IBM Support

Manage Common Vulnerability Exposure(CVE) bulletins for TIP

Question & Answer


Question

How do I determine what CVEs pertain to and are resolved in the various releases of Tivoli Integrated Portal?

Answer

The process to determine what CVEs are addressed in the various TIP releases is as follows:

Go to the IBM Support Portal: https://www-947.ibm.com/support/entry/portal/support

Enter the number of the CVE (CVE-####) concerned under "Search support". There you will find information pertaining to any fixes that have been released to Websphere and what fixpack release they are contained in.

Visit the following link to determine what version of WAS is deployed in your release of TIP.

What WAS fixpacks are included in TIP fixpacks

Determine what version of TIP you have installed:



http://www-01.ibm.com/support/docview.wss?uid=swg21635265

From there it can be determined if you need to upgrade TIP.

Please note: WAS cannot be upgraded outside of TIP. There are modifications to the WAS console which need to be made for TIP hence WAS is upgrades are done via TIP Fix Pack.

Also not all releases of software (e.g. WebGUI) are certified with all releases of TIP. It is possible to see if your installation can be upgraded to the TIP release desired. Please see the following technote on how to determine this:

https://www-304.ibm.com/support/docview.wss?uid=swg21966949

For more information on CVEs another, non-IBM, resource is available:

CVE Details

[{"Product":{"code":"SSRLR8","label":"Tivoli Components"},"Business Unit":{"code":"BU053","label":"Cloud & Data Platform"},"Component":"Tivoli Integrated Portal (TIP)","Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"Version Independent","Edition":"","Line of Business":{"code":"","label":""}}]

Document Information

Modified date:
17 June 2018

UID

swg21966782