List of additional fix pack APAR fixes
Each WebSphere Commerce Fix Pack contains fixes for multiple APARs. After a fix pack is released, WebSphere Commerce continues to create interim fixes for APARs.
This page lists the individual interim fixes that are currently not included in any cumulative interim fix. You can obtain these interim fixes from IBM Fix Central or, if the fix is not available on Fix Central, from IBM Support.Note: These interim fixes might not be required for your environment. Before you download or
request any fixes, review the APAR descriptions to determine whether any of these fixes apply to
you.
Each individual iFix and cumulative iFix package contains a different
readme file. Each readme file might include specific
installation instructions. For example:
- Some iFixes might require manual modifications to source code after you install the fix
- For runtime environments, some iFixes might be applicable to the base WebSphere Commerce product only and not the instance.
Additional fixes for Fix Pack 9
You can download all currently available interim fixes for Fix Pack 9 as a single package with the latest cumulative interim fix. For more information, see Cumulative interim fixes for Fix Pack 9.
Additional fixes for Fix Pack 8
The following table contains a list of Fix Pack 8 APAR fixes that were created after the release of the cumulative interim fix JR52306.fp. These fixes were tested and verified on environments with the latest cumulative interim fix. It is recommended that you install JR52306.fp before you install any of the following APAR fixes.
| Category | APAR | Description |
|---|---|---|
| Marketing and Promotions |
JR59223 | Includes enhanced back-end services and logic that you can use on your journey to GDPR readiness. |
| Analytics |
JR54225 | The product price that is reported to IBM Digital Analytics incorrectly includes shipping discounts. |
| JR55141 | Security fix Cross-site scripting vulnerability when integrated with IBM Digital Analytics. |
|
| JR55139 | Security fix Cross-site scripting vulnerability when integrated with IBM Digital Analytics |
|
| Authoring and
Staging |
JR49190 | Supersedes JR45335. After you approve a workspace task group, the task group returns in the 'Commit Failed' state with a foreign key violation exception in the log during the approval process. |
| JR55264 | Security fix Cross-Site Scripting vulnerability in store pages. |
|
| JR53045 | Stagingprop utility fails during post-propagation. | |
| JR53596 | The stagingprop utility might terminate abnormally on propagation of COLLATERAL table. | |
| Catalog, Assets,
Contracts, and Pricing |
JR48819 | Corrects an error that is encountered when you attempt to upload files in Management Center with a valid certificate with Firefox. |
| JR54681 | When attribute data is uploaded by using Management Center, the UoM is not updated in ATTRVALDESC.QTYUNIT_ID. | |
| JR54427 | Errors in logs while prices are retrieved for wish lists. | |
| JR54265 | Security fix Potential cross-site scripting (XSS) vulnerability in WebSphere Commerce Accelerator |
|
| JR48661 | Allows for customization of the
CatalogFilterTreeDataBean.setSalesCatalogId() method. |
|
| JR52745 | Dataload products without ParentCatalogEntryIdentifier mapping fails with NullPointerException when validateScope is set to true. | |
| JR53145 | Cannot use a CSV file for delta updates if the CSV file contains some items with a price, and some items without a price. | |
| JR53335 | Improved caching for contract pricing. | |
| JR54518 | Slow performance when catalog entry attributes are retrieved by name. | |
| JR54411 | Provides a new service and API to return catalog entry's attributes by names. | |
| JR48952 | Allows for customization of the
AbstractCatalogEntryMediator.getNames() method. |
|
| JR53754 | Price errors appear in log files when prices for wish lists are retrieved. | |
| Data Load and other
loading tools |
JR47999 | Corrects an issue with IDResGen where not all records are output as expected. |
| JR54835 | During Catalog Upload for Catalog Entry Description Override, Dataload runs out of connection when too many stores exist. | |
