This document describes how to download and install IBM Security AppScan Source 8.7 Fix Pack 1 (AppScan Source version 126.96.36.199).
This fix pack contains various bug fixes for AppScan Source version 8.7.
IMPORTANT: AppScan Source is affected by a vulnerability in OpenSSL (CVE-2014-0160). We strongly encourage you to apply the latest iFix, which addresses that vulnerability. See http://www.ibm.com/support/docview.wss?uid=swg21670303 for more details - and, after applying AppScan Source version 188.8.131.52, follow the instructions in http://ibm.com/support/docview.wss?uid=swg24037355 for applying the iFix.
This fix pack can only be applied to Security AppScan Source version 8.7. See the product user assistance for information about upgrading previous versions to version 8.7 before applying this fix pack. If you are upgrading early product versions, technote 1455145: Upgrading from versions 6.x to version 7.0 or 8.0 contains additional information.
|System Requirements||A detailed list of the supported hardware, operating systems and information related to IBM and third party software requirements.|
|Knowledge Center||Browse or search on-line information related to the deployment, configuration and usage of the product.|
See the Fix pack installation topic in the IBM Security AppScan Source Installation and Administration Guide that accompanies the download. This topic is also available in the product Knowledge Center collection at https://www.ibm.com/support/knowledgecenter/SSS9LM_184.108.40.206/com.ibm.rational.appscansrc.install.doc/topics/install_fix.html. The IBM Security AppScan Source Installation and Administration Guide can also be downloaded at https://www.ibm.com/support/knowledgecenter/SSS9LM_220.127.116.11/com.ibm.security.appscansrc.infocenter.nav.doc/topics/help_pdf.html.
This fix pack is available at Fix Central. To obtain the fix pack, use the direct Download links below or follow these instructions:
- Go to http://www.ibm.com/support/fixcentral/.
- Select Security Systems in the Product Group list. The Product list will then display.
- Select IBM Security AppScan Source in the Product list. The Version list will then display.
- Select 18.104.22.168 in the Installed Version list. The Platform list will then display.
(You can also select 22.214.171.124 in the Installed Version list. If you do this, select the Show fixes that get me to this version (126.96.36.199) radio button in the Identify fixes page (see Step 6 below).)
- Select the appropriate platform in the Platform list, then click Continue.
- You can accept the defaults on the Identify Fixes page and click Continue.
(If you selected 188.8.131.52 in the Installed Version list (see Step 4 above), select the Show fixes that get me to this version (184.108.40.206) radio button in the Identify fixes page.)
- The available fixes (based on your prior selections) will be displayed. Select the check box next to the fix that you want to download and then click Continue to proceed.
- You are prompted to sign in using your IBM ID and password, click Continue.
NOTE: There are helpful links on this page if you need to Register or if you do not remember your password.
- In the Download options page, select the download method (Download using Download Director (default) or Download using your browser). In this page, leave the Include prerequisites and co-requisite fixes check box selected. Click Continue to proceed.
- In the Download files page, make the necessary selections to obtain the media.
|PM72446||Environment variables in ppf files are replaced with hardcoded path after import|
|PM73841||Lost sinks marked as validation routines still show up as lost sinks|
|PM84639||CLI's SASE command does not enforce access privileges for setting the ASE URL|
|PM71923||Console output and scanner_exceptions log on a Japanese OS contains odd characters|
|PM74280||Appscan source java.exe process still running after AppScan Source clients are terminated|
|PM70059||Custom rules are not always added to project file after creation|
|PM73369||SRC: ORA-01704 when publishing assessments|
|PM85837||ouncemake applies to .C files (C++) the FileOptions intended for .c files (C)|
|PM87127||Not being able to mark a virtual lost sink as "not susceptible to taint|
|PM87904||Virtual Lost Sink reported on non-virtual method|
|PM84637||After adding an additional file extension, file does not show up in Explorer view|
|PM85020||Jars on the classpath from project dependencies tab are incorrectly displayed on one line|
|PM85379||Custom Validation is not saved in SolidDB|
|PM85645||Doc Defect: Doc references Quality > Data Flow Analysis > C/C++ which does not exist|
|Download||RELEASE DATE||LANGUAGE||SIZE(Bytes)||Download Options
What is Fix Central (FC)?
|Windows setup.exe||15 May 2013||English||376687323||FC|
|Linux setup.bin||15 May 2013||English||433999432||FC|
|Mac OS X setup.dmg||15 May 2013||English||299524437||FC|
IBM Security Software Support Communities
AppScan Source licensing:
IBM Security AppScan Source provides a License Manager utility that is used for loading and updating license information on your client machine. This utility allows you to view your current license status - or you can use the utility to activate the product by importing a nodelocked license file or by using a floating license on a license server. Nodelocked licenses are tied to individual machines - while floating licenses can be checked out for use on different client machines.
The License Manager utility can be opened from the product installation wizard after installation is complete - or you can launch it from the Windows Start menu.
AppScan Source licenses are obtained from the IBM Rational License Key Center. For detailed information about obtaining licenses and license activation, see How to obtain and apply licenses for AppScan Source products and the Activating the software section of the IBM Security AppScan Source Installation and Administration Guide that accompanies the download. This topic is also available in the product information center at http://pic.dhe.ibm.com/infocenter/appsrc/v8r7m0/topic/com.ibm.rational.appscansrc.install.doc/topics/activate.html. The IBM Security AppScan Source Installation and Administration Guide can also be downloaded at http://pic.dhe.ibm.com/infocenter/appsrc/v8r7m0/topic/com.ibm.security.appscansrc.infocenter.nav.doc/topics/help_pdf.html.
Product Web site and features:
The AppScan Source Knowledge Center collection is available online at http://www.ibm.com/support/knowledgecenter/SSS9LM_220.127.116.11/com.ibm.security.appscansrc.infocenter.nav.doc/helpindex.html. This help includes the product user guide PDFs and release notes.
General information about AppScan Source documentation can be found at Where to find documentation for AppScan Source.
Helpful Hints For Obtaining Technical Assistance:
Before you contact IBM Security Software Support, gather the background information that you need to describe the problem. When you describe a problem to an IBM software support specialist, be as specific as possible and include all relevant background information so that the specialist can help you solve the problem efficiently. To save time, know the answers to these questions:
If you have helpful information to diagnose or identify the problem on your system, you can provide this data by following the instructions to exchange information with IBM Technical Support.
Problems (APARS) fixed