Patch available for SSL 3.0 POODLE security vulnerability for BMC TEA Agent

This patch repairs the POODLE (Padding Oracle On Downgraded Legacy Encryption) security vulnerabilities for communication between the BMC Synthetic Transaction Execution Adapter (TEA) Agent and the BMC Real End User Experience Monitoring system.

After installing the patch, you can no longer use SSL 3.0, and specifically the RC4 protocol.

Do you need to install this patch?

This patch is intended for TEA Agent version 2.6.10 and BMC Real End User Experience Monitoring version 2.6.10.

If you have questions about whether to install this patch, contact BMC Customer Support.

This notification contains the following topics:

Downloading the patch

See Downloading-installation-files-for-the-TEA-Agent and select the Patches tab.

Patch contents

File name

Descriptions

readme.txt

Patch description and installation instructions

TEA-Agent-Windows-2.6.10.1.zip

Archive file containing the installation files

Applying the Patch

Extract the TEA-Agent-Windows-2.6.10.1.zip file with the installation and upgrade files.

To apply the patch with a wizard

  1. Log on to the host computer where you will install or upgrade the TEA Agent as a user with administrator privileges and extract the downloaded files to a temporary directory.
  2. Run the setup.exe file and follow the installation or upgrade wizard to install the patch.

For complete installation or upgrade instructions, see one of the following pages:

To apply the patch to the TEA Agent silently

  1. Log on to the host computer where you will upgrade the TEA Agent as a user with administrator privileges and extract the downloaded files to a temporary directory.
  2. From the Disk1 directory, open the TEAAgent-silent-option-upgrade.txt file, the options file provided with the product installer.

  3. Enter or edit the property values and save the file.

    Note

    Ensure that the installLocation parameter matches the existing values of your TEA Agent installation.

  4. From a command prompt, run the silent upgrade from the TEA Agent installation directory using the following command:

    setup.exe -i silent -DOPTIONS_FILE="<filePath>\TEAAgent-silent-option-upgrade.txt"

    For example: setup.exe -i silent -DOPTIONS_FILE="C:\Disk1\TEAAgent-silent-option-upgrade.txt"

One of the following responses occurs:

  • You receive a message that upgrade completed successfully.  The parameters are provided from the previous installation.
  • Upgrade cannot begin because the TEA Agent is running. Wait for the TEA Agent to stop (or manually stop the TEA Agent) before you run the command again.

For complete upgrade instructions, see Upgrading-a-synthetic-TEA-Agent.

Note

You can run an "over-the-top" upgrade, so that you can change one or more existing parameter values in the TEAAgent-silent-option.txt file. If you choose this option, ensure that the installLocation and tea_service_name parameters match the existing values of your TEA Agent installation.

To install a new TEA Agent silently

  1. Log on to the host computer as a user with administrator privileges.
  2. From the Disk1 directory, open the TEAAgent-silent-option.txt file, the options file provided with the product installer.
  3. Enter or edit the property values and save the file.

  4. From the directory where the installer file is stored, open a command prompt and run the silent installation using the following command:

    setup.exe -i silent -DOPTIONS_FILE="<filePath>\TEAAgent-silent-option.txt"

    The <filePath> value is the full location of the options file.

For complete installation instructions, see Performing-the-TEA-Agent-installation-silently

If a problem occurs

If you encountered problems during the installation of the patch or if you could not access the internet to run the installation, contact BMC Customer Support. 

Related topics

Release-notes-and-notices

Known-and-corrected-issues

 

Tip: For faster searching, add an asterisk to the end of your partial query. Example: cert*