MobileFirst Platform Foundation iFix 220.127.116.11-MFPF-IF201708211241 released
A new iFix has been released for MobileFirst Platform Foundation 7.1, dated August 21st, 2017.
Download iFix (requires login to IBM Fix Central).
Note: Certain app scan reports indicate a vulnerability in MobileFirst 7.1 apps. The vulnerability is due to the version of Cordova. The publicly available version Cordova 3.9.2 has this vulnerability. However, the version that is shipped with MFP and which is part of hybrid apps generated by MFP Studio/CLI, has the vulnerability patched. Therefore, treat the app scan reports for this vulnerability (CVE-2015-5207) in MobileFirst Platform Foundation 7.1 iFix 18.104.22.168-MFPF-IF201708211241 and above, as a false positive.
Included changes in this iFix
For a cumulative list of all previous fixes, see the iFix download page on IBM Fix Central.
PI61739 BACKPORT A FIX FOR A CORDOVA VULNERABILITY TO CORDOVA IOS 3.9.2 AND PRIOR