IBM Security Virtual Server Protection for VMware 1.1.0.0 ===================================================================== Last modified: 04/12/2013 PLEASE READ THIS DOCUMENT IN ITS ENTIRETY. © Copyright IBM Corporation 2009, 2012. U.S. Government Users Restricted Rights — Use, duplication or disclosure restricted by GSA ADP Schedule Contract with IBMCorp. ===================================================================== CONTENTS ===================================================================== - Description - Compatibility - Applying the Update - MD5 of included files - Customer Support - Reporting product issues DESCRIPTION ===================================================================== This patch contains a roll up of the currently available patches for IBM Security Virtual Server Protection for VMware 1.1.0.0 plus new content. Details -------- This patch fixes the issue where IBM Security Virtual Server Protection for VMware System can be affected by several vulnerabilities in OpenSSL. These vulnerabilities include obtaining sensitive information, denial of service and code execution vulnerabilities that could be exploited remotely by an attacker. COMPATIBILITY ===================================================================== This update is applicable only to: IBM Security Virtual Server Protection for VMware 1.1.0.0 APPLYING THE UPDATE ===================================================================== To apply the update: Important: You must have root user permissions to perform the steps in this procedure. These instructions assume that VSP V1.1.0.0 is running on the ESX/ESXi host. 1. Copy the patch file to the /var/support directory of the SVM (1.1.0.0-ISS-VSP-FP002.sh). 2. On the SVM, from the /var/support directory, run the patch installation script: sh 1.1.0.0-ISS-VSP-FP002.sh The patch installation will conclude with an automatic reboot of the SVM. MD5 OF INCLUDED FILES ===================================================================== e0f770411b8199f03fe35d9f4c964718 1.1.0.0-ISS-VSP-FP002.sh CUSTOMER SUPPORT FOR NORTH AMERICA ===================================================================== IBM Security Solutions provides technical support to customers that are entitled to receive support. The IBM Support Portal -------- Before you contact IBM Security Solutions about a problem, see the IBM Support Portal at http://www.ibm.com/software/support The IBM Software Support Guide -------- If you need to contact technical support, use the methods described in the IBM Software Support Guide at http://www14.software.ibm.com/webapp/set2/sas/f/handbook/home.html The guide provides the following information: - Registration and eligibility requirements for receiving support - Customer support telephone numbers for the country in which you are located - Information you must gather before contacting customer support INFORMATION REQUIRED FOR REPORTING PRODUCT ISSUES ===================================================================== If you encounter a problem with this product, please make notes that are as detailed as possible about the following: - Version of IBM Security Virtual Server Protection for VMware - IBM Security Virtual Server Protection for VMware configuration - Network deployment - Specific failure symptoms or undesirable behavior This information helps us reproduce the problem and resolve it as quickly as possible.