Update: U1108

Product

WebShare Web Server

Version

4.0.0

Prerequisites

none

Supersedes

u1105

Problem-No

4577, 4590, 4597, 4604

Date

Thu Dec 11 11:33:36 MET 2014

Files

etc/webshare/websharewoa.tar

Architectures

common

Subject

Java "Poodle" vulnerability problem in WebShare

Info

The WebShare Web Server disables the SSLv3 protocol for HTTPS
by default now to avoid the Java "Poodle" vulnerability problem.
Detailed information is available in the HELIOS Tech Info #167.
Also fixed:
- Keystore passphrases are assumed to be UTF-8 based which
allows non-ASCII characters in passwords. The Java
"keytool" must be used in an UTF-8 terminal session
to enter UTF-8 compatible passwords.
- Added HUP signal handler to avoid exit on "srvutil reconf all".
- Quickshare administration GUI enhancements.
PLEASE NOTE:
- After installing the update, the HELIOS services must be
restarted via "stop-helios" and "start-helios".

 

back to overview