Fix Readme
Abstract
Use these steps to install an emergency fix that installs Java 7, directs the Maestro framework to Java 7, and disables the RC4 stream cipher.
Content
Important: This fix addresses the vulnerability only for the Java SDK that is included with the IBM OS Images for Red Hat Linux Systems and AIX for use by the maestro framework. Fixes for Java installations that are added by the pattern developer, or installed by applications or middleware that run on the virtual image must be addressed separately. This fix does not change the default Java in the system path or the JAVA_HOME environment variable on the virtual machine.
Note: Approximately 800MB of free space is required on the virtual machine to install this fix.
To install this fix:
- Download the fix from Fix Central:
- For AIX instances, download: Java_Update_AIX_2.zip
- For Red Hat Linux instances, download: Java_Update_Linux_2.zip
- Import the fix into the Emergency Fix catalog on the system. For more information, see:
- For deployed instances, apply this emergency fix on the VM. For more information, see:
- Intel:
- Applying fixes to virtual system instances
- Applying fixes to classic virtual system instances
- Applying a fix to the base image or lifecycle script for a virtual application instance
- Power:
- Restart the deployed instance after the fix is applied.
After you apply this fix, verify that it does not cause any compatibility issues. The fix disables RC4 stream cipher by default. If you change the default setting after applying the fix, you will expose yourself to the attack described in this security bulletin: Security Bulletin: Vulnerability in RC4 stream cipher affects IBM OS Images for Red Hat Linux Systems, AIX, and Windows. (CVE-2015-2808) . IBM recommends that you review your entire environment to identify other areas where you have enabled the RC4 stream cipher and take appropriate mitigation and remediation actions.
Related Information
Was this topic helpful?
Document Information
Modified date:
15 June 2018
UID
swg21902240