Proventia Network Intrusion Prevention System 4.6.2.0-ISS-ProvG-AllModels-Hotfix-FP0021 README ======================================================================== Readme file for: IBM Proventia Network Intrusion Prevention System Firmware 4.6.2.0 AllModels-Hotfix Fixpack 0021 Product/Component Release: 4.6.2.0 Update Name: 4.6.2.0-ISS-ProvG-AllModels-Hotfix-FP0021 PatchID: 94726 Platforms: Proventia G Publication date: April 28, 2017 Last Modification date: April 28, 2017 Copyright IBM Corporation 2017. All rights reserved worldwide. Please read this document in its entirety. ======================================================================== CONTENTS ======================================================================== * Description * Compatibility and Prerequisites * Known Issues * Installation information * Files included in this update * Contacting IBM Support * Copyright and trademark ======================================================================== DESCRIPTION ======================================================================== - Updates expired Java applet and other dependent jars on LMI with new jars whose certificate will expire on 2020. - Email reponse may cause a crash in some odd occassions due to incorrect use of string conversion function. Previous fixes: - Fixes iss-secmgr memory leak. - Solves issue where security policy takes forever to load. - Prevent rsyslogd from hanging by using linkedlist queue for remote syslog forwarding. - Allow leef logging to appear locally wihtout debug being enabled, and when leef policy is enabled. Tuning parameter crm.leef.log.asinfo=true - Delivers security fixes to date. Please visit http://www-947.ibm.com/support/entry/portal/support to view security bulletins for this product. - Updates MSL 5.9.2.0.1 and GSKit 8.0.50.57 - Fixes an issue with the accuracy of pcaps generated using the log evidence. - Updates MSL to version 5.9.0.3.1 - Only log a logical_drive_status set to unknown as an error when it has tried 5 times (wait 1 second per try) - Don't change GX status to unhealthy until a percentage of errors have occurred. Item tunable by spa.allowsperrcomm.percent an integer from 0-100 depicting percentage of heartbeat value times 2. Default value for tuning parameter is 0. - Updates gskit to version 8.0.50.41 - Dump event details when event serialization fails - Prevent erroneous netengine restart when the packet thread is in housekeeping - Increase the time between detection of packet process thread hung and restart of netengine to have a better chance to getting a stack trace. - Adds error detection logic to catch and correct errors writing ips events to the local database under certain conditions. - Upgrades issMSL to version 5.9.0.1-3. - Fixes the issue with the health check of Snort process where frequent detaches due to heavy traffic load spits out snort not running messages whereas the LMI indicates Snort as running. - Fixes an issue with the loading of the Open Signature Policy that would cause it to be loaded out of order. - Fixes an issue in FW 4.6.2 where GX fails to post events to SP. This fix uses non-blocking version of curl to avoid indefinite block in the read call. ======================================================================== COMPATIBILITY AND PREREQUISITES ======================================================================== This update is only compatible with the IBM Proventia Network Intrusion Prevention System firmware 4.6.2.0. It can be applied on top of any previously installed patches. MD5 checksum calculation: - 7d5fe4baef6800776f599797ec33cd5a 4.6.2.0-ISS-ProvG-AllModels-Hotfix-FP0021.tgz ======================================================================== KNOWN ISSUES ======================================================================== There are no known issues with this patch. ======================================================================== INSTALLATION INFORMATION ======================================================================== To copy the update to the Proventia appliance: 1) Using an SCP tool such as WinSCP, copy 4.6.2.0-ISS-ProvG-AllModels-Hotfix-FP0021.tgz to the "/root" folder on your Proventia G or GX appliance. 2) Use an SSH client such as PuTTY to log into your Proventia G or GX appliance as 'root'. 3) Execute the following commands: tar -xvzf 4.6.2.0-ISS-ProvG-AllModels-Hotfix-FP0021.tgz cd 4.6.2.0-ISS-ProvG-AllModels-Hotfix-FP0021 To install the update, execute ./install.sh To uninstall the update, execute ./install.sh -r ======================================================================== FILES INCLUDED IN THIS UPDATE ======================================================================== 4.6.2.0-ISS-ProvG-AllModels-Hotfix-FP0021.zip | |--4.6.2.0-ISS-ProvG-AllModels-Hotfix-FP0021.tgz | | | |--gx6/ | |--gx7/ | |--install.sh | |--iss-csf-new.rpm | |--iss-csf-new.sigtgz | |--iss-csf-original.rpm | |--iss-csf-original.sigtgz | |--iss-glmi-new.rpm | |--iss-glmi-original.rpm | |--iss-log-utils-new.rpm | |--iss-log-utils-original.rpm | |--iss-netengine-new.rpm | |--iss-netengine-new.sigtgz | |--iss-netengine-original.rpm | |--iss-netengine-original.sigtgz | |--iss-ppd-new.rpm | |--iss-ppd-new.sigtgz | |--iss-ppd-original.rpm | |--iss-ppd-original.sigtgz | |--iss-proventia-setup-new.rpm | |--iss-proventia-setup-original.rpm | |--iss-proventiag-crm-new.rpm | |--iss-proventiag-crm-new.sigtgz | |--iss-proventiag-crm-original.rpm | |--iss-proventiag-crm-original.sigtgz | |--iss-proventiag-spa-new.rpm | |--iss-proventiag-spa-new.sigtgz | |--iss-proventiag-spa-original.rpm | |--iss-proventiag-spa-original.sigtgz | |--iss-provg-tools-new.rpm | |--iss-provg-tools-original.rpm | |--iss-secmgr-new.rpm | |--iss-secmgr-new.sigtgz | |--iss-secmgr-original.rpm | |--iss-secmgr-original.sigtgz | |--iss-snep-new.rpm | |--iss-snep-new.sigtgz | |--iss-snep-original.rpm | |--iss-snep-original.sigtgz | |--iss-unified-lmi-new.rpm | |--iss-unified-lmi-original.rpm | |--iss-watchdog-new.rpm | |--iss-watchdog-original.rpm | |--issMSL-new.rpm | |--issMSL-new.sigtgz | |--issMSL-original.rpm | |--issMSL-original.sigtgz | |--patch94726.info | |--gx7/iss-netengine-new.rpm | |--gx7/iss-netengine-new.sigtgz | |--gx7/iss-netengine-original.rpm | |--gx7/iss-netengine-original.sigtgz | |--gx7/iss-proventiag-crm-new.rpm | |--gx7/iss-proventiag-crm-new.sigtgz | |--gx7/iss-proventiag-crm-original.rpm | |--gx7/iss-proventiag-crm-original.sigtgz | |--gx7/iss-secmgr-new.rpm | |--gx7/iss-secmgr-new.sigtgz | |--gx7/iss-secmgr-original.rpm | |--gx7/iss-secmgr-original.sigtgz | |--gx7/iss-snep-new.rpm | |--gx7/iss-snep-new.sigtgz | |--gx7/iss-snep-original.rpm | |--gx7/iss-snep-original.sigtgz | |--gx6/iss-netengine-new.rpm | |--gx6/iss-netengine-new.sigtgz | |--gx6/iss-netengine-original.rpm | |--gx6/iss-netengine-original.sigtgz | |--gx6/iss-proventiag-crm-new.rpm | |--gx6/iss-proventiag-crm-new.sigtgz | |--gx6/iss-proventiag-crm-original.rpm | |--gx6/iss-proventiag-crm-original.sigtgz | |--gx6/iss-secmgr-new.rpm | |--gx6/iss-secmgr-new.sigtgz | |--gx6/iss-secmgr-original.rpm | |--gx6/iss-secmgr-original.sigtgz | |--gx6/iss-snep-new.rpm | |--gx6/iss-snep-new.sigtgz | |--gx6/iss-snep-original.rpm | |--gx6/iss-snep-original.sigtgz | |--4.6.2.0-ISS-ProvG-AllModels-Hotfix-FP0021-Readme.txt ======================================================================== CONTACTING IBM SUPPORT ======================================================================== To Contact IBM Support Worldwide Phone: Call IBM Support by selecting phone number from this location: http://www.ibm.com/planetwide When prompted for type of support, select option 2 for Software Support You will need to provide your IBM Customer Number (ICN) Electronically: Go to http://www.ibm.com/legal/copytrade.shtml and open a new service request =========================================================================== COPYRIGHT AND TRADEMARK =========================================================================== Copyright and trademark information http://www.ibm.com/legal/copytrade.shtml Notices INTERNATIONAL BUSINESS MACHINES CORPORATION PROVIDES THIS PUBLICATION "AS IS" WITHOUT WARRANTY OF ANY KIND, EITHER EXPRESS OR IMPLIED, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF NON-INFRINGEMENT, MERCHANTABILITY OR FITNESS FOR A PARTICULAR PURPOSE. Some jurisdictions do not allow disclaimer of express or implied warranties in certain transactions, therefore, this statement may not apply to you. This information could include technical inaccuracies or typographical errors. Changes are periodically made to the information herein; these changes will be incorporated in new editions of the publication. IBM may make improvements and/or changes in the product(s) and/or the program(s) described in this publication at any time without notice. Microsoft, Windows, and Windows Server are trademarks of Microsoft Corporation in the United States, other countries, or both. Intel, Intel logo, Intel Inside, Intel Inside logo, Intel Centrino, Intel Centrino logo, Celeron, Intel Xeon, Intel SpeedStep, Itanium, and Pentium are trademarks or registered trademarks of Intel Corporation or its subsidiaries in the United States and other countries. Linux is the registered trademark of Linus Torvalds in the U.S. and other countries. Other company, product, or service names may be trademarks or service marks of others. *THIRD-PARTY LICENSE TERMS AND CONDITIONS, NOTICES AND INFORMATION* Please see the license agreement for this product for details concerning terms and conditions applicable to third party software code included in this product, and for certain notices and other information IBM must provide to you under its license to certain software code. Notwithstanding the terms and conditions of any other agreement you may have with IBM or any of its related or affiliated entities (collectively "IBM"), the third party software code identified below are "Excluded Components" and are subject to the following terms and conditions: * the Excluded Components are provided on an "AS IS" basis * IBM DISCLAIMS ANY AND ALL EXPRESS AND IMPLIED WARRANTIES AND CONDITIONS WITH RESPECT TO THE EXCLUDED COMPONENTS, INCLUDING, BUT NOT LIMITED TO, THE WARRANTY OF NON-INFRINGEMENT OR INTERFERENCE AND THE IMPLIED WARRANTIES AND CONDITIONS OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE * IBM will not be liable to you or indemnify you for any claims related to the Excluded Components * IBM will not be liable for any direct, indirect, incidental, special, exemplary, punitive or consequential damages with respect to the Excluded Components. ===========================================================================