Flashes (Alerts)
Abstract
IBM Tivoli Management Framework (TMF) to provide instructions to self-bundle new bash
Content
|
TMF does not install bash as a system bash. TMF includes a subset of bash binaries inside its own product directories (bundles), not accessible from untrusted users in the network. |
| For the above reasons TMF is not vulnerable, however, for the customer willing to replace the bash binaries, TMF is going to document the following scenario. |
NOTE: Because bash is an Open Source program, customers are advised to obtain the updated bash from Cygwin, then self-bundle the bash according to instructions provided by IBM support in the form of steps on how to implement the new updated bash.
| For all IBM products, please continue to monitor both the IBM Support Portal (http://www.ibm.com/support/entry/portal/support) for available product status and fixes (if any) and the IBM PSIRT external blog (https://www.ibm.com/blogs/PSIRT) for the latest information concerning the Bash Bug (Shellshock) vulnerability. |
[{"Product":{"code":"SSXLSW","label":"Tivoli Management Framework"},"Business Unit":{"code":"BU058","label":"IBM Infrastructure w\/TPS"},"Component":"Not Applicable","Platform":[{"code":"PF033","label":"Windows"}],"Version":"4.1.1;4.3.1","Edition":"","Line of Business":{"code":"LOB35","label":"Mainframe SW"}}]
Product Synonym
Framework
Tivoli Management Framework
TMF
Was this topic helpful?
Document Information
More support for:
Tivoli Management Framework
Software version:
4.1.1, 4.3.1
Operating system(s):
Windows
Document number:
252955
Modified date:
25 September 2022
UID
swg21686354