HP StorageWorks 1000/1500 Modular Smart Array support software CD release notes (434892-001, May 2007)
Component name
and version
File name
Enhancements/Fixes/Known
issues
W
3
2
W
6
4
W
I
A
6
4
L
n
x
3
2
L
n
x
6
4
L
n
IA
6
4
H
P
U
X
I
A
H
P
U
X
P
A
N
W
HP Event Broker agent
for Netware
cpqseb.nlm
X
HP System
Management
Homepage for Linux
(AMD64/EM64T)
Version 2.1.6-156
hpsmh-2.1.6 -
156.linux
.i386.rpm
Enhancements
• Updated OpenSSL library to
version 0.9.7i
• SSLv2 is now disabled by
default
Fixes
Issues addressed:
• CAN-2005-2969 — SSL
v2.0 Rollback vulnerability
• CAN-2005-2728 —
Byterange filter DoS
• CAN-2005-2088 — HTP
Request Spoofing
• CAN-2005-2700 —
important: SSLVerifyClient
bypass
• CAN-2005-1268 — low:
Malicious CRL off-by-one
• CAN-2005-2491 —
Updated possibly vulnerable
PCRE v4.5 extension to v6.2
• CAN-2005-3353 — exif
IFD2 patch to filter duplicates
• CAN-2005-3388 — Fix XSS
issue in PHP
• CAN-2005-3389 — Fix for
parse_str vulnerability
• CAN-2005-3390 —
RFS1867 file upload feature
allows remote attackers
to modify the GLOB ALS
array and bypass security
protections
X
HP System
Management
Ho
mepage for
Wi
ndows
Ve
rsion 2.1.6.156
cp006309.exe
Enhancements
Added operating system support
to include:
• Windows Server 2003 R2
Added browser suppor t to
include:
• Internet Explorer 7.0
• Mozilla 1.7
• Firefox 1.0.2
Fixes
Added the following security
updates:
• A potential directory
traversal vulnerability has
been identified and resolved.
• Updated PHP security.
XXX
1000/1500 Modular Smart Array support software CD
13