TIBCO LogLogic 5.6.3 Hotfix HF-LLCE-1755 is now available

Products	Versions
TIBCO LogLogic Enterprise Virtual Appliance	-
Not Applicable	-

Description

Description:
TIBCO LogLogic 5.6.3 Hotfix HF-LLCE-1755 is now available. This hotfix can be downloaded from the TIBCO Support Download site https://mft.tibco.com

Listed below is a summary of the issues that have been fixed in this release:

LLCE-1755:

5.6.3 package updates v1 non-cumulative HF for package updates

The following security issues are resolved with listed packages or newer ones:

-bind(ELSA-2015-2655): CVE-2015-8000 by bind-libs-9.8.2-0.37.rc1.el6_7.5

and bind-utils-9.8.2-0.37.rc1.el6_7.5

-bind(ELSA-2016-0073): CVE-2015-8704 by bind-libs-9.8.2-0.37.rc1.el6_7.6 and

bind-utils-9.8.2-0.37.rc1.el6_7.6

-bind(ELSA-2016-0459): CVE-2016-1285,CVE-2016-1286 by

bind-libs-9.8.2-0.37.rc1.el6_7.7 and bind-utils-9.8.2-0.37.rc1.el6_7.7

-glibc(ELSA-2015-0863): CVE-2013-7423,CVE-2015-1781 by glibc-2.12-1.149.el6_6.7

and glibc-common-2.12-1.149.el6_6.7

-glibc(ELSA-2016-0175): CVE-2015-7547 by glibc-2.12-1.166.el6_7.7 and

glibc-common-2.12-1.166.el6_7.7

-libxml2(ELSA-2015-2549): CVE-2015-5312,CVE-2015-7497,CVE-2015-7498,

CVE-2015-7499,CVE-2015-7500,CVE-2015-7941,CVE-2015-7942,CVE-2015-8241,

CVE-2015-8242,CVE-2015-8317,CVE-2015-8710 by libxml2-2.7.6-20.0.1.el6_7.1 and

libxml2-python-2.7.6-20.0.1.el6_7.1

-libpng(ELSA-2015-2594): CVE-2015-7981,CVE-2015-8126,CVE-2015-8472 by

libpng-1.2.49-2.el6_7

-openssl(ELSA-2016-0301)(DROWN): CVE-2015-3197,CVE-2016-0702,CVE-2016-0705,

CVE-2016-0797,CVE-2016-0800 by openssl-1.0.1e-42.el6_7.4

-openssl(ELSA-2015-2617): CVE-2015-3194,CVE-2015-3195,CVE-2015-3196 by

openssl-1.0.1e-42.el6_7.1

-openssl(ELSA-2016-0008)(SLOTH): CVE-2015-7575 by openssl-1.0.1e-42.el6_7.2

-openssl098e(ELSA-2016-0372)(DROWN):CVE-2015-0293,CVE-2015-3197,CVE-2016-0703,

CVE-2016-0704,CVE-2016-0800 by openssl098e-0.9.8e-20.0.1.el6_7.1

-openssh(ELSA-2016-0466):CVE-2015-5600,CVE-2016-3115 by openssh-5.3p1-114.el6_7,

openssh-clients-5.3p1-114.el6_7 and openssh-server-5.3p1-114.el6_7

-openldap(ELSA-2015-1840): CVE-2015-6908 by openldap-2.4.40-6.el6_7 and

openldap-clients-2.4.40-6.el6_7

-sssd(ELSA-2015-2019): CVE-2015-5292 by libipa_hbac-1.12.4-47.el6_7.4,

libsss_idmap-1.12.4-47.el6_7.4,sssd-1.12.4-47.el6_7.4

sssd-client-1.12.4-47.el6_7.4 and sssd-tools-1.12.4-47.el6_7.4

-libreport(ELSA-2015-2504): CVE-2015-5302 by libreport-2.0.9-25.0.1.el6_7,

libreport-cli-2.0.9-25.0.1.el6_7,libreport-compat-2.0.9-25.0.1.el6_7,

libreport-filesystem-2.0.9-25.0.1.el6_7,

libreport-plugin-kerneloops-2.0.9-25.0.1.el6_7,

libreport-plugin-logger-2.0.9-25.0.1.el6_7,

libreport-plugin-mailx-2.0.9-25.0.1.el6_7,

