IBM Support

IBM Tivoli Monitoring TLS Vulnerability (IV68044)

Download


Abstract

This fix addresses a security vulnerability in TLS which affects IBM Tivoli Monitoring (CVE-2014-8730).

Download Description

The following patches are provided to address the security vulnerability listed in the IBM Tivoli Monitoring Security Bulletin: http://www.ibm.com/support/docview.wss?uid=swg21694339.

The following patches are provided to remediate the vulnerability across the releases below:

VRMFFix
6.306.3.0-TIV-ITM-FP0004-IV68044
6.236.2.3-TIV-ITM-FP0005-IV68044
6.226.2.2-TIV-ITM-FP0009-IV68044

Prerequisites

The prerequisite level for this fix is as follows:
IBM Tivoli Monitoring, version 6.3.0 Fix Pack 4 (6.3.0-TIV-ITM-FP0004)
- OR -
IBM Tivoli Monitoring, version 6.2.3 Fix Pack 5 (6.2.3-TIV-ITM-FP0005)
- OR -
IBM Tivoli Monitoring, version 6.2.2 Fix Pack 9 (6.2.2-TIV-ITM-FP0009)

[{"PRLabel":"6.3.0-TIV-ITM-FP0004","PRLang":"English","PRSize":"1","PRPlat":{"label":"AIX","code":"PF002"},"PRURL":"http:\/\/www.ibm.com\/support\/fixcentral\/swg\/quickorder?parent=ibm~Tivoli&product=ibm\/Tivoli\/IBM+Tivoli+Monitoring&platform=All&release=6.3.0&function=fixId&fixids=6.3.0-TIV-ITM-FP0004"},{"PRLabel":"6.2.3-TIV-ITM-FP0005","PRLang":"English","PRSize":"1","PRPlat":{"label":"AIX","code":"PF002"},"PRURL":"http:\/\/www.ibm.com\/support\/fixcentral\/swg\/quickorder?parent=ibm~Tivoli&product=ibm\/Tivoli\/IBM+Tivoli+Monitoring&platform=All&release=6.2.3&function=fixId&fixids=6.2.3-TIV-ITM-FP0005"},{"PRLabel":"6.2.2-TIV-ITM-FP0009","PRLang":"English","PRSize":"1","PRPlat":{"label":"AIX","code":"PF002"},"PRURL":"http:\/\/www.ibm.com\/support\/fixcentral\/swg\/quickorder?parent=ibm~Tivoli&product=ibm\/Tivoli\/IBM+Tivoli+Monitoring&platform=All&release=6.2.2&function=fixId&fixids=6.2.2-TIV-ITM-FP0009"}]

Installation Instructions

Refer to the README file located in Fix Central for additional information.

Change History

2015-07-12: The patches for 6.22 FP9 on UNIX and Linux have been updated to address an install failure on some systems due to incorrect execute permissions for the itmpatch binary.

On
[{"DNLabel":"6.3.0-TIV-ITM-FP0004-IV68044","DNDate":"26 Jan 2015","DNLang":"English","DNSize":"26582978","DNPlat":{"label":"AIX","code":"PF002"},"DNURL":"http:\/\/www.ibm.com\/support\/fixcentral\/swg\/quickorder?parent=ibm~Tivoli&product=ibm\/Tivoli\/IBM+Tivoli+Monitoring&platform=All&release=6.3.0.4&function=fixId&fixids=6.3.0-TIV-ITM-FP0004-IV68044","DNURL_FTP":" ","DDURL":null},{"DNLabel":"6.2.3-TIV-ITM-FP0005-IV68044","DNDate":"26 Jan 2015","DNLang":"English","DNSize":"29477533","DNPlat":{"label":"AIX","code":"PF002"},"DNURL":"http:\/\/www.ibm.com\/support\/fixcentral\/swg\/quickorder?parent=ibm~Tivoli&product=ibm\/Tivoli\/IBM+Tivoli+Monitoring&platform=All&release=6.2.3.5&function=fixId&fixids=6.2.3-TIV-ITM-FP0005-IV68044","DNURL_FTP":" ","DDURL":null},{"DNLabel":"6.2.2-TIV-ITM-FP0009-IV68044","DNDate":"26 Jan 2015","DNLang":"English","DNSize":"29478736","DNPlat":{"label":"AIX","code":"PF002"},"DNURL":"http:\/\/www.ibm.com\/support\/fixcentral\/swg\/quickorder?parent=ibm~Tivoli&product=ibm\/Tivoli\/IBM+Tivoli+Monitoring&platform=All&release=6.2.2.9&function=fixId&fixids=6.2.2-TIV-ITM-FP0009-IV68044","DNURL_FTP":" ","DDURL":null}]

Internal Use Only

Advisory 2545
DB Record 47171
CVE-2014-8730

[{"Product":{"code":"SSZ8F3","label":"IBM Tivoli Monitoring V6"},"Business Unit":{"code":"BU004","label":"Hybrid Cloud"},"Component":"Not Applicable","Platform":[{"code":"PF002","label":"AIX"},{"code":"PF010","label":"HP-UX"},{"code":"PF016","label":"Linux"},{"code":"PF027","label":"Solaris"},{"code":"PF033","label":"Windows"}],"Version":"6.3.0;6.2.3;6.2.2","Edition":""}]

Product Alias/Synonym

ITM

Document Information

Modified date:
15 June 2018

UID

swg24039203