Jungle You Have To Speak IBM’s Language If You Want To Be Heard - IT Jungle Raz-Lee Revs iSecurity Suite With 2026 Updates - IT Jungle The Big Easy: Connecting The Dots On Big Blue’s AI Strategy For IBM i - IT Jungle From Migration To Maturity: The Cloud Reality For IBM i Shops - IT Jungle COMMON Dances To A Fresh New Tune In New Orleans - IT Jungle Eradani Touts Native Git Connection As AI Tools Spread - IT Jungle IBM i PTF Guide, Volume 28, Number 17 - IT Jungle Power Systems Still Waiting For The GenAI Bump - IT Jungle The IBM i and the Hybrid Cloud World: Things To Keep In Mind - IT Jungle CData Adds Db2 for i Support to CDC Tool - IT Jungle As I See It: The Cost of Having Ethics - IT Jungle Brace Yourself: Another Power Systems Price Hike Coming May 1 - IT Jungle Updates Announced for IBM i BRMS And SMTP Email Client - IT Jungle AI Will Be Front And Center At POWERUp 2026 Next Week - IT Jungle IBM i PTF Guide, Volume 28, Number 16 - IT Jungle Spring IBM i Tech Refreshes Will Come A Bit Later This Year - IT Jungle You Are Much More Than Power Systems, And So Are We - IT Jungle Startup Seeks The “Golden Path” for IBM i Modernization - IT Jungle What Can IBM Do To Make The Future Power S1112 Mini System Compelling? - IT Jungle IBM i PTF Guide, Volume 28, Number 15 - IT Jungle Bob 1.0 Users Bugged By Lack Of One Feature - IT Jungle Here Come The AI-Based Code Modernization Offerings - IT Jungle Guru: Cohesion First – What A Procedure Should Be Responsible For - IT Jungle IBM Offers Trade-Ins On Storage To Grease The Upgrade Skids - IT Jungle IBM i PTF Guide, Volume 28, Number 14 - IT Jungle What IBM i Ideas Are Cooking In IBM’s Ideas Portal? - IT Jungle Early Bob Excels In Medhost IBM i Tryout - IT Jungle Counting The Cost Of AI Inference – And Projecting It Far Out - IT Jungle The Next Generation Of IBM i Talent in GenAI Action - IT Jungle
IBM i PTF Guide, Volume 28, Number 13 - IT Jungle
Doug Bidwell · 2026-03-30 · via IT Jungle

March 30, 2026

Welcome to Monday and a whole new batch of security vulnerabilities with the IBM i platform, all thanks to the open source variant of the venerable Apache Web server embedded in the WebSphere Application Server Liberty edition.

That’s the good thing about open source software: When there are problems, people find them and they fix them. The bad thing is that a lot of really smart people are constantly looking at the code for issues, and they are always find them. Think of it as Continuous Vulnerability/Continuous Patching, I guess.

Let’s go through them, and all of the vulnerabilities affect IBM WebSphere Application Server – Liberty 17.0.0.3 through 26.0.0.3.

First, we have Security Bulletin: IBM WebSphere Application Server Liberty is affected by a privilege escalation vulnerability (CVE-2025-14915), with more information available here.

Second, we have Security Bulletin: IBM WebSphere Application Server Liberty is affected by server-side request forgery (CVE-2026-1561), with more information at this link.

Third, we have Security Bulletin: IBM WebSphere Application Server Liberty is affected by a prototype pollution vulnerability due to immutable (CVE-2026-29063), and you can find out more about this issue here.

And finally, we have Security Bulletin: IBM WebSphere Application Server Liberty could provide weaker than expected security (CVE-2025-14917), with more information at this link.

Here is the rundown of PTF Groups by IBM i release level since we last published:

PTF Groups 7.6:

  • Fix list for IBM WebSphere Application Server Liberty
  • WebSphere Application Server traditional Version
  • Defective PTFs
  • Visual Studio Code for IBM i

PTF Groups 7.5:

  • Fix list for IBM WebSphere Application Server Liberty
  • WebSphere Application Server traditional Version
  • Defective PTFs
  • Visual Studio Code for IBM i

PTF Groups 7.4:

  • Fix list for IBM WebSphere Application Server Liberty
  • WebSphere Application Server traditional Version
  • Defective PTFs
  • Visual Studio Code for IBM i

PTF Groups 7.3:

  • Fix list for IBM WebSphere Application Server Liberty
  • WebSphere Application Server traditional Version
  • Visual Studio Code for IBM i

PTF Groups 7.2:

  • None

Tip O’ The Week: Buy low, sell high. . . .

New (or Updated) links added to the ‘Links’ tab in The Guide this week:

  • None

New (or Updated) links added to the ‘QMGtools’ tab in The Guide this week:

  • None

New (or Updated) links added to the ‘ACS_NAV’ tab in The Guide this week:

  • None

New (or Updated) links added to the ‘Prtr Links’ tab in The Guide this week:

  • None

New (or Updated) links Redbooks added this week:

  • None

New (or Updated) stuff added to REF tab in The Guide this week:

  • None

New (or Updated) links in the TAPE tab in The Guide this week:

  • None

New (or Updated) links in the WAS tab in The Guide this week:

  • None

 The Guide at a glance: There were new defectives the week of 03/28/26. Defective PTF rundown – the latest defective for each release. Click on the Defective PTF link for your release in the Guide:

	Defect	   Defective	APAR		Fixing
	Date	   PTF				PTF
	--------   --------	---------	-----------------------	
7.6	03/17/26   SJ07685	DT465567	SJ09038 (When available)(read the recommendations)
							Read the cover letter-prerequisites!			
7.5	03/17/26   SJ07685	DT465567	SJ09038 (When available)(read the recommendations)
				 			Read the cover letter-prerequisites!                   	
7.4	03/17/26   SJ05258	DT465567	SJ09037	Same as above, Please read the Cover letter - 
							(When available)(read the recommendations)
							Read the cover letter-prerequisites!
7.3	01/27/25   SJ03169	DT422375	SJ03786 (When available)(read the recommendations)

Be sure to access the link in The Guide for further details.