| JR56479 | Cannot load data into the OFFER table if identifier column is set to 0 | |
| JR54402 | Using Dataload to reload searchable attributes might produce a unique index violation after installation of JR52361 and JR53333. | |
| JR48982 | Stops Dataload from unnecessarily updating the OPTCOUNTER column for primary key only tables, which can potentially cause stagingprop to fail. | |
| JR53245 | dbclean utility might terminate abnormally during cleanup on tables without a primary key on DB2 databases. | |
| JR52981 | Data Load utility's file difference preprocessor fails when errors are encountered. | |
| JR53199 | Data Load utility throws exceptions because the Solr JAR filepath is incorrect. | |
| JR53252 | Using dataload to delete catalog entries might fail if SEO is enabled but no SEO data exists for a catalog entry. | |
| JR53289 | Catalog Upload for CATENTREL table can cause errors when you execute the preprocess utility. | |
| JR53166 | Running the Data Load utility for catalog data for multiple stores with different languages throws generic error. | |
| JR53333 | The Data Load utility does not respect the "searchable" or "merchandisable" flags for Attribute Dictionary attributes. | |
| JR53346 | When you use the Data Load utility to assign an attribute value to a catalog entry, UnitOfMeasure of the assigned value is not supported. | |
| JR53266 | Dataload for OFFER-related data fails the second time it is loaded if the IDENTIFIER in CSV has a leading zero (0). | |
| JR53293 | The value column of the attribute value description table might become blank when double byte characters are loaded. | |
| Installation,
Configuration, Deployment, and Migration |
JR52690 | Allow updatedb utility to run with close-to-zero downtime. |
| JR53536 | Executing the setdbtype command in a development environment fails with a syntax error. | |
| JR52238 | The updateDB utility fails when the output log directory does not exist. | |
| JR51968 | Security fix The updatedb utility requires the database password to be passed on the command line. |
|
| JR52983 | WebSphere Commerce utilities that use ANT, print passwords in debug mode. | |
| JR53239 | Indexload utility encounters NoClassDefFoundError: DataLoadException error. | |
| JR53486 | WebSphere Commerce Instance creation does not create a log file. | |
| JR53653 | After you run setdbtype, you might encounter errors with the search application where the database cannot be accessed. | |
| Maintenance |
JR53747 | Security fix ExtendedInfo log might contain sensitive information. |
| Marketing and
Promotions |
JR49436 | Implements performance improvements to the Marketing Data Cache invalidation during Stagingprop. |
| JR53085 | Incorrect promotion discounts might be awarded to shoppers for order total or subtotal promotions. | |
| JR54062 | Items can be discounted multiple times when discounts are applied to the least expensive items first for stackable promotions. | |
| JR54464 | Shoppers who qualify for attribute based promotions might experience delayed page response. | |
| JR53964 | Improve CatalogEntryAttributeFilter performance by targeting only specific catalog attributes required by evaluating promotions. | |
| JR49460 | Prevents a promotion proximity message from being displayed even after the promotion is already applied to the order. | |
| JR48936 | Exposes the WCSOrderItemFactory.populateOrderItemFromBean()
and WCSOrderFactory.populateOrderFromBean() methods for customization. |
|
| JR53107 | Incorrect discount is applied to order running total for customized promotions. | |
| JR53404 | Promotion engine does not log exceptions completely. | |
| JR53362 | Enhance promotion engine to allow customization for applying multiple promotion codes for the same promotion. | |
| JR47320 | Increases performance of order-level promotion discounts. | |
| JR49114 | Enhances the Marketing tool to allow for a promotion with a coupon redemption method to be used in a web activity's Recommend Promotion action with marketing content that uses the "Add to shopping cart and apply promotion" click action. | |
