Reports from third party vulnerability scan scanning tools of the operating system and system software in z/OS environments may identify potential security vulnerability in several CA 11 modules.  These modules are U1122SVC, U1122TRT, U1122UJV and U1122USI.  

:

Modules U1122SVC, U1122TRT, U1122UJV and U1122USI are linked with AC=1 but do not need to be.

These modules do not need to be linked APF authorized (that they are originally linked AC=1 did not cause a problem).  Fix RO91341 addresses the concern of potential security exposure by now having these modules relinked AC=0 (without APF authorization) so that the modules are no longer flagged by vendor products that analyze the system for potential security exposure.