DX NetOps

  • Private Community
Back to discussions
Expand all | Collapse all

Update Apache Tomcat

  • 1.  Update Apache Tomcat

    Posted Jan 18, 2017 08:51 AM

    Hello Team

     

    Our security team found vulnerabilities while running  vulnerability scan and advised us to

    Update the versions of Apache Tomcat that fix these vulnerabilities.

    Patch. Please advise if the update will cause harm (if any) to the spectrum. Also please advise the necessary steps to taken out this activity and to take precautions (if any) 

     

    also please share the link to update the tomcat

     

    thanks



  • 2.  Re: Update Apache Tomcat

    Broadcom Employee
    Posted Jan 18, 2017 09:00 AM
      |   view attached

    You’ll need to upgrade Spectrum.  Just updating apache/tomcat that Spectrum ships is not supported.  Spectrum 10.2 ships with tomcat 7.0.72 and is available in the download center via our support online pages.

    Cheers

    Jay



  • 3.  Re: Update Apache Tomcat

    Posted Jan 18, 2017 09:11 AM

    Thanks jason for you reply

     

    currently we are running 9.4.1 version of spectrum . So are you saying that it is not advisable to upgrade tomcat leaving spectrum upgradation?



  • 4.  Re: Update Apache Tomcat

    Broadcom Employee
    Posted Jan 18, 2017 09:24 AM
      |   view attached

    Correct, upgrading tomcat only is not supported and will cause problems.

     

    9.4.4 ships tomcat version 7.0.59 but 10.2 ships the most recent version we support.

     

    Cheers

    Jay



  • 5.  Re: Update Apache Tomcat

    Posted Jan 18, 2017 09:29 AM

    Thanks Jason

     

    Do CA has any  official link related to the subject ? so i can show the Security Team as well.



  • 6.  Re: Update Apache Tomcat

    Broadcom Employee
    Posted Jan 18, 2017 09:43 AM
      |   view attached

    I can’t seem to find a specific statement noting it however here is a doc referencing the vulnerabilities and the update:

     

    https://www.ca.com/us/services-support/ca-support/ca-support-online/knowledge-base-articles.tec1146524.html

     

    I will create a tech doc stating this (and mysql) cannot be upgraded without a Spectrum upgrade.

     

    Cheers

    Jay



  • 7.  Re: Update Apache Tomcat

    Posted Jan 18, 2017 09:57 AM

    Many Thanks yes please share the tech when you created

    Also just came to know that spectrum uses mysql database. 



  • 8.  Re: Update Apache Tomcat
    Best Answer

    Broadcom Employee
    Posted Jan 18, 2017 09:54 AM
      |   view attached

    I have created TEC1937099.  It will take an hour or so to be available online.

     

    https://www.ca.com/us/services-support/ca-support/ca-support-online/knowledge-base-articles.tec1937099.html

     

    It’s short and to the point, so if anyone needs more specific info or thinks I should add anything, let me know.

     

    Cheers

    jay



  • 9.  Re: Update Apache Tomcat

    Posted Jan 18, 2017 10:07 AM

    Weldone .Appreciate 



  • 10.  Re: Update Apache Tomcat

    Broadcom Employee
    Posted Jan 18, 2017 10:12 AM
      |   view attached

    No problem ☺



  • 11.  Re: Update Apache Tomcat

    Posted Jan 20, 2017 05:01 AM

    Dear Jason,

    Can you please advise that at present we cannot upgrade spectrum rightnow. Do we have an alternative  of it?



  • 12.  Re: Update Apache Tomcat

    Broadcom Employee
    Posted Jan 20, 2017 07:45 AM
      |   view attached

    Unfortunately there is no other alternative.  You must upgrade Spectrum to utilize the updated version of mysql and tomcat.

    Cheers

    Jay



  • 13.  Re: Update Apache Tomcat

    Posted Jan 20, 2017 07:48 AM

    OK Jason Thanks