Is LR 11.5x affected by the OpenSSL vulnerability known as ”Heartbleed”

  • Questions
  • Is LR 11.5x affected by the OpenSSL vulnerability known as ''Heartbleed''
Question ID: 105420
2
0

is there a patch??

Marked as spam
Posted by (Questions: 229, Answers: 18)
Asked on May 20, 2014 3:31 pm
17 views
Answers (1)
2
Private answer

YES! LR 11.52 is affected by and patches LR11.52 patch 2 was released 05-12-2014 to fix the issues.

Account to HP's SECURITY BULLETIN

Document ID: c04236102
Version: 7
HPSBMU02995 rev.7 - HP Software HP Service Manager, Asset Manager, UCMDB Browser, UCMDB Configuration Manager, Executive Scorecard, Server Automation, Diagnostics, LoadRunner, and Performance Center, running OpenSSL, Remote Disclosure of Information

From

HP has made the following software updates available to resolve this vulnerability:

You MUST apply ''LR 11.52 patch 2'' on TOP of LR 11.52 patch 1 and to All LR machines:

LoadRunner Full: = LR_03328

VuGen SA : = LRVUG_00092

Analysis SA: = LRANLSYS_00074

Load Generator SA Windows: = LRLG_00051

Load Generator SA Linux: = LR_03304

MI Listener: = LR_03306

MoFW: = LR_03305

Monitor Probe for Microsoft COM+ Server Components: = LR_03307

These patches are available on the HP self-solve- patches page and for Orasi Support customers from the SupportWeb.orasi.com download page

HP's bulletin applies to each OpenSSL component that is embedded within the HP products listed in the security bulletin. The bulletin does not apply to any other 3rd party application (e.g. operating system, web server, or application server) that may be required to be installed by the customer according instructions in the product install guide.

Marked as spam
Posted by (Questions: 12, Answers: 382)
Answered on May 20, 2014 3:45 pm
EyeOnTesting