| JR47398 | Enhances the data cache to include a new logical cache that is named
com.ibm.commerce.membergroup.commands.CheckUserInMemberGroupCmdImpl for duplicate
queries to the DMMBRGRPPZN table. |
|
| JR47434 | Improves the best deal evaluation process for same group promotions, for increased performance. | |
| JR48246 | Corrects an issue with JR45153, where a unique promotion code can be used multiple times. | |
| JR48243 | Corrects an issue where anonymous shoppers can apply a unique promotion code for multiple orders until one of the orders with the code applied is completed. | |
| JR49398 | Corrects an issue where anonymous shoppers can apply a unique promotion code for multiple orders until one of the orders with the code applied is completed. | |
| JR49323 | A stand-alone version of JR44880. Prevents multiple reloads of the marketing registry after a refresh. | |
| JR49103 | Corrects an issue where the LASTUPDATEBY and LASTUPDATE fields within PX_PROMOTION are not updated when elements of PX_ELEMENTNVP are modified. | |
| JR48611 | Improves post-stagingprop server performance by reducing the number of active activities that need to be queried to just those activities that would be acted upon by the proceeding logic. | |
| JR48703 | Improves database queries to increase system performance when e-Marketing Spots and activities are loaded into the marketing cache. | |
| JR53532 | Unique promotion codes can be redeemed multiple times by using different orders. | |
| JR54035 | False warning messages that are related to mismatches between store entity ID and store key identifier are appearing in the logs. | |
| Member and Session
Management |
1JR53213 | Enhanced error messages and tracing for session cookies and token |
| JR54268 | Security fix Potential cross-site request forgery (CSRF) vulnerability in WebSphere Commerce Tools |
|
| JR56452 | Activity Regeneration after CTXMGMT data removal | |
| JR52717 | Shopper registration fails if LDAP server is enabled with UserAccountValues 512 and 544. | |
| JR53452 | Unable to complete Single Sign On (SSO) login for WebSphere Commerce B2B store after search server separation. | |
| JR54053 | Enhancement to allow REST services to respect context data in WC_GENERIC_ACTIVITYDATA cookie. | |
| JR54134 | Unable to switch stores when logged on to a WebSphere Commerce B2B store after search server separation. | |
| Messaging and
Integration (including Sterling integration) |
JR52320 | Physical store name is missing in the "Available In-Store" field |
| Orders, Payments, and
Inventory |
JR48834 | Supersedes JR47098. Improves response time for shoppers who are concurrently purchasing the same item. |
| JR54592 | Order summary page displays an incorrect total amount when 'Value Added Tax' (VAT) is enabled | |
| JR55493 | Information disclosure vulnerability in the WebSphere Commerce Accelerator tool | |
| JR55319 | Purchase Order number is displayed incorrectly in the Payment Instruction section | |
| JR54848 | Cannot access and retrieve information from the parseInventoryAvailabilityIdentifier method. | |
| JR54691 | Frequent queries to the SHPARRANGE table can cause slow response time. | |
| JR54585 | Security fix Information disclosure vulnerability in the WebSphere Commerce Accelerator tool. |
|
| JR47986 | Corrects an issue where a promotion short description is displayed on the storefront in contradiction with the set promotion schedule. | |
| JR49513 | Corrects the sequence of items in a reorder to be identical to the original order. | |
| JR53147 | A new record is found in VERSIONSPC when you update the item Parent PartNumber by using the Data Load utility. | |
| 1JR53681 | Support merging order items with non-ATP inventory. | |
| 1JR53844 | PPC_EJB_NAMING_EXCEPTION_ERR occurs when an order's payment instructions are updated. | |
| JR48512 | Allows for customization of the methods
removeCalCodeWithExcludeCategory() and
removeCalCodeWithExcludeCatEntry() in the
com.ibm.commerce.fulfillment.beans.CalculationCodeListDataBean class. |
