<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<HTML><HEAD>
<META http-equiv=Content-Type content="text/html; charset=us-ascii">
<META content="MSHTML 6.00.2900.2963" name=GENERATOR></HEAD>
<BODY>
<DIV><FONT size=2><SPAN class=914003816-20102006>
<DIV><FONT size=+0><FONT face=Arial size=2><SPAN class=hl>BES 6.0.15.7 is now
available.</SPAN></FONT></FONT></DIV>
<DIV> </DIV>
<DIV><FONT size=+0><FONT face=Arial size=2><SPAN class=hl>The main reason for
the release is that a vulnerability was recently announced in OpenSSL (which is
the core security library that exists in all the BES components). The
vulnerability will potentially affect any BES deployment that is currently using
HTTPS for BES Web Reports and will allow a remote compromise of the server.
There is no known exploit for the other BES components, but BigFix recommends
updating all the components as a safety precaution.</SPAN></FONT></FONT></DIV>
<DIV> </DIV>
<DIV><FONT size=+0><FONT face=Arial size=2><SPAN class=hl>Additionally, the new
BES patch version fixes several minor issues in BES 6.0.15.7. Perhaps the most
notable change is that BES now supports Windows Vista by allowing the BES Client
to show message/restart boxes to the end user (fixing a problem introduced
in the last Vista release candidate). </SPAN></FONT></FONT></DIV>
<DIV><FONT face=Arial></FONT> </DIV>
<DIV><FONT size=+0><FONT face=Arial size=2><SPAN class=hl>All BES 6.0.15.7
components are fully forward and backward compatible with the previous 6.0.x
components. Additional information about the update is available at the bottom
of the page at <A
href="http://support.bigfix.com/bes/changes/fullchangelist-6.0.txt">http://support.bigfix.com/bes/changes/fullchangelist-6.0.txt</A>.
</SPAN></FONT></FONT></DIV>
<DIV><FONT face=Arial></FONT> </DIV>
<DIV><FONT size=+0><FONT face=Arial size=2><SPAN class=hl>This upgrade is
available to all BES customers at no charge. As with all BES upgrades, you
can upgrade any component manually or by using Fixlet messages available on the
BES Support Fixlet site. You will see upgrade Fixlet messages for each BES
component that is not yet upgraded. If you are currently running BES 6.0, you
can upgrade any or all of the components in any order. For those customers
at BES 5.1 or earlier, the upgrade pathway remains the same and you should
upgrade to BES 6.0.15.7 whenever possible to take advantage of the newest
features, optimizations, and bug fixes.</SPAN></FONT></FONT></DIV>
<DIV> </DIV>
<DIV><FONT size=+0><FONT face=Arial size=2><SPAN class=hl>Notes:<BR>- Manual
upgrade instructions are available at <A
href="http://support.bigfix.com/bes/install/upgradebes.html">http://support.bigfix.com/bes/install/upgradebes.html</A>.<BR>-
The documentation for BES 6.0 is available at <A
href="http://support.bigfix.com/product/">http://support.bigfix.com/product/</A>.<BR>-
The BES Relay Install Task for 6.0 will be updated to deploy the newest BES
Relay version.<BR>- If you need access to the previous versions of BES (or the
upgrade/install Fixlets for previous versions), please contact <A
href="mailto:enterprisesupport@bigfix.com">enterprisesupport@bigfix.com</A>.</SPAN></FONT></FONT></DIV>
<DIV> </DIV>
<DIV><FONT size=+0><FONT face=Arial size=2><SPAN class=hl>Thanks,<BR>BigFix
Product Team</SPAN></FONT></FONT></DIV></SPAN></FONT></DIV></BODY></HTML>