libreport-plugin-reportuploader-2.0.9-25.0.1.el6_7,

libreport-plugin-ureport-2.0.9-25.0.1.el6_7

and libreport-python-2.0.9-25.0.1.el6_7

-rpcbind(ELSA-2016-0005): CVE-2015-7236 by rpcbind-0.2.0-11.el6_7

-nss(ELSA-2016-0007)(SLOTH): CVE-2015-7575 by nss-3.19.1-8.0.1.el6_7,

nss-sysinit-3.19.1-8.0.1.el6_7 and nss-tools-3.19.1-8.0.1.el6_7

-samba4(ELSA-2016-0010): CVE-2015-5252,CVE-2015-5296,CVE-2015-5299,

CVE-2015-5330,CVE-2015-7540 by samba4-libs-4.0.0-67.el6_7.rc4

-samba4(ELSA-2016-0449): CVE-2015-7560 by samba4-libs-4.0.0-68.el6_7.rc4

-samba(ELSA-2016-0011): CVE-2015-5252,CVE-2015-5296,CVE-2015-5299 by

samba-client-3.6.23-24.0.1.el6_7,samba-common-3.6.23-24.0.1.el6_7,

samba-winbind-3.6.23-24.0.1.el6_7 and samba-winbind-clients-3.6.23-24.0.1.el6_7

-samba(ELSA-2016-0448): CVE-2015-7560 by samba-client-3.6.23-25.0.1.el6_7,

samba-common-3.6.23-25.0.1.el6_7,samba-winbind-3.6.23-25.0.1.el6_7 and

samba-winbind-clients-3.6.23-25.0.1.el6_7

-samba(ELSA-2016-0611)(Badlock): CVE-2015-5370,CVE-2016-2110,CVE-2016-2111,

CVE-2016-2112,CVE-2016-2115,CVE-2016-2118 by samba-client-3.6.23-30.0.1.el6_7,

samba-common-3.6.23-30.0.1.el6_7,samba-winbind-3.6.23-30.0.1.el6_7 and

samba-winbind-clients-3.6.23-30.0.1.el6_7

-samba/samba4(ELSA-2016-0612)(Badlock): CVE-2015-5370,CVE-2016-2110,

CVE-2016-2111,CVE-2016-2112,CVE-2016-2113,CVE-2016-2114,CVE-2016-2115,

CVE-2016-2118 by libldb-1.1.25-2.el6_7,libtalloc-2.1.5-1.el6_7,

libtdb-1.3.8-1.el6_7,libtevent-0.9.26-2.el6_7,pytalloc-2.1.5-1.el6_7 and

samba4-libs-4.2.10-6.el6_7

-gnutls(ELSA-2016-0012)(SLOTH): CVE-2015-7575 by gnutls-2.8.5-19.el6_7

-ntp(ELSA-2016-0063): CVE-2015-8138 by ntp-4.2.6p5-5.el6_7.4 and

ntpdate-4.2.6p5-5.el6_7.4

-nss-util(ELSA-2016-0370): CVE-2016-1950 by nss-util-3.19.1-5.el6_7

-libssh2(ELSA-2016-0428):CVE-2016-0787 by libssh2-1.4.2-2.el6_7.1

-krb5(ELSA-2016-0493):CVE-2015-8629,CVE-2015-8631 by krb5-libs-1.10.3-42z1.el6_7

-nspr/nss/nss-util(ELSA-2016-0591):CVE-2016-1978,CVE-2016-1979 by

nspr-4.11.0-0.1.el6_7,nss-3.21.0-0.3.0.1.el6_7,nss-sysinit-3.21.0-0.3.0.1.el6_7,

nss-tools-3.21.0-0.3.0.1.el6_7 and nss-util-3.21.0-0.3.el6_7

***NOTE***

This is a non-cumulative hotfix to address specific issues in LMI 5.6.3. It has no

dependencies on any other hotfixes and can be used in conjunction with any other

hotfixes.

Environment

Product: TIBCO LogLogic® Enterprise Virtual Appliance Version: 5.6.3 OS: All Supported Operating Systems -------------------- Product: TIBCO LogLogic® LMI Appliance Version: 5.6.3 OS: All Supported Operating Systems --------------------

Issue/Introduction

TIBCO LogLogic 5.6.3 Hotfix HF-LLCE-1755 is now available

Welcome to "KB Articles"