IBM Support

IV61506: CHANGES TO ADDRESS CVE-2014-0224

Subscribe to this APAR

By subscribing, you receive periodic emails alerting you to the status of the APAR, along with a link to the fix after it becomes available. You can track this item individually or track all items by product.

Notify me when this APAR changes.

Notify me when an APAR for this component changes.

APAR status

  • Closed as program error.

Error description

  • Changes to address CVE-2014-0224
    

Local fix

Problem summary

  • There was a security vulnerability found in the OpenSSL package
    used in the windows vapp enablement bundle for ICCT.
    

Problem conclusion

  • The fix includes updating the bundle to include version 1.0.1h
    of the openSSL product.  For all existing images that are
    currently deployed would need to get the patch from the OpenSSL
    site and apply it directly to their VM's.
    

Temporary fix

Comments

APAR Information

  • APAR number

    IV61506

  • Reported component name

    IMG CONST COMP

  • Reported component ID

    TIVOICO00

  • Reported release

    221

  • Status

    CLOSED PER

  • PE

    NoPE

  • HIPER

    NoHIPER

  • Special Attention

    NoSpecatt

  • Submitted date

    2014-06-12

  • Closed date

    2014-06-17

  • Last modified date

    2014-06-17

  • APAR is sysrouted FROM one or more of the following:

  • APAR is sysrouted TO one or more of the following:

Fix information

  • Fixed component name

    IMG CONST COMP

  • Fixed component ID

    TIVOICO00

Applicable component levels

  • R221 PSY

       UP

  • R230 PSY

       UP

  • R110 PSN

       UP

  • R120 PSN

       UP

  • R220 PSN

       UP



Document information

More support for: Tivoli Components
IMAGE CONSTRUCTION AND COMPOSITION TOOL

Software version: 221

Reference #: IV61506

Modified date: 17 June 2014


Translate this page: