[BESAdmin-Announcements] Availability of BigFix Compliance Analytics version 2.0 Patch 13

Wed Apr 30 09:56:36 PDT 2025

HCL BigFix is pleased to announce the release of BigFix Compliance
Analytics version 2.0 Patch 13

*Product*: BigFix Compliance

*Title*: Availability of BigFix Compliance Analytics version 2.0 Patch 13

*Published site:* SCM Reporting 159

BigFix Compliance Analytics version 2.0 Patch 13 includes enhancements and
fixes.[AZ1] <#_msocom_1> [HRNP2] <#_msocom_2>

Highlights of this release:

·        Upgrade Rails to 6.1.7.9

·        Update JRE Version to 8.0.8.40

·        Update IBM WebSphere Application Server Liberty version to
25.0.0.2.

Following are the Fixed Jira Tickets in this release.

IBM SDK Java Technology Edition Version updated to 8.0.8.40 to address
vulnerabilities: CVE-2024-10917

IBM WebSphere Liberty Package Version updated to 25.0.0.2 to address
vulnerabilities: CVE-2024-40094

[BSU-16676] Incomplete compliance import still running but not processing
if server restart

[BSU-16409] Issue on the formatting of the CSV report from BigFix Compliance

[BSU-15585] SCA import performance

[BSU-17005] Compliance exceptions error

[BSU-16899] Update fixlet # 1005 - Download NVD CVE Data Files and include
nvdcve-1.1-2025.json.gz

[BSU-16557] BigFix Compliance does not logout user when session timeout
expires

[BFC-7733] SCM Exceptions API to create/update an Exception

[BFC-7692] Request to enhance subject line in Report Subscriptions

[BFC-7691] Compliance Audit Logging

Updated CSP Headers and Missing Anti-clickjacking Headers.

Actions to take:

1.      Upgrade BigFix Compliance Analytics to version 2.0.13 to take
advantage of the fixes.

For first-time installation:

1.      In the License Overview Dashboard in the BigFix console (BigFix
Management domain), enable the SCM Reporting site.

2.      In the Security Configuration domain in the console, open the
Configuration Management navigation tree.

3.      Select the Fixlet named BigFix Compliance Server 2.0 - First-time
Install Fixlet under the BigFix Compliance Install/Upgrade menu tree node.

4.      Follow the Fixlet instructions and take the associated action to
install your BigFix Compliance deployment.

For upgrade installation: Refer to the prescribed upgrade steps for the
BigFix Compliance version that you are using.

IMPORTANT: Before you start any upgrade process, perform a server and
database backup.

A. For BigFix Compliance Analytics versions 1.9.x, 1.10.x and 2.0.x:

1.      Make sure that you complete the server and database backup.

2.      It is recommended to stop the BigFix Compliance Server or at least
disable scheduled Data Imports to ensure that Data Import is not in
progress during the upgrade.[AZ3] <#_msocom_3>

3.      In the Security Configuration domain in the console, open the
Configuration Management navigation tree.

4.      Under the BigFix Compliance Install/Upgrade menu tree item, select
the BigFix Compliance Server 2.0 - Upgrade Fixlet which automatically
installs and upgrades to the new version.

5.      Follow the Fixlet instructions and take the associated action to
upgrade your BigFix Compliance deployment.

6.      Update the data schema. To do this, log in to the BigFix Compliance
web interface from the host server and proceed with configuration.
Upgrading the data scheme is expected and it will take some time to
complete. NOTE: Automatic upgrade installation only affects installations
running under the LocalSystem account. Follow the Fixlet instructions to
install the update manually if this fix cannot be applied.

B. For BigFix Compliance Analytics versions before 1.9:

1.      Manually upgrade to version 1.10.1.48. The 1.10.1.48 installer can
be found here
http://software.bigfix.com/download/bfc/server/1.10/bfc-server-1.10.1.48.exe

2.      After manually upgrading to version 1.10.1.48, use the BigFix
Compliance Server 2.0 Upgrade Fixlet to upgrade to version 2.0 (See step A).

More information:

·        BigFix Compliance Guides:
https://help.hcltechsw.com/bigfix/10.0/compliance/analytics.html

·        BigFix Forums - Release Announcements Channel:
https://forum.bigfix.com/c/release-announcements/compliance

BigFix Compliance team
HCL BigFix
------------------------------

Maybe we can make a dedicated section and in new features put high level
description of CVE changes and SSO Banner. [AZ1] <#_msoanchor_1>

 [HRNP2] <#_msoanchor_2>Done

 [AZ3] <#_msoanchor_3>Added this.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://bigmail.bigfix.com/pipermail/besadmin-announcements/attachments/20250430/7927f5ed/attachment.html>