[BESAdmin-Announcements] Content Modification in Mobile Device Management - Update for Critical Ruby on Rails Security Vulnerability
Announcements for BES Administrators
besadmin-announcements at bigmail.bigfix.com
Wed Jan 9 18:17:09 PST 2013
IBM has modified content in the Mobile Device Management Fixlet Site for
IBM Tivoli Endpoint Manager.
This release was in response to a publicly disclosed Ruby on Rails
framework critical security vulnerability.
The iOS Management Extender, Trusted Service Provider (TSP) and
Self-Service Portal (SSP) use the Ruby on Rails framework and are affected
by this security vulnerability. All deployed management components should
be updated.
Actions to Take:
- Update deployed iOS Management Extender components using Fixlet 94:
Upgrade Management Extender for Enrollment and Apple iOS
- Update deployed Trusted Service Provider (TSP) components using Fixlet
200: Upgrade Trusted Service Provider
- Update deployed Self-Service Portal (SSP) components using Fixlet 184:
Upgrade Self Service Portal
Published site version:
Mobile Device Management, version 53
Additional links:
Ruby on Rails description of security vulnerabilities:
http://weblog.rubyonrails.org/2013/1/8/Rails-3-2-11-3-1-10-3-0-19-and-2-3-15-have-been-released/
Application Engineering Team
Tivoli Endpoint Manager
IBM Tivoli Software
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://bigmail.bigfix.com/pipermail/besadmin-announcements/attachments/20130109/72ec92e2/attachment.html
More information about the Besadmin-announcements
mailing list