After ITM 630 FP7 SP7 is installed, a Hub will be vulnerable to a crash if LDAP authentication is enabled at the Hub.

Flashes (Alerts)

Abstract

SP7 switched the LDAP client used by the Hub from Tivoli Directory Server (TDS) v630 to Security Directory Server (SDS) v64.
After SP7 is installed, a Hub is vulnerable to a crash if LDAP authentication is enabled at the Hub. This issue seems to occur only if multiple (5 or more), LDAP validations occur concurrently.

Content

The vulnerability exists on all platforms.

APAR IJ32650 is opened to address the exposure.

The following SP7-based interim fix has been made available prior to SP8.

6.3.0.7-TIV-ITM-IF0009-IJ32650

(A link to this flash is also be posted in the "Known Issues" section of the SP7 "ReadMe".)

[{"Type":"SW","Line of Business":{"code":"LOB45","label":"Automation"},"Business Unit":{"code":"BU053","label":"Cloud & Data Platform"},"Product":{"code":"SSTFXA","label":"Tivoli Monitoring"},"ARM Category":[{"code":"a8m500000008bqBAAQ","label":"TEMS Category->Security"}],"Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"6.3.0"}]

Tips

After ITM 630 FP7 SP7 is installed, a Hub will be vulnerable to a crash if LDAP authentication is enabled at the Hub.

Flashes (Alerts)

Abstract

Content

Was this topic helpful?

Document Information

UID

Share your feedback

Need support?