IBM Support

IBM SDK for Node.js 1.1.0.4 for use by the Cordova tools

Download


Abstract

This is an update for IBM Rational Application Developer for WebSphere Software to address the OpenSSL vulnerability in the IBM SDK for Node.js used by the Cordova tools.

Download Description

Table of Contents
Sections Description

The How critical is this fix section provides information related to the impact of this release to allow you to assess how your environment may be affected.

The Prerequisites section provides important information to review prior to the installation of this release.

The Installation instructions section provides the installation instructions necessary to apply this release into your environment.

The Download package section provides the direct link to obtain the download package for installation in your environment.

Prerequisites

Prerequisites include:

One of the following IBM Rational Application Developer for WebSphere Software versions must be installed:

The update will need 30MB of free disk space to install the interim fix.

To download and extract the compressed installation files, an additional 200MB of disk space is required.

Back to top

Installation Instructions

For instructions on installing this update using Installation Manager, review the topic Updating Installed Product Packages in the IBM Knowledge Center.

Important: By default, you do not need to download the compressed files that contain the update; the update is downloaded and installed by IBM Installation Manager directly from the IBM update repository.

Instructions to download and install the update from the compressed files

  1. Download the update files from Fix Central by following the link listed in the download table below

  2. Extract the compressed files in an appropriate directory. For example, choose to extract to C:\temp\update

  3. Add the update's repository location in IBM Installation Manager:
    1. Start IBM Installation Manager.
    2. On the Start page of Installation Manager, click File > Preferences, and then click Repositories. The Repositories page opens.
    3. On the Repositories page, click Add Repository.
    4. In the Add repository window, browse to or enter the file path to the repository.config file, which is located in the directory where you extracted the compressed files and then click OK. For example, enter C:\temp\updates\repository.config.
    5. Click OK to close the Preference page.

  4. Install the update as described in the the topic "Updating Installed Product Packages" in the information center for your product and version

Back to top

Download Package

Click the FC link below to download the updates from Fix Central.

For IBM Rational Application Developer for WebSphere Software Version 9.1

  1. On the Select Fixes page, expand Show contained fixes under interim fix: 9.1-Rational-IBMSDKNodeJS-1104-ifix (IBM SDK for Node.js v1.1.0.4 interim fix)
  2. Select 9.1-Rational-IBMSDKNodeJS-1104-ifix (Rational Application Developer iFix)

For IBM Rational Application Developer for WebSphere Software Version 9.1.0.1

  1. On the Select Fixes page, expand Show contained fixes under interim fix: 9.1.0.1-Rational-IBMSDKNodeJS-1104-ifix (IBM SDK for Node.js v1.1.0.4 interim fix)
  2. Select 9.1.0.1-Rational-IBMSDKNodeJS-1104-ifix (Rational Application Developer iFix)

Back to top

How critical is this fix?

Impact Assessment
Impact Description

Critical

The IBM SDK for Node.js used by the Cordova tools is affected by multiple OpenSSL vulnerabilities. This download provides an update for IBM Rational Application Developer for WebSphere Software to address the vulnerability outlined in the following security bulletin:

Security Bulletin: Rational Application Developer is affected by the following OpenSSL vulnerabilities: CVE-2014-0224, CVE-2014-0221, CVE-2014-0195, CVE-2014-0198, CVE-2010-5298, CVE-2014-3470

The fix upgrades IBM SDK for Node.js from 1.1.0.2 to 1.1.0.4.

For more information on the list of OpenSSL vulnerabilities in the IBM SDK for Node.js 1.1.0.2, review http://www.openssl.org/news/secadv_20140605.txt.

Back to top

Click the link in the Download Options column:

On
[{"DNLabel":"Update for 9.1","DNDate":"19 Jun 2014","DNLang":"English","DNSize":"1","DNPlat":{"label":"Windows","code":"PF033"},"DNURL":"http://www.ibm.com/support/fixcentral/swg/downloadFixes?parent=ibm~Rational&product=ibm/Rational/IBM Rational Application Developer for WebSphere Software&release=9.1.0&platform=All&function=fixId&fixids=9.1.0.0-Rational-RAD-IBMSDKNodeJS-1104a-ifix&i","DNURL_FTP":" ","DDURL":null},{"DNLabel":"Update for 9.1.0.1","DNDate":"19 Jun 2014","DNLang":"English","DNSize":"1","DNPlat":{"label":"Windows","code":"PF033"},"DNURL":"http://www.ibm.com/support/fixcentral/swg/downloadFixes?parent=ibm~Rational&product=ibm/Rational/IBM Rational Application Developer for WebSphere Software&release=9.1.0.1&platform=All&function=fixId&fixids=9.1.0.1-Rational-RAD-IBMSDKNodeJS-1104a-ifix","DNURL_FTP":" ","DDURL":null}]
[{"Product":{"code":"SSRTLW","label":"Rational Application Developer for WebSphere Software"},"Business Unit":{"code":"BU053","label":"Cloud & Data Platform"},"Component":"General Information","Platform":[{"code":"PF016","label":"Linux"},{"code":"PF022","label":"OS X"},{"code":"PF033","label":"Windows"}],"Version":"9.1;9.1.0.1","Edition":"","Line of Business":{"code":"LOB45","label":"Automation"}}]

Document Information

Modified date:
04 February 2020

UID

swg24037783

Page Feedback