IBM Platform RTM 9.1.3, 9.1.2, 9.1, 8.3 CVE Fix 242242 Readme File

Abstract
Fix to resolve security vulnerability issues in Platform RTM 9.1.3, 9.1.2, 9.1 and 8.3.

Description
Readme documentation for IBM Platform RTM 9.1.3, 9.1.2, 9.1, 8.3 Fix 242242 including installation-related instructions, prerequisites and co-requisites, and list of fixes.

The RTM CVE patch is designd to resolve security vulnerability issues in RTM 9.1.3, 9.1.2, 9.1 and 8.3.

Readme file for: IBM® Platform RTM
Product/Component Release: 9.1.3, 9.1.2, 9.1 and 8.3
Update Name: Fix 242242
Fix ID: PlatformRTM-9.1.3-242242, PlatformRTM-9.1.2-242242, PlatformRTM-9.1-242242, PlatformRTM-8.3-242242
Publication date: Oct 31, 2014
Last modified date: Oct 23, 2014

Contents:

1.     List of fixes

2.     Download location

3.     Products or components affected

4.     System requirements

5.     Installation and configuration

6.     List of files

7.     Copyright and trademark information

1.   List of fixes

Solution #242242

2.   Download Location

Download Fix 242242 from the following location: http://www-933.ibm.com/support/fixcentral

3.   Products or components affected
 
Product/Component Name, Platform, File Name:

IBM Platform RTM, Linux x86_64, ppc64

RTM 9.1.3
RTM 9.1.2
RTM 9.1
RTM 8.3

4.   System requirements 

OS of RTM master: Linux  x86_64, ppc64

5.   Installation and configuration
5.1    Before installation
 
    1) Back up all the affected files of RTM as cacti_backupname.tar.

        # cd RTM_TOP
        # tar -cvf cacti_backupname.tar  -T cve_file_list.txt

        Note: cve_file_list.txt is a text file including all affected files listed in part "6. List of files". The file format is one filename per line.

5.2    Installation steps
 
    1) Stop crond(cron) service

        # service crond(cron) stop

    2) Download and extract rtm-cve-patch-9.1.3(9.1.2/9.1)-0.x86_64(ppc64).tar.gz for RTM 9.1.3, 9.1.2 and 9.1 or rtm-cve-patch-8.3-1.x86_64.tar.gz for RTM 8.3  to the RTM_TOP directory

        # cd RTM_TOP
        # tar -zxvf rtm-cve-patch-9.1.3(9.1.2/9.1)-0.x86_64(ppc64).tar.gz
        or
        # tar -zxvf rtm-cve-patch-8.3-1.x86_64.tar.gz

    3) Start crond(cron) service

        # service crond(cron) start


5.3    After installation

None
 
5.4    Uninstallation

    1) Stop crond(cron) service

        # service crond(cron) stop

    2)  Rollback patch by using the back up package

        # cd RTM_TOP
        # tar -xvf cacti_backupname.tar

    3) Start crond(cron) service

        # service crond(cron) start

6.   List of files

./cacti/auth_changepassword.php
./cacti/auth_login.php
./cacti/cdef.php
./cacti/data_input.php
./cacti/data_queries.php
./cacti/data_sources.php
./cacti/data_templates.php
./cacti/graph_settings.php
./cacti/graphs_items.php
./cacti/graphs_new.php
./cacti/graphs.php
./cacti/graph_templates_inputs.php
./cacti/graph_templates_items.php
./cacti/graph_templates.php
./cacti/graph_view.php
./cacti/graph_xport.php
./cacti/host.php
./cacti/host_templates.php
./cacti/include/top_graph_header.php
./cacti/include/top_header.php
./cacti/install/index.php
./cacti/lib/api_device.php
./cacti/lib/api_poller.php
./cacti/lib/data_query.php
./cacti/lib/functions.php
./cacti/lib/graph_export.php
./cacti/lib/graph_variables.php
./cacti/lib/html.php
./cacti/lib/html_tree.php
./cacti/lib/html_validate.php
./cacti/lib/import.php
./cacti/lib/rrd.php
./cacti/lib/snmp.php
./cacti/lib/template.php
./cacti/lib/utility.php
./cacti/lib/variables.php
./cacti/plugins/gridalarms/gridalarms_alarm_edit.php
./cacti/plugins/gridalarms/lib/gridalarms_functions.php
./cacti/plugins/grid/grid_clusters.php
./cacti/plugins/grid/grid_pollers.php
./cacti/plugins/license/include/lic_functions.php
./cacti/plugins/license/lic_pollers.php
./cacti/plugins/license/lic_servers.php
./cacti/plugins/meta/metadata.php
./cacti/plugins/nectar/nectar_webapi.php
./cacti/plugins.php
./cacti/plugins/superlinks/superlinks-mgmt.php
./cacti/plugins/syslog/syslog_alerts.php
./cacti/plugins/syslog/syslog_removal.php
./cacti/plugins/syslog/syslog_reports.php
./cacti/plugins/thold/listthold.php
./cacti/plugins/thold/setup.php
./cacti/plugins/thold/thold_add.php
./cacti/plugins/thold/thold_graph.php
./cacti/plugins/thold/thold.php
./cacti/plugins/thold/thold_templates.php
./cacti/rra.php
./cacti/scripts/query_host_cpu.php
./cacti/scripts/ss_sql.php
./cacti/settings.php
./cacti/templates_export.php
./cacti/tree.php
./cacti/user_admin.php
./cacti/utilities.php
./cacti/plugins/clog/clog_webapi.php
./cacti/include/global_arrays.php
./cacti/lib/html_form_template.php
./cacti/plugins/grid/lib/grid_functions.php
./cacti/plugins/meta/lib/metadata_api.php
./cacti/plugins/superlinks/setup.php
./cacti/plugins/grid/grid_bjobs.php
./cacti/plugins/syslog/syslog.php
./cacti/plugins/syslog/functions.php
./cacti/plugins/nectar/setup.php
./cacti/plugins/syslog/syslog_process.php
./cacti/plugins/grid/grid_summary.php
./cacti/plugins/nectar/nectar_functions.php

Note: The following files exist in RTM 9.1.3, 9.1.2 and 9.1, but not in 8.3.

./cacti/plugins/gridalarms/gridalarms_template_edit.php
./cacti/plugins/gridalarms/includes/settings.php
./cacti/plugins/gridalarms/notify_lists.php
./cacti/plugins/grid/grid_elim_graphs.php
./cacti/plugins/grid/grid_elim_graph_templates_items.php
./cacti/plugins/grid/grid_elim_templates.php
./cacti/plugins/grid/grid_elim_functions.php

 
7.   Copyright and trademark information

© Copyright IBM Corporation 2014

U.S. Government Users Restricted Rights - Use, duplication or disclosure restricted by GSA ADP Schedule Contract with IBM Corp.

IBM®, the IBM logo and ibm.com®are trademarks of International Business Machines Corp., registered in many jurisdictions worldwide. Other product and service names might be trademarks of IBM or other companies. A current list of IBM trademarks is available on the Web at "Copyright and trademark information" at www.ibm.com/legal/copytrade.shtml.