Upgrade the WebSphere Application Server Java SDK to resolve security vulnerabilities in Rational Reporting for Development Intelligence and Rational Insight - Oracle CPU October 2013

Content

These security vulnerabilities are related to the Oracle Critical Patch Updates (CPU) October 2013. WAS itself is not vulnerable to these security vulnerabilities. However, both Rational Reporting for Development Intelligence (RRDI) and Rational Insight are vulnerable to two of them - CVE-2013-5802, CVE-2013-5825.

Perform the following steps to upgrade the Java SDK that is installed with these WAS versions:

1. Shut down all WAS server instances.
   
   
2. Download and install the latest Update Installer for WAS 7 from http://www.ibm.com/support/docview.wss?uid=swg21205991#updi70. See http://pic.dhe.ibm.com/infocenter/wasinfo/v7r0/topic/com.ibm.websphere.installation.nd.doc/info/ae/ae/tins_updi_install.html for the steps
   
   
3. Download the WAS interim fix PM98578 from http://www.ibm.com/support/docview.wss?uid=swg24036504 to a local directory.
   
   
4. Launch the Update Installer for WAS 7.
   
   
5. Click Next.
   
   
6. Specify the WAS 7.0.0.x installation path and click Next.
   
   
7. Select Install maintenance package and click Next.
   
   
8. Click Browse, select the directory containing the interim fix and click Open. Click Next.
   
   
9. Verify that 7.0.0.0-WS-WASJavaSDK-<platform>-IFPM98578.pak is selected and click Next.
   
   
10. Review the installation summary and click Next.
    
    
11. Click Finish.
    
    
12. Exit Update Installer for WAS 7.
    
    
13. Navigate to <WASInstallDir>/AppServer/java/bin, run "java -version" and verify that the WAS JRE has been upgraded to IBM Java 6 SR15.
    
    
14. Restart your WAS server instances.

1. Shut down all WAS server instances.
   
   
2. Start IBM Installation Manager and click Update.
   
   
3. Select IBM WebSphere Application Server V8.0 and click Next.
   
   
4. If prompted, enter your IBM ID and password for the IBM download site and click OK.
   
   
5. Verify that Version 8.0.0.8 is selected and click Next.
   
   Note: A warning message will be displayed if you have previously installed a WAS interim fix that conflicts with the new update. To resolve the issue, uninstall the old interim fix and return to step 2.
   
   
6. Select all fixes that are applicable to your platform and click Next.
   
   
7. Select I accept the terms in the license agreement and click Next.
   
   
8. Review the features to install and click Next.
   
   
9. Review the summary information and click Update.
   
   
10. Click Finish.
    
    
11. Exit IBM Installation Manager.
    
    
12. Navigate to <WASInstallDir>/AppServer/java/bin, run "java -version" and verify that the WAS JRE has been upgraded to IBM Java 6 (J9 2.6) SR7.
    
    
13. Restart your WAS server instances.

1. Shut down all WAS server instances.
   
   
2. Start IBM Installation Manager and click Update.
   
   
3. Select IBM WebSphere Application Server V8.5 and click Next.
   
   
4. If prompted, enter your IBM ID and password for the IBM download site and click OK.
   
   
5. Verify that Version 8.5.5.1 is selected and click Next.
   
   Note: A warning message will be displayed if you have previously installed a WAS interim fix that conflicts with the new update. To resolve the issue, uninstall the old interim fix and return to step 2.
   
   
6. Select all fixes that are applicable to your platform and click Next.
   
   
7. Select I accept the terms in the license agreement and click Next.
   
   
8. Review the features to install and click Next.
   
   
9. Review the summary information and click Update.
   
   
10. Click Finish.
    
    
11. Exit IBM Installation Manager.
    
    
12. Navigate to <WASInstallDir>/AppServer/java/bin, run "java -version" and verify that the WAS JRE has been upgraded to IBM Java 7 SR6 or IBM Java 6 (J9 2.6) SR7.
    
    
13. Restart your WAS server instances.