HCL BigFix is pleased to announce the release of BigFix Compliance Analytics version 2.0 Patch 13
Product : BigFix Compliance
Title : Availability of BigFix Compliance Analytics version 2.0 Patch 13
Published site: SCM Reporting 159
BigFix Compliance Analytics version 2.0 Patch 13 includes enhancements and fixes.
Highlights of this release:
- Upgrade Rails to 6.1.7.9
- Update JRE Version to 8.0.8.40
- Update IBM WebSphere Application Server Liberty version to 25.0.0.2.
Following are the Fixed Jira Tickets in this release.
IBM SDK Java Technology Edition Version updated to 8.0.8.40 to address vulnerabilities: CVE-2024-10917
IBM WebSphere Liberty Package Version updated to 25.0.0.2 to address vulnerabilities: CVE-2024-40094
[BSU-16676] Incomplete compliance import still running but not processing if server restart
[BSU-16409] Issue on the formatting of the CSV report from BigFix Compliance
[BSU-15585] SCA import performance
[BSU-17005] Compliance exceptions error
[BSU-16899] Update fixlet # 1005 - Download NVD CVE Data Files and include nvdcve-1.1-2025.json.gz
[BSU-16557] BigFix Compliance does not logout user when session timeout expires
[BFC-7733] SCM Exceptions API to create/update an Exception
[BFC-7692] Request to enhance subject line in Report Subscriptions
[BFC-7691] Compliance Audit Logging
Updated CSP Headers and Missing Anti-clickjacking Headers.
Actions to take:
Upgrade BigFix Compliance Analytics to version 2.0.13 to take advantage of the fixes.
For first-time installation:
- In the License Overview Dashboard in the BigFix console (BigFix Management domain), enable the SCM Reporting site.
- In the Security Configuration domain in the console, open the Configuration Management navigation tree.
- Select the Fixlet named BigFix Compliance Server 2.0 - First-time Install Fixlet under the BigFix Compliance Install/Upgrade menu tree node.
- Follow the Fixlet instructions and take the associated action to install your BigFix Compliance deployment.
For upgrade installation: Refer to the prescribed upgrade steps for the BigFix Compliance version that you are using.
IMPORTANT: Before you start any upgrade process, perform a server and database backup.
A. For BigFix Compliance Analytics versions 1.9.x, 1.10.x and 2.0.x:
- Make sure that you complete the server and database backup.
- It is recommended to stop the BigFix Compliance Server or at least disable scheduled Data Imports to ensure that Data Import is not in progress during the upgrade.
- In the Security Configuration domain in the console, open the Configuration Management navigation tree.
- Under the BigFix Compliance Install/Upgrade menu tree item, select the BigFix Compliance Server 2.0 - Upgrade Fixlet which automatically installs and upgrades to the new version.
- Follow the Fixlet instructions and take the associated action to upgrade your BigFix Compliance deployment.
- Update the data schema. To do this, log in to the BigFix Compliance web interface from the host server and proceed with configuration. Upgrading the data scheme is expected and it will take some time to complete. NOTE: Automatic upgrade installation only affects installations running under the LocalSystem account. Follow the Fixlet instructions to install the update manually if this fix cannot be applied.
B. For BigFix Compliance Analytics versions before 1.9:
- Manually upgrade to version 1.10.1.48. The 1.10.1.48 installer can be found here http://software.bigfix.com/download/bfc/server/1.10/bfc-server-1.10.1.48.exe
- After manually upgrading to version 1.10.1.48, use the BigFix Compliance Server 2.0 Upgrade Fixlet to upgrade to version 2.0 (See step A).
More information:
- BigFix Compliance Guides: HCL Software 404 Page
- BigFix Forums - Release Announcements Channel: https://forum.bigfix.com/c/release-announcements/compliance
BigFix Compliance team
HCL BigFix
Maybe we can make a dedicated section and in new features put high level description of CVE changes and SSO Banner.
Done
Added this.