ZCM 10.2.2 Security vulnerability with Imaging
This document (5070351) is provided subject to the disclaimer at the end of this document.
patches this patch supersedes
patches that supersede this patch
| Product | Status | Next Superceded By | Last Superceded By |
|---|---|---|---|
| Novell ZENworks Configuration Management 10.2.2 | Obsolete | ZCM 10.3.0a upgrade manual import file | ZCM 10.3.0a upgrade manual import file |
patch attributes
document
abstract
Novell ZENworks Configuration Management Preboot Service Remote Code Execution Vulnerability
details
Overview:
This patch fixes a security vulnerability that has been identified with the "Novell ZENworks Configuration Management Preboot Service Remote Code Execution Vulnerability"
System Requirements:
ZCM 10.2.2 running on a Windows or Linux Server
Installation:
Linux Server:
1. Backup your "novell-pbserv.conf" from "/etc/opt/novell/zenworks/preboot" before following the below instructions.
2. Stop the service "Novell ZENworks Preboot Service" by typing "/etc/init.d/novell-pbserv stop" in the server.
3. From Console, go to directory "opt/novell/zenworks/install/downloads/rpm".
4. In the command prompt type: "rpm -e novell-zenworks-zmgservices-10.2.2-44220.rpm" to uninstall the service.
5. Back up the old rpm "novell-zenworks-zmgservices-10.2.2-44220.rpm".
6. Copy the zmgservices rpm present in the patch to "opt/novell/zenworks/install/dowloads/rpm" folder.
7. Now install the rpm from the command prompt with command: "rpm -ivh novell-zenworks-zmgservices-10.2.2-53626.rpm".
8. Now Manually merge the old "novell-pbserv.conf" file (which was backedup) to the new conf file in the location "/etc/opt/novell/zenworks/preboot" [Required if conf file was customized after installation]
9. Start the "Novell ZENworks Preboot Service" from the console by typing "/etc/init.d/novell-pbserv start".
Windows Server:
1. Backup your "novell-pbserv.conf" from "'InstallationDirectory of ZENworks/novell/zenworks/conf/preboot" before following the below instructions.
2. Stop the service "Novell ZENworks Preboot Service" from services.msc in the server.
3. In the command prompt type: "msiexec /uninstall
{InstallationFolder of zenworks}/Novell/Zenworks/install/dowloads/msi/novell-zenworks-zmgservices-10.2.2.44220.msi" to uninstall the current service.
4. Back up the old "novell-zenworks-zmgservices-10.2.2.44220.msi".
5. Copy the zmgservices MSI present in the patch to {InstallationFolder of zenworks}/Novell/Zenworks/install/dowloads/msi folder.
6. Now install the msi from the command prompt with command: "msiexec /install
{InstallationFolder of ZENworks}/Novell/Zenworks/install/dowloads/msi/novell-zenworks-zmgservices-10.2.2.53626.msi" TARGETDIR="Installation Directory of ZENworks"
7. Now Manually merge the old "novell-pbserv.conf" file(which was backedup) to the new conf file in the location "'InstallationDirectory of ZENworks/novell/zenworks/conf/preboot" [Required if conf file was customized after installation]
6. Start the "Novell ZENworks Preboot Service" now.
Known Problems and Limitations:
None
security fixes
CDI-CAN-679
change log
Modified the abstract as well as the Overview.
file contents
| Files Included | Size | Date |
|---|---|---|
| ZCM_10_2_2_FTF_20100309_586503.zip | 508.3 KB (520516) | 2010-03-11 01:48:30 |
| readme_5070351.html | N/A | 2011-08-15 07:44:56 |
disclaimer
The Origin of this information may be internal or external to Novell. Novell makes all reasonable efforts to verify this information. However, the information provided in this document is for your information only. Novell makes no explicit or implied claims to the validity of this information. Any trademarks referenced in this document are the property of their respective owners. Consult your product manuals for complete trademark information.
Novell is a registered trademark of Novell, Inc. in the United States and other countries. SUSE is a registered trademark of SUSE Linux AG, a Novell business. *All third-party trademarks are the property of their respective owners.
© 2007 Novell, Inc. All Rights Reserved.