Protect yourself against future threats.
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 =========================================================================== AUSCERT External Security Bulletin Redistribution ESB-2012.1103 IBM Intelligent Operations Center interim fix PO00087 21 November 2012 =========================================================================== AusCERT Security Bulletin Summary --------------------------------- Product: IBM Intelligent Operations Center Publisher: IBM Operating System: Red Hat Impact/Access: Access Confidential Data -- Existing Account Unauthorised Access -- Existing Account Resolution: Patch/Upgrade CVE Names: CVE-2012-3325 Reference: ESB-2012.0822 Original Bulletin: https://www.auscert.org.au/render.html?it=16533 - --------------------------BEGIN INCLUDED TEXT-------------------- IBM Intelligent Operations Center interim fix PO00087 Downloadable files Abstract This interim fix contains a new Launchpad GUI Installer that performs a full end-to-end installation of IBM Intelligent Operations Center. Download Description You must apply this fix before installing the Intelligent Operations Center product. Review the readme document contained in the Fix Central download package for installation instructions. This interim fix adds the following fixes to the IBM Intelligent Operations Center: * WebSphere Application Server APAR PM71296 to address a security vulnerability in WebSphere * DB2 9.7 FixPack 6 installed instead of v9.7.0.5 * Fixes to Tivoli Monitoring for Sametime so that it properly collects monitoring data. (Fix includes the Sametime Hot fix JAMR-8TKL24) * Fixes to support installation on AMD hardware * Fixes to resolve issues with non-English characters * Fixes to prevent slow start up for ITM components in non-DNS environments (Fix applies ITM APAR IZ77365) * Fix to address spelling issue in GUI Installer * Pre-installation fixes (to prevent installation failures) * Improvement to ensure MQ manager is properly restarted during Intelligent Operations Center application installation * Improvement to prevent timeouts and java.net.ConnectionException errors on slow environments * Improvement to prevent timeouts for SOAP connections during installation * Improvement to prevent transaction time-out issues * LD_LIBRARY_PATH fixes for Cognos installation See the additional APAR numbers below in Problems (APARS) Fixed for the fixes that are included with interim fix PO00087. Prerequisites For prerequisites, refer to the readme document in the Fix Central download package. Download package Download Interim fix PO00087 RELEASE DATE 16 Nov 2012 LANGUAGE English SIZE (Bytes) 3095914496 Download Options FC: http://www.ibm.com/support/fixcentral/swg/quickorder?parent=ibm/Other+software&product=ibm/Other+software/Intelligent+Operations+Center&release=1.5.0&platform=Linux&function=fixid&fixids=1.5.0-Other-IBMIOC-Linux-PO00087 Problems (APARS) fixed PO00087, PO00087, PO00032, PO00033, PO00034, PO00037, PO00038, PO00042, PO00107, PO00119, PO00171, PO00172 Copyright and trademark information IBM, the IBM logo and ibm.com are trademarks of International Business Machines Corp., registered in many jurisdictions worldwide. Other product and service names might be trademarks of IBM or other companies. A current list of IBM trademarks is available on the Web at "Copyright and trademark information" at www.ibm.com/legal/copytrade.shtml. - --------------------------END INCLUDED TEXT-------------------- You have received this e-mail bulletin as a result of your organisation's registration with AusCERT. The mailing list you are subscribed to is maintained within your organisation, so if you do not wish to continue receiving these bulletins you should contact your local IT manager. If you do not know who that is, please send an email to auscert@auscert.org.au and we will forward your request to the appropriate person. NOTE: Third Party Rights This security bulletin is provided as a service to AusCERT's members. As AusCERT did not write the document quoted above, AusCERT has had no control over its content. The decision to follow or act on information or advice contained in this security bulletin is the responsibility of each user or organisation, and should be considered in accordance with your organisation's site policies and procedures. AusCERT takes no responsibility for consequences which may arise from following or acting on information or advice contained in this security bulletin. NOTE: This is only the original release of the security bulletin. It may not be updated when updates to the original are made. If downloading at a later date, it is recommended that the bulletin is retrieved directly from the author's website to ensure that the information is still current. Contact information for the authors of the original document is included in the Security Bulletin above. If you have any questions or need further information, please contact them directly. Previous advisories and external security bulletins can be retrieved from: http://www.auscert.org.au/render.html?cid=1980 =========================================================================== Australian Computer Emergency Response Team The University of Queensland Brisbane Qld 4072 Internet Email: auscert@auscert.org.au Facsimile: (07) 3365 7031 Telephone: (07) 3365 4417 (International: +61 7 3365 4417) AusCERT personnel answer during Queensland business hours which are GMT+10:00 (AEST). On call after hours for member emergencies only. =========================================================================== -----BEGIN PGP SIGNATURE----- Comment: http://www.auscert.org.au/render.html?it=1967 iQIVAwUBUKxgnO4yVqjM2NGpAQKYDw//Qpku0CholtBHpQg9HfXc9hR874Lbtkhr AqU3kb+7HvSrvzLoq4hfhXDeI7PEWbiA98X/2MIX1EbCmUHZULLRscpBi4YqreH4 yWRo9XICHxJK+Lh9Zuj2Hdc7Af4SSUAnan4TA60u0lYF42bIu4aKjBazXnSwD/Tc 8AFnN4trYFP4xVVcUqRFCR7MCS9yzm3ebSWkxNhde2t4azLwW9BBWixxAmr5sZ8g 7PzBSjp9BIgrQsPVfzGtgSNQves/f4hY7xvKAazLYpARQdnsqkADZXfQI5vkbdfE 4OjgmnDjRF1vl7YVtxkX3EWh6EL4SU7EHVxoOmohCANaAna/RaowGAR7BqBL1dC0 dZvxW1cfhlY8kfUjqAgFvDa/7PHwrV+vXTsx3s+BotV74SpFY8U0s4b8+pzjOZs0 wrRIRLgOHkWQIFvZli2mS3HDEHGF0E9MdQHzRtCO9oWXagRAOsSslW+Z2Wh+rlys kjvXs4DcZvtPLWr+5f1wRZ5i0iRib+tNnME5E995ntxpFy3hhG13CPTEptrM1ak5 VnM6EO09vgQhosIdLvmB6saYaBBwW+6ZrJjjtJ6gGZ31TrTBT6gTJ9pArinMeOgF she2BG0kbNqM8/0VLAZBqEe6wte+dsyk+PK/b1CUZoKsB4kJArh62fW5CsJbxdWd pN+qbLmx0WQ= =Mt9A -----END PGP SIGNATURE-----