The purpose of this update is to remediate security vulnerabilities in older versions of Apache and OpenSSL.
It is recommended that systems on which this product is installed deploy OpenSSL 1.0.x or a newer version, if available, from their system's vendor, to use for all secure communication and encryption key generation.
Based on this recommendation, use Apache version 2.2.22 (or higher) and OpenSSL version 1.0.1c (or higher).
A updated release of Apache distribution for Netcool/Reporter will be made available as an Interim Fix in May 2013, and will be rolled into the next Fix Pack (18.104.22.168).
This update will include the Apache v2.2.22, OpenSSL v1.0.1c, and ModJK 1.2.37 components.