Is LR 12 affected by the OpenSSL vulnerability known as ”Heartbleed”

  • Questions
  • Is LR 12 affected by the OpenSSL vulnerability known as ''Heartbleed''
Question ID: 105421
2
0

patches?

Marked as spam
Posted by (Questions: 229, Answers: 18)
Asked on May 20, 2014 3:39 pm
21 views
Answers (1)
3
Private answer

YES! LR 12 is affected and patch LR12 patch 1 was released 05-12-2014

Account to HP's SECURITY BULLETIN

Document ID: c04236102
Version: 7
HPSBMU02995 rev.7 - HP Software HP Service Manager, Asset Manager, UCMDB Browser, UCMDB Configuration Manager, Executive Scorecard, Server Automation, Diagnostics, LoadRunner, and Performance Center, running OpenSSL, Remote Disclosure of Information

From

HP has made the following software updates available to resolve this vulnerability.
You MUST apply ''LR 12 patch 1'' to All LR 12 machines:

LoadRunner Full: = LR_03329

VuGen Standalone (SA): = LRVUG_00094

Analysis SA: = LRANLSYS_00075

Load Generator SA for Windows: = LRLG_00052

Load Generator SA for Linux: = LR_03333

MI Listener: = LR_03316

MoFW: = LR_03315

VS2010 IDE Addin: = LR_03332

These patches are now available on the HP self-solve- patches page and For Orasi Support customers from the SupportWeb.orasi.com download page

HP's bulletin applies to each OpenSSL component that is embedded within the HP products listed in the security bulletin. The bulletin does not apply to any other 3rd party application (e.g. operating system, web server, or application server) that may be required to be installed by the customer according instructions in the product install guide.

Marked as spam
Posted by (Questions: 12, Answers: 382)
Answered on May 20, 2014 3:41 pm
EyeOnTesting