IBM Proventia Network Multi-Function Security (MFS)
20140930_ProvM_4_6_BASH_Hotfix_1 README
=====================================================================
Readme file for: IBM Proventia Network Multi-Function Security (MFS)
                 Firmware 4.6.0.0 Bash Hotfix 1
Product/Component Release: 4.6.0.0
Update Name: 20140930_ProvM_4_6_BASH_Hotfix_1 
Platforms: Proventia M
Publication date: September 30, 2014
Last Modifcation date: September 30 2014

@Copyright IBM Corporation 2014.
All rights reserved worldwide.

PLEASE READ THIS DOCUMENT IN ITS ENTIRETY.

=====================================================================
CONTENTS
=====================================================================

- Description
- Compatibility
- ApplyIng the Update
- Files Included
- Contacting IBM Support
- Information Required for Reporting Product Issues
- Copyright and Trademark


DESCRIPTION 
=====================================================================

Go through Applying the update section as installation instructions have
changed.

This patch is intended to deliver bash fixes to date. This
patch provides fixes for the below

bash:
	CVE-2014-6271, CVE-2014-7169, CVE-2014-7186, CVE-2014-7187,
	CVE-2014-6277, CVE-2014-6278

MD5 checksum calculation:
 - a38b50cc16587e4807bc30a7162e29f8  20140930_ProvM_4_6_BASH_Hotfix_1-Install.pkg
 - a8dfa6911b9524689e5869fbacbb2dd7  20140925_ProvM_4_6_BASH_Hotfix_1-Uninstall.pkg


COMPATIBILITY
=====================================================================
This hotfix is compatible only with Proventia Network Multi-Function
Security (MFS) Firmware 4.6.

This hotfix can be applied on top of any previous hotfixes.


APPLYING THE UPDATE
=====================================================================
Please perform the following steps to apply this hotfix:

Install new fix:
1) cd into Uninstall directory inside 20140930_ProvM_4_6_BASH_Hotfix_1.zip
2) Using an SCP tool such as WinSCP, copy
   20140930_ProvM_4_6_BASH_Hotfix_1-Install.pkg to the "/root/" folder on
your
   Proventia M or MX appliance.
2) Use an SSH client such as PuTTY to log into your Proventia M or MX
   appliance as 'root'.
3) Execute the following command:
   hotfix-install 20140930_ProvM_4_6_BASH_Hotfix_1-Install.pkg

Uninstall new fix:
1) cd into Uninstall directory inside 20140925_ProvM_4_6_BASH_Hotfix_1.zip
2) Using an SCP tool such as WinSCP, copy
   20140925_ProvM_4_6_BASH_Hotfix_1-Uninstall.pkg to the "/root/" folder on your
   Proventia M or MX appliance.
2) Use an SSH client such as PuTTY to log into your Proventia M or MX
   appliance as 'root'.
3) Execute the following command:
   hotfix-install 20140925_ProvM_4_6_BASH_Hotfix_1-Uninstall.pkg


FILES INCLUDED
=====================================================================
20140930_ProvM_4_6_BASH_Hotfix_1.zip
|
|--Install
|  |
|  |-- 20140930_ProvM_4_6_BASH_Hotfix_1-Install.pkg
|
|--Uninstall
|  |
|  |--20140925_ProvM_4_6_BASH_Hotfix_1-Uninstall.pkg 
|
|--20140930_ProvM_4_6_BASH_Hotfix_1_Readme.txt


========================================================================
CONTACTING IBM SUPPORT
========================================================================

To Contact IBM Support Worldwide

Phone:
Call IBM Support by selecting phone number from this location:
http://www.ibm.com/planetwide
When prompted for type of support, select option 2 for Software Support
You will need to provide your IBM Customer Number (ICN)

Electronically:
Go to http://www.ibm.com/legal/copytrade.shtml
<https://www.ibm.com/support/servicerequest>
and open a new service request


INFORMATION REQUIRED FOR REPORTING PRODUCT ISSUES
=====================================================================
If you encounter a problem with this product, please make notes that
are as detailed as possible about the following:

 - Build versions
 - Sensor and console host configurations
 - Network deployment
 - Network traffic rates
 - Network traffic characteristics
 - Specific failure symptoms or undesirable behavior

This information helps us reproduce the problem and resolve it as
quickly as possible. 


COPYRIGHT AND TRADEMARK
=====================================================================
Copyright and trademark information
http://www.ibm.com/legal/copytrade.shtml

Notices

INTERNATIONAL BUSINESS MACHINES CORPORATION PROVIDES THIS PUBLICATION
"AS IS" WITHOUT WARRANTY OF ANY KIND, EITHER EXPRESS OR IMPLIED,
INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF
NON-INFRINGEMENT, MERCHANTABILITY OR FITNESS FOR A PARTICULAR PURPOSE.
Some jurisdictions do not allow disclaimer of express or implied
warranties in certain transactions, therefore, this statement may not
apply to you.

This information could include technical inaccuracies or typographical
errors. Changes are periodically made to the information herein; these
changes will be incorporated in new editions of the publication. IBM
may make improvements and/or changes in the product(s) and/or the
program(s) described in this publication at any time without notice.

Microsoft, Windows, and Windows Server are trademarks of Microsoft
Corporation in the United States, other countries, or both.

Intel, Intel logo, Intel Inside, Intel Inside logo, Intel Centrino,
Intel Centrino logo, Celeron, Intel Xeon, Intel SpeedStep, Itanium,
and Pentium are trademarks or registered trademarks of Intel
Corporation or its subsidiaries in the United States and other
countries.

Linux is the registered trademark of Linus Torvalds in the U.S. and
other countries.

Other company, product, or service names may be trademarks or service
marks of others.

*THIRD-PARTY LICENSE TERMS AND CONDITIONS, NOTICES AND INFORMATION*

Please see the license agreement for this product for details
concerning terms and conditions applicable to third party software
code included in this product, and for certain notices and other
information IBM must provide to you under its license to certain
software code.

Notwithstanding the terms and conditions of any other agreement you
may have with IBM or any of its related or affiliated entities
(collectively "IBM"), the third party software code identified below
are "Excluded Components" and are subject to the following terms and
conditions:

    * the Excluded Components are provided on an "AS IS" basis
    * IBM DISCLAIMS ANY AND ALL EXPRESS AND IMPLIED WARRANTIES AND
      CONDITIONS WITH RESPECT TO THE EXCLUDED COMPONENTS, INCLUDING,
      BUT NOT LIMITED TO, THE WARRANTY OF NON-INFRINGEMENT OR
      INTERFERENCE AND THE IMPLIED WARRANTIES AND CONDITIONS OF
      MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
    * IBM will not be liable to you or indemnify you for any claims
      related to the Excluded Components
    * IBM will not be liable for any direct, indirect, incidental,
      special, exemplary, punitive or consequential damages with
      respect to the Excluded Components.

=====================================================================
=====================================================================