[BESAdmin-Announcements] Content Modification in Mobile Device Management - Update for Critical Ruby on Rails Security Vulnerability

[Announcements for BES Administrators]

IBM has modified content in the Mobile Device Management Fixlet Site for 
IBM Tivoli Endpoint Manager.
This release was in response to a publicly disclosed Ruby on Rails 
framework critical security vulnerability.

The iOS Management Extender, Trusted Service Provider (TSP) and 
Self-Service Portal (SSP) use the Ruby on Rails framework and are affected 
by this security vulnerability. All deployed management components should 
be updated.

Actions to Take:
- Update deployed iOS Management Extender components using Fixlet 94: 
Upgrade Management Extender for Enrollment and Apple iOS
- Update deployed Trusted Service Provider (TSP) components using Fixlet 
200: Upgrade Trusted Service Provider 
- Update deployed Self-Service Portal (SSP) components using Fixlet 184: 
Upgrade Self Service Portal 

Published site version:
Mobile Device Management, version 53

Additional links: 
Ruby on Rails description of security vulnerabilities:
http://weblog.rubyonrails.org/2013/1/8/Rails-3-2-11-3-1-10-3-0-19-and-2-3-15-have-been-released/

Application Engineering Team 
Tivoli Endpoint Manager

IBM Tivoli Software
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://bigmail.bigfix.com/pipermail/besadmin-announcements/attachments/20130109/72ec92e2/attachment.html