IBM Support

Release of Guardium Data Protection DPS update for versions 12.x and 11.x (August 2024, Q3)

Release Notes


Abstract

This document provides a listing of the updates that have been done and are available for IBM Security Guardium Database Protection Service (DPS). DPS is a subscription service that provides periodic updates to vulnerability tests as well as other predefined content (reports, groups, policies).

Content

Target audience

This document is intended for IBM Security Guardium Data Protection version 12.x and 11.x customers.
 

Known issues
DB2 z/OS Security APAR SIA-DB2-2019.10-1: When executing this test on DB2 v11.1 and 12.1, you may get a test score error message like "Modules listed for PTF not present in DB2 MEPL".  The modules impacted on this security APAR are not found in the DB2 MEPL, which is a rare occurrence, as these are DB2 early code modules which are loaded at IPL time. Manually verify the impacted modules in SMPE after your database is patched.
Requirements
Version Requirements
12.x There are no specific requirements for loading the quarterly DPS release on Guardium version 12.x.
11.x There are no specific requirements for loading the quarterly DPS release on Guardium version 11.x.
Notes
Version Notes
12.x None
11.x None
DPS files
Version Filename and MD5SUM
12.x
Filename:  Guardium_V12_Quarterly_DPS_2024_Q3_20240815.enc
MD5SUM: 5a18cf371b7a700349e668ed42324517           
11.x
Filename: Guardium_V11_Quarterly_DPS_2024_Q3_20240815.enc
MD5SUM: 52dd378ee1c8f0c1edaad0c0ce12ef02
Updated database vendor version + patches
Version 12.x Version 11.x
Informix Database
    14.10+FC11
    7.51+FC2
MS Sql Server Database
    16.0+4131
    15.0+4382
    14.0+3471
    13.0+7037
MySql Database
    9.0+1*
    8.4+2*
    8.0+39*
Oracle Database
    21+RU 21.15.0.0.240716
    19+RU 19.24.0.0.240716
Sybase Database
    16.0+04.06
Teradata PDE
    17.20.03+28
Teradata TDBMS
    17.20.03+28
Teradata TDGSS
    17.20.03+28
Teradata TGTW
    17.20.03+28
Postgres
    12.19+0*
    13.15+0*
    14.12+0*
    15.7+0*
    16.3+0*
SybaseIQ Database
    16.1+sp05.13
MongoDB Database
    5.0+28
    6.0+16
    7.0+12
SAP Hana Database
    2.00+79
Cloudera Hadoop
    7.1+9.p14
DataStax Cassandra DSE
    5.1+45
    6.8+50
Couchbase
    7.6+2
    7.2+5
Neo4j
    4.4+36
    5.20+0
    5.21+2
    5.22+0
MariaDB
    11.4+2
    11.2+4
    11.1+5
    11.0+6
    10.11+8
    10.6+18
    10.5+25
    10.4+34
Percona MySQL
    8.3+0
    8.2+0
    8.1+0
Apache Cassandra
    4.1+5
    4.0+13
EDB Postgres
    14.12+0*
    15.7+0*
    16.3+0*
Informix Database
    14.10+FC11
    7.51+FC2
MS Sql Server Database
    16.0+4131
    15.0+4382
    14.0+3471
    13.0+7037
MySql Database
    9.0+1*
    8.4+2*
    8.0+39*
Oracle Database
    21+RU 21.15.0.0.240716
    19+RU 19.24.0.0.240716
Sybase Database
    16.0+04.06
Teradata PDE
    17.20.03+28
Teradata TDBMS
    17.20.03+28
Teradata TDGSS
    17.20.03+28
Teradata TGTW
    17.20.03+28
Postgres
    12.19+0*
    13.15+0*
    14.12+0*
    15.7+0*
    16.3+0*
SybaseIQ Database
    16.1+sp05.13
MongoDB Database
    5.0+28
    6.0+16
    7.0+12
SAP Hana Database
    2.00+79
Cloudera Hadoop
    7.1+9.p14
DataStax Cassandra DSE
    5.1+45
    6.8+50
Couchbase
    7.6+2
    7.2+5
Neo4j
    4.4+36
    5.20+0
    5.21+2
    5.22+0
MariaDB
    11.4+2
    11.2+4
    11.1+5
    11.0+6
    10.11+8
    10.6+18
    10.5+25
    10.4+34
Percona MySQL
    8.3+0
    8.2+0
    8.1+0
Apache Cassandra
    4.1+5
    4.0+13
VA test enhancements
Versions Test ID Description Database type What changed?
12.x, 11.x -- -- -- --
New VA tests
Versions Test ID Description Database type
12.x, 11.x -- -- --
Updated groups
Versions ID Name type New or updated items What changed?
12.x, 11.x -- -- -- --
Common vulnerabilities and exposures 
Versions Test name Database type
12.x, 11.x CVE-2024-21176 MYSQL
12.x, 11.x CVE-2024-21177 MYSQL
12.x, 11.x CVE-2024-21179 MYSQL
12.x, 11.x CVE-2024-21184 ORACLE
12.x, 11.x CVE-2024-21185 MYSQL
12.x, 11.x CVE-2024-6375 MONGODB
12.x, 11.x SIA-MVS-2024.06-2 IBM DB2 Z/OS

[{"Type":"MASTER","Line of Business":{"code":"LOB24","label":"Security Software"},"Business Unit":{"code":"BU048","label":"IBM Software"},"Product":{"code":"SSMPHH","label":"IBM Security Guardium"},"ARM Category":[{"code":"a8m3p000000PCTuAAO","label":"Platform\/Installation\/Deployment"}],"Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"All Versions"}]

Document Information

Modified date:
19 August 2024

UID

ibm17164154

Page Feedback