Operations Manager on Multi-OS, patch detail

To use SORT, JavaScript must be enabled. How to enable JavaScript.

vom-Patch-8.0.2.110 Obsolete Go to Download Center to download. The latest patch(es) : vom-Patch-8.0.2.320

Basic information

Release type:	Patch
Release date:	2023-08-31
OS update support:	None
Technote:	None
Documentation:	None
Popularity:	108 viewed downloaded
Download size:	530.33 MB
Checksum:	3053925102

Applies to one or more of the following products:

Operations Manager 8.0.2.0 On AIX
Operations Manager 8.0.2.0 On Linux
Operations Manager 8.0.2.0 On Solaris 11 SPARC
Operations Manager 8.0.2.0 On Solaris 11 X64
Operations Manager 8.0.2.0 On Windows x64

Obsolete patches, incompatibilities, superseded patches, or other requirements:

This patch is obsolete. It is superseded by:	Release date
vom-Patch-8.0.2.320	2023-12-18
vom-Patch-8.0.2.310 (obsolete)	2023-11-03
vom-Patch-8.0.2.300 (obsolete)	2023-10-19
vom-Patch-8.0.2.200 (obsolete)	2023-09-30

This patch supersedes the following patches:	Release date
vom-Patch-8.0.2.100 (obsolete)	2023-07-21

Fixes the following incidents:

4125903, 4125920, 4125924, 4125928, 4126011, 4126016, 4131151

Patch ID:

None.

Readme file

* * * READ ME * * *
* * * Veritas Operations Manager 8.0.2 * * *
* * * Patch 110 * * *
Patch Date: 2023-08-30

This document provides the following information:

* PATCH NAME
* OPERATING SYSTEMS SUPPORTED BY THE PATCH
* PACKAGES AFFECTED BY THE PATCH
* BASE PRODUCT VERSIONS FOR THE PATCH
* SUMMARY OF INCIDENTS FIXED BY THE PATCH
* DETAILS OF INCIDENTS FIXED BY THE PATCH
* INSTALLATION PRE-REQUISITES
* INSTALLING THE PATCH
* REMOVING THE PATCH

PATCH NAME
----------
Veritas Operations Manager 8.0.2 Patch 110

OPERATING SYSTEMS SUPPORTED BY THE PATCH
----------------------------------------
AIX 7.1
AIX 7.2
RHEL7 x86-64
RHEL8 x86-64
RHEL9 x86-64
SLES12 x86-64
SLES15 x86-64
Solaris 11 SPARC
Solaris 11 X64
Windows 2016 X64
Windows 2019 X64

BASE PRODUCT VERSIONS FOR THE PATCH
-----------------------------------
* Veritas Operations Manager 8.0.2.0

SUMMARY OF INCIDENTS FIXED BY THE PATCH
---------------------------------------
Patch ID: vom-HF0802110
* 4131151 (4131150) Security Vulnerabilities fixes
Patch ID: vom-HF0802100
* 4125903 (4125897) In clustered configuration, VIOM does not show VVR link for Secondary RVG.
* 4125920 (4125916) Storage Migration plan does not get executed.
* 4125924 (4125922) Registered policy signature scan may not work properly.
* 4125928 (4125926) Some VIOM GUI related fixes.
* 4126011 (4126009) Security Vulnerabilities fixes
* 4126016 (4126015) AWS cloud attributes are not getting detected in VIOM for Amazon EC2 instance.

DETAILS OF INCIDENTS FIXED BY THE PATCH
---------------------------------------
This patch fixes the following incidents:

Patch ID: vom-HF0802110

* 4131151 (Tracking ID: 4131150)

SYMPTOM:
Third party component vulnerability reported.

DESCRIPTION:
Following third party component has been upgraded:

--------------------------------------------------------------------------------------------------------------------------------------------------
Component Name Upgraded Version(8.0.2.110) CVE FIXED COMMENTS
--------------------------------------------------------------------------------------------------------------------------------------------------

PostgreSQL 14.7 CVE-2023-2455 (BDSA-2023-1117), APPLICABLE FOR VIOM
Database CVE-2022-41862 (BDSA-2023-0215), MANAGEMENT SERVER ONLY.
Server CVE-2023-2454 (BDSA-2023-1119)

Spring 5.3.29 CVE-2016-1000027, APPLICABLE FOR VIOM
Framework CVE-2023-20863 (BDSA-2023-0847) MANAGEMENT SERVER ONLY.