|
| JR48892 | Provides the ability for customization of cache invalidation. | |
| JR53979 | On environments that use an Oracle database, shopping flow fails during store preview in workspaces. | |
| Programming
Framework |
JR53061 | The data cache does not provide a convenient way to cache and invalidate custom SQL query results. |
| JR54015 | Static content URLs contain a trailing question mark. | |
| Runtime |
JR48951 | Security fix Provides a fix for a potential cross-site scripting vulnerability within the WebSphere Commerce administration tools. |
| JR54026 | With SSL Accelerator option enabled, the "Generate URL" store preview functionality does not work in Management Center. | |
| JR54799 | Data Cache enhancement to prevent multiple REST GET threads from executing the same query simultaneously | |
| JR54179 | Virtual Memory Manager EntityNotFoundException causes transaction rollback. | |
| JR49170 | Corrects a potential NullPointerException during server start-up initialization of DCInvalidationTaskCmdImpl. | |
| JR51983 | Massload and Idresgen utilities require password to be passed on command line. | |
| JR49088 | Resolves a cache invalidation timing issue that prevents a newly added group member from viewing group-specific content until the cache is cleared again. | |
| JR52461 | GetOnlineStore command performs slowly. | |
| IV73834 | Cache invalidation is not triggered after BCS context data is persisted, which results in an activity finder exception. | |
| JR53616 | Memory leak in ThreadLocalFoundationProxy. | |
| JR53402 | Custom query caching can cause missed invalidations | |
| JR53900 | Double-clicking product images lead to blank pages. | |
| Search |
JR48976 | Resolves an issue with SQL syntax errors with Apache Derby (formerly IBM Cloudscape) when categories are linked to sales catalogs. |
| JR55358 | Sitemap does not include URLs for non-buyable products | |
| JR50448 | Includes enablement code for integrating IndexLoad into the Search server. This interim fix does not include the complete feature. | |
| JR47001 | Makes the preprocess utility report failures correctly when multithread is set to true. | |
| JR52667 | This feature provides the ability to calculate contract price for WebSphere Commerce based on the OfferPrice table. | |
| JR52853 | Enables the Administrative Logger feature. | |
| JR52972 | Provides code to support custom IndexLoad loader classes. | |
| JR52512 | Fine-tunes search relevancy by identifying products in the same category as the product mentioned in the search query. | |
| JR53393 | Improve indexing throughput of IndexLoad utility. | |
| JR53912 | Some keyword suggestions can lead to empty search results if the keyword belongs to a different store, catalog, or catalog Filter. | |
| JR54149 | As the length of the query changes, the result of the query might be reduced to a smaller set due to the minimum match condition. In some cases, the query returns no results. | |
| Stores and
Mobile |
JR49162 | Implements the ability to set up more than one URL click action, depending on the customer's set language. |
| JR52475 | SEO URLs cannot be resolved in Workspaces Preview. | |
| JR56132 | Exclude 'search' token from being used in sitemap URLs | |
| JR56113 | Sitemap always generates HTTP URLs for non static links | |
| JR52495 | Cannot add images to sitemap. | |
| JR52818 | New SEO URL keywords are generated when you use Catalog Upload for updates. | |
| JR53357 | An incorrect store URL returns an error page that displays a 200 OK status. | |
| JR53928 | Store functions API does not return value set by business user. | |
| JR54107 | Security APAR CVE-2015-4980 Potential Information Disclosure vulnerability could expose user personal data |
Additional fixes for Fix Pack 7
The following table contains a list of Fix Pack 7 APAR fixes that were created after the release of the cumulative interim fix JR53048.fp. These fixes were tested and verified on environments with the latest cumulative interim fix. It is recommended that you install JR53048.fp before you install any of the following APAR fixes.
