IBM® Support Assistant Team Server 126.96.36.199 (Update)
See the details below.
Notice on Vulnerability (CVE-2015-0138)
Vulnerability (CVE-2015-0138) RSA-EXPORT keys" TLS/SSL client and server may affect some custom configurations of IBM WebSphere Application Server Liberty Profile shipped in IBM Support Assistant Team Server versions 5.0, 188.8.131.52, 184.108.40.206 and 220.127.116.11. You are not affected if you have not made changes to the default secure cipher list configuration shipped with ISA. However, if you have made changes to the secure cipher list configuration, make sure to apply this patch to prevent the possible vulnerability. For details see IBM Security Bulletin and IBM Security Bulletin.
Vulnerability (CVE-2015-4000). The Logjam Attack on TLS connections using the Diffie-Hellman (DH) key exchange protocol affects IBM® Support Assistant versions 5.0, 5.0.1, 18.104.22.168 and 22.214.171.124. These were disclosed as part of the IBM Security Bulletin.
All tools have been updated to latest levels for standalone repository and all-in-one installation packages.
Please see the following techdoc for more information about this update package, including system requirements and installation directions.
IBM Support Assistant Team