https://community.netapp.com/t5/Active-IQ-Unified-Manager-Discussions/tomcat-CVE-2024-38286/m-p/457402#M28663 <P>That is the expectation for Full Support versions, in accordance with the posted definitions.&nbsp;</P> <P>&nbsp;</P> <P>I recommend opening a support case and requesting a fix on AIQUM 9.14.&nbsp;</P> Mon, 16 Dec 2024 16:40:49 GMT kryan 2024-12-16T16:40:49Z https://community.netapp.com/t5/Active-IQ-Unified-Manager-Discussions/tomcat-CVE-2024-38286/m-p/457398#M28660 <P><A href="https://security.netapp.com/advisory/ntap-20241101-0010/" target="_blank">https://security.netapp.com/advisory/ntap-20241101-0010/</A></P><P>&nbsp;</P><P>will that get fixed in older releases (9.14), too?</P><P>&nbsp;</P> Mon, 16 Dec 2024 15:03:36 GMT https://community.netapp.com/t5/Active-IQ-Unified-Manager-Discussions/tomcat-CVE-2024-38286/m-p/457398#M28660 cheese123 2024-12-16T15:03:36Z https://community.netapp.com/t5/Active-IQ-Unified-Manager-Discussions/tomcat-CVE-2024-38286/m-p/457399#M28661 <P>AIQUM typically fixes security issues only in the newest GA release which is soon to be 9.16:&nbsp;</P> <P><A href="https://mysupport.netapp.com/site/info/version-support#aiq" target="_blank">https://mysupport.netapp.com/site/info/version-support#aiq</A></P> <P><EM>(1) Security patching will only be performed on the current General Availability release.</EM></P> <P>&nbsp;</P> Mon, 16 Dec 2024 15:12:32 GMT https://community.netapp.com/t5/Active-IQ-Unified-Manager-Discussions/tomcat-CVE-2024-38286/m-p/457399#M28661 kryan 2024-12-16T15:12:32Z https://community.netapp.com/t5/Active-IQ-Unified-Manager-Discussions/tomcat-CVE-2024-38286/m-p/457401#M28662 <P>i would expect to get security fixes until End of Full Support.</P><P>This would be until 30-May-2026 for 9.14</P><P>&nbsp;</P><P>am i misunderstanding something?</P> Mon, 16 Dec 2024 16:10:01 GMT https://community.netapp.com/t5/Active-IQ-Unified-Manager-Discussions/tomcat-CVE-2024-38286/m-p/457401#M28662 cheese123 2024-12-16T16:10:01Z https://community.netapp.com/t5/Active-IQ-Unified-Manager-Discussions/tomcat-CVE-2024-38286/m-p/457402#M28663 <P>That is the expectation for Full Support versions, in accordance with the posted definitions.&nbsp;</P> <P>&nbsp;</P> <P>I recommend opening a support case and requesting a fix on AIQUM 9.14.&nbsp;</P> Mon, 16 Dec 2024 16:40:49 GMT https://community.netapp.com/t5/Active-IQ-Unified-Manager-Discussions/tomcat-CVE-2024-38286/m-p/457402#M28663 kryan 2024-12-16T16:40:49Z