This fix updates the IBM® SDK, Java™ Technology Edition for the portal server to address documented security vulnerabilities.
This fix updates the IBM SDK Java Technology Edition Java Runtime Environment (JRE) which the portal server distributes to clients.
The vulnerabilities addressed by this fix exist when the affected JRE is installed on systems running the Tivoli Enterprise Portal Browser client or Java WebStart client.
The affected JRE is installed on a system when logging into the IBM Tivoli Enterprise Portal using the Browser client or WebStart client and a JRE at the required level does not exist. The portal provides an option to download the provided JRE to the system.
This fix provides updated JRE packages for the portal server which can be downloaded by new client systems. Once the fix has been installed on the portal server, instructions in the README can be used to update the portal clients.
There are two fixes provided:
|6.X.X-TIV-ITM_JRE_TEP_6.16.70.00||This is a fix for IBM Tivoli Monitoring version 6.23.01.00 through 6.23.05.00. It contains the updated IBM Runtime Environment, Java Technology Edition, Version 6 SR16 FP70 and IBM Runtime Environment, Java 2 Technology Edition, Version 5 SR16 FP14 for portal server distribution.|
|6.X.X-TIV-ITM_JRE_TEP_7.10.30.00||This is a fix for IBM Tivoli Monitoring version 6.30.00.00 and above. It contains the updated IBM Runtime Environment, Java Technology Edition, Version 7.1 SR4 FP30 and IBM Runtime Environment, Java Technology Edition version 6 SR16 FP70 for portal server distribution.|
See Readme included with Interim Fix
Details in related security bulletin.
13 November 2018