Spring 5.8.5 CVE-2023-20862 (BDSA-2023-0873), APPLICABLE FOR VIOM
Security BDSA-2023-1821 (CVE-2023-34035), MANAGEMENT SERVER ONLY.
BDSA-2023-1825

Java 11.20.8.1 APPLICABLE FOR VIOM
MANAGEMENT SERVER ONLY.

Apache Tomcat 9.0.76 APPLICABLE FOR VIOM
MANAGEMENT SERVER ONLY.

--------------------------------------------------------------------------------------------------------------------------------------------------

RESOLUTION:
Fixed the affected endpoint.

Patch ID: vom-HF0802100

* 4125903 (Tracking ID: 4125897)

SYMPTOM:
RVG "Links" tab does not show VVR link

DESCRIPTION:
In a VCS clustered configuration, VVR link may not be visible on Secondary RVG.

RESOLUTION:
Fixed the SQL query to show the VVR link

* 4125920 (Tracking ID: 4125916)

SYMPTOM:
Storage Migration plan does not get executed. You may see some errors on push_file.log on targeted VIOM Agent.

DESCRIPTION:
Storage Migration plan may not be started to run.

RESOLUTION:
Fixed the execution task.

* 4125924 (Tracking ID: 4125922)

SYMPTOM:
Registered policy signature scan may not work properly.

DESCRIPTION:
Registered policy signature fails to detect any violations as they do not get executed. You may see some errors in push_file.log on the VIOM Agent.

RESOLUTION:
Allow the policy signatures to run on agents.

* 4125928 (Tracking ID: 4125926)

SYMPTOM:
You may experience some GUI related issues like page refresh, page data is not being loaded.

DESCRIPTION:
In this patch, we have fixed below GUI related issues.
- Some minor GUI fixes under Availability Perspective
- Some minor GUI fixes under Server Perspective
- GUI fixes for SmartIO feature
- In Recovery plan when click on move up/down button, it skips 2 rows and some other minor GUI fixes
- Minor GUI fixes for SecureFS functionality

RESOLUTION:
Fixed the GUI framework.

* 4126011 (Tracking ID: 4126009)

SYMPTOM:
Third party component vulnerability reported.

DESCRIPTION:
Following third party component has been upgraded:

--------------------------------------------------------------------------------------------------------------------------------------------------
Component Name Upgraded Version(8.0.2.100) CVE FIXED COMMENTS
--------------------------------------------------------------------------------------------------------------------------------------------------

Apache Tomcat 9.0.76 BDSA-2023-0357 APPLICABLE FOR VIOM
CVE-2023-28709 (BDSA-2023-1242) MANAGEMENT SERVER ONLY.

Java 11.0.19.7.1 APPLICABLE FOR VIOM
MANAGEMENT SERVER ONLY.

JSON-java 20230618 CVE-2022-45688 (BDSA-2022-4165) APPLICABLE FOR VIOM
MANAGEMENT SERVER ONLY.

--------------------------------------------------------------------------------------------------------------------------------------------------

RESOLUTION:
Fixed the affected endpoint.

* 4126016 (Tracking ID: 4126015)

SYMPTOM:
Cloud name and other cloud attributes value may show empty for MHs in AWS under server perspective.

DESCRIPTION:
Cloud name and other cloud attributes value may show empty for MHs in AWS under server perspective.

RESOLUTION:
Fixed the AWS cloud detection for AWS EC2 instance.

INSTALLING THE PATCH
--------------------
IMPORTANT NOTE : Please take a backup of the database using the instructions given in the Admin guide before installing this patch.

This Patch is applicable for VIOM 8.0.2 Management Server and Managed Hosts both.

1. Download the file vom-8.0.2.110.sfa
2. Launch a browser and login to the VIOM management server.
3. Navigate to Settings -> Deployment Icon.
4. Upload the patch to the VIOM CMS using the Upload Solutions button.
The patch vom-8.0.2.110 should be visible in the Hot Fixes tree node.
5. Install this patch on Management Server using the following instructions:
- Go to Settings -> Deployment -> Hot Fixes -> Veritas Infoscale Operations Manager Managed Host.
- Click on Hot Fixes Tab. Click on Applicable Hosts Tab.
- Right click on Management Server Name and click on Install
6. After the patch is installed successfuly on Management Server, you can follow the same steps to install patch on applicable Managed Hosts.

REMOVING THE PATCH
------------------
NONE

SPECIAL INSTRUCTIONS
--------------------
NONE

OTHERS
------
NONE