Below is the usual archive of the IBM i PTF Guide to help you work through the PTFs in chronological order:

March 28, 2026: Volume 28, Number 13

March 23, 2026: Volume 28, Number 12

March 14, 2026: Volume 28, Number 11

March 7, 2026: Volume 28, Number 10

February 28, 2026: Volume 28, Number 09

February 21, 2026: Volume 28, Number 08

February 14, 2026: Volume 28, Number 07

February 7, 2026: Volume 28, Number 06

January 31, 2026: Volume 28, Number 05

January 24, 2026: Volume 28, Number 04

January 17, 2026: Volume 28, Number 03

January 10, 2026: Volume 28, Number 02

January 3, 2026: Volume 28, Number 01

December 27, 2025: Volume 27, Number 52

December 20, 2025: Volume 27, Number 51

December 13, 2025: Volume 27, Number 50

November 29, 2025: Volume 27, Number 48

November 22, 2025: Volume 27, Number 47

November 15, 2025: Volume 27, Number 46

November 8, 2025: Volume 27, Number 45

November 1, 2025: Volume 27, Number 44

October 25, 2025: Volume 27, Number 43

October 18, 2025: Volume 27, Number 42

October 11, 2025: Volume 27, Number 41

October 4, 2025: Volume 27, Number 40

September 27, 2025: Volume 27, Number 39

September 20, 2025: Volume 27, Number 38

September 13, 2025: Volume 27, Number 37

September 6, 2025: Volume 27, Number 36

August 30, 2025: Volume 27, Number 35

August 23, 2025: Volume 27, Number 34

August 16, 2025: Volume 27, Number 33

August 9, 2025: Volume 27, Number 32

August 2, 2025: Volume 27, Number 31

July 26, 2025: Volume 27, Number 30

July 19, 2025: Volume 27, Number 29

July 12, 2025: Volume 27, Number 28

July 5, 2025: Volume 27, Number 27

June 28, 2025: Volume 27, Number 26

June 21, 2025: Volume 27, Number 25

June 14, 2025: Volume 27, Number 24

June 7, 2025: Volume 27, Number 23

May 31, 2025: Volume 27, Number 22

May 24, 2025: Volume 27, Number 21

May 17, 2025: Volume 27, Number 20

May 10, 2025: Volume 27, Number 19

May 3, 2025: Volume 27, Number 18

April 26, 2025: Volume 27, Number 17

April 21, 2025: Volume 27, Number 16

April 12, 2025: Volume 27, Number 15

April 5, 2025: Volume 27, Number 14

March 29, 2025: Volume 27, Number 13

March 22, 2025: Volume 27, Number 12

March 15, 2025: Volume 27, Number 11

March 8, 2025: Volume 27, Number 10

March 1, 2025: Volume 27, Number 09

February 22, 2025: Volume 27, Number 08

February 15, 2025: Volume 27, Number 07

February 8, 2025: Volume 27, Number 06

February 1, 2025: Volume 27, Number 05

January 25, 2025: Volume 27, Number 04

January 18, 2025: Volume 27, Number 03

January 11, 2025: Volume 27, Number 02

January 04, 2025: Volume 27, Number 01

December 21, 2024: Volume 26, Number 50

December 14, 2024: Volume 26, Number 49

December 7, 2024: Volume 26, Number 48

November 30, 2024: Volume 26, Number 47

November 23, 2024: Volume 26, Number 46

November 16, 2024: Volume 26, Number 45

November 9, 2024: Volume 26, Number 44

November 2, 2024: Volume 26, Number 43

October 26, 2024: Volume 26, Number 42

October 19, 2024: Volume 26, Number 41

October 12, 2024: Volume 26, Number 40

October 9, 2024: Volume 26, Number 39

September 28, 2024: Volume 26, Number 38

September 21, 2024: Volume 26, Number 37

September 14, 2024: Volume 26, Number 36

September 7, 2024: Volume 26, Number 35

August 31, 2024: Volume 26, Number 34

August 24, 2024: Volume 26, Number 33

August 17, 2024: Volume 26, Number 32

August 11, 2024: Volume 26, Number 31

August 3, 2024: Volume 26, Number 30

July 27, 2024: Volume 26, Number 29

July 20, 2024: Volume 26, Number 28

July 13, 2024: Volume 26, Number 27

July 6, 2024: Volume 26, Number 26

June 22, 2024: Volume 26, Number 24

June 15, 2024: Volume 26, Number 23

June 8, 2024: Volume 26, Number 22

June 1, 2024: Volume 26, Number 21

May 25, 2024: Volume 26, Number 20

May 18, 2024: Volume 26, Number 19

May 11, 2024: Volume 26, Number 18

May 4, 2024: Volume 26, Number 17

April 20, 2024: Volume 26, Number 16

April 13, 2024: Volume 26, Number 15

April 6, 2024: Volume 26, Number 14

March 30, 2024: Volume 26, Number 13

March 24, 2024: Volume 26, Number 12

March 16, 2024: Volume 26, Number 11

March 9, 2024: Volume 26, Number 10

March 2, 2024: Volume 26, Number 9