IBM Support

IBM Tivoli Monitoring Basic Services Vulnerability (IV87524)

Downloadable files


Abstract

This fix addresses a security vulnerability in which the Firewall (Proxy) Gateway was vulnerable to possible host header injection attack.

Download Description

The following patches have been provided to address the security vulnerability listed in the IBM Tivoli Monitoring Security Bulletin: http://www.ibm.com/support/docview.wss?uid=swg21997223

VRMF Fix
6.3.0 6.3.0-TIV-ITM-FP0007-IV87524
6.2.3 6.2.3-TIV-ITM-FP0005-IV87524
6.2.2 6.2.2-TIV-ITM-FP0009-IV87524

Prerequisites

The prerequisite level for this fix is as follows:
IBM Tivoli Monitoring, version 6.3.0 Fix Pack 4 (6.3.0-TIV-ITM-FP0007)
- OR -
IBM Tivoli Monitoring, version 6.2.3 Fix Pack 5 (6.2.3-TIV-ITM-FP0005)
- OR -
IBM Tivoli Monitoring, version 6.2.2 Fix Pack 9 (6.2.2-TIV-ITM-FP0009)

URL LANGUAGE SIZE(Bytes)
6.3.0-TIV-ITM-FP0007 English 1
6.2.3-TIV-ITM-FP0005 English 1
6.2.2-TIV-ITM-FP0009 English 1

Installation Instructions

Refer to the README file located in Fix Central for additional information.

Download package

Change history

2017-03-06: Document published.
Apr 11 2018 Updated to address patch install issue with Linux on Power little endian (lpl266)

Download RELEASE DATE LANGUAGE SIZE(Bytes) Download Options
What is Fix Central(FC)?
6.3.0-TIV-ITM-FP0007-IV87524 1 Mar 2017 English 1 FC
6.2.3-TIV-ITM-FP0005-IV87524 6 Mar 2017 English 1 FC
6.2.2-TIV-ITM-FP0009-IV87524 6 Mar 2017 English 1 FC

Product Alias/Synonym

ITM

Problems (APARS) fixed
IV87524

Document information

More support for: IBM Tivoli Monitoring V6

Software version: 6.2.2, 6.2.3, 6.3.0

Operating system(s): AIX, HP-UX, Linux, Solaris, Windows

Reference #: 4043383

Modified date: 06 March 2017