Operating System:

[RedHat]

Published:

21 November 2012

Protect yourself against future threats.

//Service

AusCERT Education

Enhance your knowledge with our exceptional one day training offerings for individuals and organisations

Read more
Resources > Security Bulletins > ESB-2012.1103 

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

===========================================================================
             AUSCERT External Security Bulletin Redistribution

                               ESB-2012.1103
           IBM Intelligent Operations Center interim fix PO00087
                             21 November 2012

===========================================================================

        AusCERT Security Bulletin Summary
        ---------------------------------

Product:           IBM Intelligent Operations Center
Publisher:         IBM
Operating System:  Red Hat
Impact/Access:     Access Confidential Data -- Existing Account
                   Unauthorised Access      -- Existing Account
Resolution:        Patch/Upgrade
CVE Names:         CVE-2012-3325  

Reference:         ESB-2012.0822

Original Bulletin: 
   https://www.auscert.org.au/render.html?it=16533

- --------------------------BEGIN INCLUDED TEXT--------------------

IBM Intelligent Operations Center interim fix PO00087

Downloadable files

Abstract
This interim fix contains a new Launchpad GUI Installer that performs a full
end-to-end installation of IBM Intelligent Operations Center.

Download Description
You must apply this fix before installing the Intelligent Operations Center
product. Review the readme document contained in the Fix Central download
package for installation instructions.

This interim fix adds the following fixes to the IBM Intelligent Operations
Center:

* WebSphere Application Server APAR PM71296 to address a security vulnerability
  in WebSphere
* DB2 9.7 FixPack 6 installed instead of v9.7.0.5
* Fixes to Tivoli Monitoring for Sametime so that it properly collects
  monitoring data. (Fix includes the Sametime Hot fix JAMR-8TKL24)
* Fixes to support installation on AMD hardware
* Fixes to resolve issues with non-English characters
* Fixes to prevent slow start up for ITM components in non-DNS environments
  (Fix applies ITM APAR IZ77365)
* Fix to address spelling issue in GUI Installer
* Pre-installation fixes (to prevent installation failures)
* Improvement to ensure MQ manager is properly restarted during Intelligent
  Operations Center application installation
* Improvement to prevent timeouts and java.net.ConnectionException errors on
  slow environments
* Improvement to prevent timeouts for SOAP connections during installation
* Improvement to prevent transaction time-out issues
* LD_LIBRARY_PATH fixes for Cognos installation

See the additional APAR numbers below in Problems (APARS) Fixed for the fixes
that are included with interim fix PO00087.

Prerequisites
For prerequisites, refer to the readme document in the Fix Central download
package.

Download package

Download
Interim fix PO00087

RELEASE DATE
16 Nov 2012

LANGUAGE
English

SIZE (Bytes)
3095914496

Download Options
FC:
http://www.ibm.com/support/fixcentral/swg/quickorder?parent=ibm/Other+software&product=ibm/Other+software/Intelligent+Operations+Center&release=1.5.0&platform=Linux&function=fixid&fixids=1.5.0-Other-IBMIOC-Linux-PO00087

Problems (APARS) fixed
PO00087, PO00087, PO00032, PO00033, PO00034, PO00037, PO00038, PO00042,
PO00107, PO00119, PO00171, PO00172

Copyright and trademark information
IBM, the IBM logo and ibm.com are trademarks of International Business Machines
Corp., registered in many jurisdictions worldwide. Other product and service
names might be trademarks of IBM or other companies. A current list of IBM
trademarks is available on the Web at "Copyright and trademark information" at
www.ibm.com/legal/copytrade.shtml.

- --------------------------END INCLUDED TEXT--------------------

You have received this e-mail bulletin as a result of your organisation's
registration with AusCERT. The mailing list you are subscribed to is
maintained within your organisation, so if you do not wish to continue
receiving these bulletins you should contact your local IT manager. If
you do not know who that is, please send an email to auscert@auscert.org.au
and we will forward your request to the appropriate person.

NOTE: Third Party Rights
This security bulletin is provided as a service to AusCERT's members.  As
AusCERT did not write the document quoted above, AusCERT has had no control
over its content. The decision to follow or act on information or advice
contained in this security bulletin is the responsibility of each user or
organisation, and should be considered in accordance with your organisation's
site policies and procedures. AusCERT takes no responsibility for consequences
which may arise from following or acting on information or advice contained in
this security bulletin.

NOTE: This is only the original release of the security bulletin.  It may
not be updated when updates to the original are made.  If downloading at
a later date, it is recommended that the bulletin is retrieved directly
from the author's website to ensure that the information is still current.

Contact information for the authors of the original document is included
in the Security Bulletin above.  If you have any questions or need further
information, please contact them directly.

Previous advisories and external security bulletins can be retrieved from:

        http://www.auscert.org.au/render.html?cid=1980

===========================================================================
Australian Computer Emergency Response Team
The University of Queensland
Brisbane
Qld 4072

Internet Email: auscert@auscert.org.au
Facsimile:      (07) 3365 7031
Telephone:      (07) 3365 4417 (International: +61 7 3365 4417)
                AusCERT personnel answer during Queensland business hours
                which are GMT+10:00 (AEST).
                On call after hours for member emergencies only.
===========================================================================
-----BEGIN PGP SIGNATURE-----
Comment: http://www.auscert.org.au/render.html?it=1967
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=Mt9A
-----END PGP SIGNATURE-----