What is the hotfix supposed to fix?
it corrects those:
Security Vulnerabilities - Cross Site Scripting Issue
Security Vulnerabilities - SSL Cookie Not Used
Need to provide support for httpOnly cookie attribute in Midtier
Auto Complete makes unnecessary backchannel call when all required menu items are already loaded
Compatibility issues with Firefox 13- scrollbars on single line character fields, blacked out background forms during modal popup
When Mid-Tier uses SSL the workflow log window is reset every time a new window is opened
Mid-Tier throws error (Error: '0.id' is null or not an object) when refreshing a table with sorted Grouped rows and browser screen goes blank.
When a tool tip is open, table column sort does close the tool tip and does not refresh the UI causing the wrong record in the table to open.
Midtier Native report exports causing CPU to spike
Issue with Web Reporting functionality
Web Reports retrive all the data on first chunk request
Listbox menus do not show in MidTier when character field display type is set to Drop Down List
Attachments set via a Service Action on a Attachment Field failed to open with a ARERR 106
BIRT reports exported to Excel show mulitple sheets, one each for every page of data exported.
CCM Calendar having issues with filtering
MidTier CPU spiking with minimal set of users (thread contention)
Certain user names can stop browser-side processing, tripping up parsing of keywords when searching.
"Long" Hyphen/Dash Characters display incorrectly when pasting into Work Notes field on Incident form
Close Window active link action issue with IE 8
Tool tip sometimes causes "null" to appear in the center of the browser window
Runtime Exceptions during GetHTMLScriptForViewField Backchannel calls cause malformed responses to the browser resulting in Caught Exception errors
Access URL must be same as base_url for Web Report to work
ARERR 361 when running AR System Report from Report Console/Report Selection/Reports form against a 7.1 AR Server that allows unqualified queries
background.swf continues to load even after Flash is disabled in config.properties using arsystem.flash.enable_ui_rendering=false
Skin Definitions are causing cache html/js form invalidation, affecting performance
Type ahead template selection not showing all templates (auto complete, no scroll).
Double clicking an incident/change/etc from the results list opens up a new window with the results.
Vertical & Horizontal scroll bars on the Landing Console & Overview Console when using IE9
Problem with time stamp on Reporting console and Excel Export, shows server time not customer time
The mid-tier is doing a GLE call to return all records for an AR System report instead of multiple GME calls.
Application Fly out remains in Loading state if we log on with unrestricted user having knowledge submitter permission
Web Report causes table scan, DB CPU to spike, compromising performance and causing production outage
Readonly/Locked fields can be edited via expand box if opened before the field is made readonly
Table Refresh Interval
Unable to deploy Mid-Tier war file on JBoss 6.1.
Input Length s not a constraint for characters typed with <AltGr> key.
RTF fields showing white background in Mid-tier, grey background in Dev Studio.
Password redirect had an absolute URL in the body of the http response
Un-Display Active Link does not execute the AL as required in Mid-Tier.
Not possible to double click entries in menus when presented as list boxes.
Same problem for me.
After an update from MidTier 7.6.04 SP2 to SP4 in Webspher 7 I can't go any further than the login page. The login and pass field go to blank and it remains in the same page.
I have configured the ARS server without problems in the config page.
Also, sometimes I can't acces the config page because problems with the cookies despite I allow them.
Anyone can help with tis?
Here's the temporary fix from BMC:
Open Websphere Administration Console --> Servers/Websphere Application Servers/<server name>/Session Management/Cookie Management and change the Cookie name field to a value other than JSESSIONID, example JSESSIONID1.
Lots of thanks for your answer. It has worked perfectly!!