| Category | APAR | Description |
|---|---|---|
| Analytics |
JR55141 | Security fix Cross-site scripting vulnerability when integrated with IBM Digital Analytics. |
| JR55139 | Security fix Cross-site scripting vulnerability when integrated with IBM Digital Analytics |
|
| Authoring and
Staging |
JR53045 | stagingprop utility fails during post-propagation. |
| JR55264 | Cross-Site Scripting vulnerability in store pages. | |
| Catalog, Assets,
Contracts, and Pricing |
JR54312 | refineBatchCatEntryPriceGroup() is private and cannot be
extended for customization purposes. |
| JR54265 | Security fix Potential cross-site scripting (XSS) vulnerability in WebSphere Commerce Accelerator |
|
| Marketing and
Promotions |
JR54451 | SensorEventListener throws a ClassCastException in Marketing activity |
| JR54062 | Items can be discounted multiple times when discounts are applied to the least expensive items first for stackable promotions. | |
| Member and Session
Management |
JR54268 | Security fix Potential cross-site request forgery (CSRF) vulnerability in WebSphere Commerce Tools |
| 1JR54867 | Cannot remove a specific activity from the Activity cache. | |
| Orders, Payments, and
Inventory |
JR54585 | Security fix Information disclosure vulnerability in the WebSphere Commerce Accelerator tool. |
| JR55372 | Orders by guest users are not fulfilled | |
| JR56671 | Email error when an order is created and approved by one user | |
| JR55493 | Security fix Information disclosure vulnerability in the WebSphere Commerce Accelerator tool |
|
| JR54744 | OrderSubmit Event still persists data to the database when disabled | |
| JR54592 | Order summary page displays an incorrect total amount when 'Value Added Tax' (VAT) is enabled. | |
| Programming
Framework |
LI76698 | NoSuchElementException is received randomly during the handling of a web service response message |
| Sales
Center |
JR46255 | ClassCastException when you try to active the TickerReasonDataBean by using a JSP file. |
| Stores and
Mobile |
JR54107 | Security fix Security APAR CVE-2015-4980: Potential Information Disclosure vulnerability could expose user personal data |
Additional fixes for Fix Pack 6
The following table contains a list of Fix Pack 6 APAR fixes that were created after the release of the cumulative interim fix JR53048.fp. These fixes were tested and verified on environments with the latest cumulative interim fix. It is recommended that you install JR53048.fp before you install any of the following APAR fixes.
| Category | APAR | Description |
|---|---|---|
| Analytics |
JR48930 | "NullPointerException while running the EventProcesor scheduled job, when an Event component is disabled." |
| Authoring and
Staging |
JR55264 | Security fix Cross-Site Scripting vulnerability in store pages. |
| Catalog, Assets,
Contracts, and Pricing |
JR42757 | Catalog Navigation could fail if the catalog has over 1000 top catalog groups. |
| LI78441 | Setting CATENTRY long description with a large text value in some languages fails. | |
| JR54519 | Items with deleted parent products are not removed by delta indexing. | |
| Data Load and other
loading tools |
JR53245 | dbclean utility might terminate abnormally when performing cleanup on tables without a primary key on DB2 databases. |
| Marketing and
Promotions |
JR54033 | Error when completing a workspace task that contains an activated promotion with generated codes. |
| JR54752 | Promotional prices that are associated with public promotion codes are incorrectly displayed on Product display pages. | |
| Messaging and
Integration (including Sterling integration) |
JR55435 | ClassCastException when WC_Messaging traces are enabled |
| Orders, Payments, and
Inventory |
1JR54133 | Index contention in PPCPAYINST table with Oracle RAC database. |
| JR55493 | Information disclosure vulnerability in the WebSphere Commerce Accelerator tool | |
| JR54585 | Security fix Information disclosure vulnerability in the WebSphere Commerce Accelerator tool. |
|
| Runtime |
IV73834 | Cache invalidation is not triggered after BCS context data is persisted, which results in an activity finder exception. |
| JR54026 | With SSL Accelerator option enabled, the "Generate URL" store preview functionality does not work in Management Center. | |
| JR53668 | CSRF error after timeout as a remembered user. | |
| Stores and
Mobile |
JR54107 | Security APAR CVE-2015-4980 Potential Information Disclosure vulnerability could expose user personal data |
Additional fixes for Fix Pack 4
| Category | APAR | Description |
|---|---|---|
| Search |
JR42126 | Requests that contain search profiles are routed to search mediator framework even when search-based navigation is disabled. |
Additional fixes for Fix Pack 3
| Category | APAR | Description |
|---|---|---|
| Orders, Payments, and
Inventory |
1JR47404 | Synchronization problems in extended termcond processing. |
| Search |