IBM BigFix Compliance 1.8 patch 1 now available

Release Announcements Compliance (Release Announcements)
1

IBM BigFix is pleased to announce the release of IBM BigFix Compliance version 1.8.33, formerly called IBM Endpoint Manager for Security and Compliance Analytics (SCA).

This patch release covers the following fixes and updates:

  • Fixed APARs:
  • APAR IV71727 All of the vulnerabilities within the Analytics console differ from the BigFix console.
  • APAR IV83438 Security APAR, Multiple RubyonRails vulnerabilities in IBM BigFix Compliance
  • APAR IV84159 BigFix 9.2.6 Incorrect view of checks in the Groups view in SCA
  • APAR IV84868 New vulnerability to Windows system checks are not available in SCA
  • APAR IV85040 SCA Import failed due to null values
  • Resolved advisories

  • IBM JRE 8.0.3.0

    • Advisory ID: 5254: IBM SDK, Java Technology Edition Quarterly CPU - Apr 2016 - Includes Oracle Apr 2016 CPU + 3 IBM CVEs
    • Advisory ID: 5154: CODE BLUE [SE-2012-01] Broken security fix in IBM Java

  • InstallAnywhere Hotfix IOJ-1756928

    • Advisory ID: 4782: InstallShield and InstallAnywhere generates installation executables which are vulnerable to an DLL-planting vulnerability

Published site version:
SCM Reporting site, version 99.

Actions to take:
If you are using IBM BigFix Compliance 1.7.55 or earlier versions:

  1. Gather the SCM Reporting site, version 99.
  2. In the Security Configuration domain in the console, open the Configuration Management navigation tree.
  3. Under the IBM BigFix Compliance Install/Upgrade menu tree item, select the IBM BigFix Compliance 1.8 Upgrade Fixlet, which automatically installs and upgrades to the new patch. Follow the Fixlet instructions and take the associated action to upgrade your IBM BigFix Compliance deployment.
  4. Update the data schema. To do this, log in to the IBM BigFix Compliance web interface from the host server and proceed with configuration. Upgrading the data schema is expected and it will take sometime to complete.
    Note: BigFix Compliance version 1.5.78 is the minimum version required to upgrade to BigFix Compliance 1.8.

If you have not yet installed IBM BigFix Compliance or SCA, refer to these steps for first time installations.

  1. In the License Dashboard in the IBM BigFix console, enable the SCM Reporting site.
  2. In the Security Configuration domain in the console, open the Configuration Management navigation tree.
  3. Select the Fixlet named IBM BigFix Compliance 1.8 First-time Install Fixlet under the IBM BigFix Compliance Install/Upgrade menu tree node.
  4. Follow the Fixlet instructions and take the associated action to install your BigFix Compliance deployment.

Reference:
To view the the Release Notes, see https://www.ibm.com/developerworks/community/wikis/home?lang=en#!/wiki/Tivoli%20Endpoint%20Manager/page/SCA%20Release%20Notes.

BigFix Compliance team
IBM BigFix