Download
Abstract
UPGRADING TDI JRE TO JAVA 1.5 SR16 FP8 BECAUSE OF MULTIPLE JRE VULNERABILITIES.
Download Description
+-----------------------------------------------------+
Interim Fix 7.0.0-TIV-TDI-LA0021 README
Tivoli Directory Integrator 7.0.0 ( Also applicable to Tivoli Directory Integrator 6.1.1)
LA Interim Fix 21
(All supported platforms)
JRE Level: Java 1.5 SR16 FP8
Date: Jan 2015
+-----------------------------------------------------+
COPYRIGHT STATEMENT
====================
Jan 2015
References in this publication to IBM products, programs, or services do
not imply that IBM intends to make these available in all countries in
which IBM operates. Any reference to an IBM program product in this
publication is not intended to state or imply that only IBM's program
product may be used. Any functionally equivalent program may be used
instead.
IBM is a trademark of the International Business Machines Corporation.
Copyright International Business Machines Corporation 2015. All rights Reserved.
Fix For
========
APAR - NA
PMR - NA
General Description:
====================
UPGRADING TDI JRE TO JAVA 1.5 SR16 FP8 BECAUSE OF MULTIPLE JRE VULNERABILITIES.
Details:
========
This Limited Availability Interim Fix contains JRE fix for following Java vulnarabilities.
CVE-2014-3065 (CVSS 6)
CVE-2014-3566 (CVSS 4.3)
CVE-2014-6457 (CVSS 4)
CVE-2014-6512 (CVSS 4.3)
Prerequisites:
==============
For Tivoli Directory Integrator v7.0.0 : Ensure 7.0.0-TIV-TDI-FP0009 along with 7.0.0-TIV-TDI-LA0020 is applied.
For Tivoli Directory Integrator v6.1.1 : Ensure 6.1.1-TIV-TDI-FP0010 along with 6.1.1-TIV-TDI-LA0035 is applied.
Platforms:
==========
All supported Platforms
Downloading the Fix:
====================
- Under the Download options section, Click on the "Change Download options" link.
- Set the "Include prerequisites and co-requisite fixes (you can select the ones you need later)" checkbox to true.
Applying the Fix:
=================
- Shutdown TDI.
- Unzip the fix package to a temporary directory. The LA contains platform specific JRE's, copy the .zip or the .tar.gz to respective platforms.
- Extract the .zip /.tar.gz files.
- Copy the jre dir from the extracted .zip / .tar.gz into a dir called jvm.
- Backup the older JVM dir under <TDI_Install_Dir\jvm>. For this, rename the older dir by changing its name to anything other than JVM.
- Replace the existing JVM dir which was backed up earlier with the fix files ( newly created JVM folder ).
- Apply command 'chmod -R 755 JVM' under JVM dir for non windows platform.
Confirming the Fix has been applied successfully:
=================================================
Mulitple JRE vulnerabilities will be resolved.
Interim Fix 7.0.0-TIV-TDI-LA0021 README
Tivoli Directory Integrator 7.0.0 ( Also applicable to Tivoli Directory Integrator 6.1.1)
LA Interim Fix 21
(All supported platforms)
JRE Level: Java 1.5 SR16 FP8
Date: Jan 2015
+-----------------------------------------------------+
COPYRIGHT STATEMENT
====================
Jan 2015
References in this publication to IBM products, programs, or services do
not imply that IBM intends to make these available in all countries in
which IBM operates. Any reference to an IBM program product in this
publication is not intended to state or imply that only IBM's program
product may be used. Any functionally equivalent program may be used
instead.
IBM is a trademark of the International Business Machines Corporation.
Copyright International Business Machines Corporation 2015. All rights Reserved.
Fix For
========
APAR - NA
PMR - NA
General Description:
====================
UPGRADING TDI JRE TO JAVA 1.5 SR16 FP8 BECAUSE OF MULTIPLE JRE VULNERABILITIES.
Details:
========
This Limited Availability Interim Fix contains JRE fix for following Java vulnarabilities.
CVE-2014-3065 (CVSS 6)
CVE-2014-3566 (CVSS 4.3)
CVE-2014-6457 (CVSS 4)
CVE-2014-6512 (CVSS 4.3)
Prerequisites:
==============
For Tivoli Directory Integrator v7.0.0 : Ensure 7.0.0-TIV-TDI-FP0009 along with 7.0.0-TIV-TDI-LA0020 is applied.
For Tivoli Directory Integrator v6.1.1 : Ensure 6.1.1-TIV-TDI-FP0010 along with 6.1.1-TIV-TDI-LA0035 is applied.
Platforms:
==========
All supported Platforms
Downloading the Fix:
====================
- Under the Download options section, Click on the "Change Download options" link.
- Set the "Include prerequisites and co-requisite fixes (you can select the ones you need later)" checkbox to true.
Applying the Fix:
=================
- Shutdown TDI.
- Unzip the fix package to a temporary directory. The LA contains platform specific JRE's, copy the .zip or the .tar.gz to respective platforms.
- Extract the .zip /.tar.gz files.
- Copy the jre dir from the extracted .zip / .tar.gz into a dir called jvm.
- Backup the older JVM dir under <TDI_Install_Dir\jvm>. For this, rename the older dir by changing its name to anything other than JVM.
- Replace the existing JVM dir which was backed up earlier with the fix files ( newly created JVM folder ).
- Apply command 'chmod -R 755 JVM' under JVM dir for non windows platform.
Confirming the Fix has been applied successfully:
=================================================
Mulitple JRE vulnerabilities will be resolved.
Prerequisites
For Tivoli Directory Integrator v7.0.0 : Ensure 7.0.0-TIV-TDI-FP009 along with 7.0.0-TIV-TDI-LA0020 is applied.
For Tivoli Directory Integrator v6.1.1 : Ensure 6.1.1-TIV-TDI-FP010 along with 6.1.1-TIV-TDI-LA0035 is applied.
For Tivoli Directory Integrator v6.1.1 : Ensure 6.1.1-TIV-TDI-FP010 along with 6.1.1-TIV-TDI-LA0035 is applied.
Installation Instructions
Refer to 7.0.0-TIV-TDI-LA0021-README.txt for details
On
[{"DNLabel":"7.0.0-TIV-TDI-LA0021","DNDate":"29 Jan 2015","DNLang":"English","DNSize":"2725 B","DNPlat":{"label":"Linux","code":"PF016"},"DNURL":"http://www.ibm.com/support/fixcentral/quickorder?product=ibm%2FTivoli%2FTivoli+Directory+Integrator&fixids=7.0.0-TIV-TDI-LA0021-50SR16FP8&source=dbluesearch","DNURL_FTP":"","DDURL":null}]
[{"Product":{"code":"SSCQGF","label":"Tivoli Directory Integrator"},"Business Unit":{"code":"BU008","label":"Security"},"Component":"General","Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"6.1.1;7.0","Edition":"All Editions","Line of Business":{"code":"LOB24","label":"Security Software"}}]
Product Synonym
TDI ITDI IDI
Was this topic helpful?
Document Information
Modified date:
14 March 2023
UID
swg24039247