Control-M/EM PANFT.9.0.20.214
BMC Software is alerting you to a number of security vulnerabilities and application issues that were detected in Control-M/EM Server.
Patch PANFT.9.0.20.214 corrects these problems that occur in Control-M/EM 9.0.20.200. This patch is installed on top of Control-M/EM version 9.0.20.200 on UNIX/Linux or Windows.
You must install this patch on every environment where Control-M Web Server is installed.
Corrected Problems
The following table describes the corrected problems included in patch PANFT.9.0.20.214:
Tracking number | Description |
|---|---|
CTM-7263 | The Log4j2 libraries are out of date and must be upgraded to version 2.17.1. |
CTM-7007 | An XSS security vulnerability occurs in Control-M Web. |
CTM-6921 | Control-M Web allows an unauthorized use of alternative locations. |
CTM-6890 | A denial-of-service security vulnerability occurs in Control-M/EM Server. |
CTM-6888 | Internal data is exposed in Control-M Web. |
CTM-6091 | A security vulnerability is detected in the logging service in the Control-M Web Server. |
CTM-6572 | The View Schedule feature does not work in Advanced Rule-Based Calendars if the RBC was not created in Control-M Web. |
CTM-5843 | An error message does not appear after the timeout threshold is exceeded when you open a Viewpoint in the History domain. |
CTM-5824 | Incomplete data appears in Control-M Reports when you select Add a New Report. |
CTM-8547 | A security vulnerability is detected in Control-M Reports. |
Installing the Patch on UNIX/Linux
This procedure describes how to install patch PANFT.9.0.20.214 on UNIX/Linux.
Before You Begin
- Verify Control-M/EM version 9.0.20.200 is installed.
- Obtain the installation package via EPD, as described in Obtaining-Control-M-Installation-Files-via-EPD.
Begin
- Copy the patch installation file that you obtained into a temporary directory.
- Set execution flags for the patch installation file using the following command:
chmod +x PANFT.9.0.20.214_<platform>_INSTALL.BIN - Stop all Control-M/EM components.
- Run the following script from the Control-M/EM Home directory:
<temporary directory>/PANFT.9.0.20.214_<platform>_INSTALL.BIN - Follow the on-screen instructions until the installation is complete.
- Start all Control-M/EM components.
- Run the following commands:
- emrestsrv stop
- emrestsrv start
Installing the Patch on Windows
This procedure describes how to install patch PANFT.9.0.20.214 on Windows.
Before You Begin
- Verify Control-M/EM version 9.0.20.200 is installed.
- Obtain the installation package via EPD, as described in Obtaining-Control-M-Installation-Files-via-EPD.
Begin
- Stop all Control-M/EM components.
- Double-click the downloaded patch installation file.
- Follow the on-screen instructions until the installation is complete.
- Start all Control-M/EM components.
- From a command line, run the following command:
wmic process where "commandline like '%%javaw.exe%%emrestsrv%%' and caption like '%%javaw.exe'" delete
Uninstalling the Patch from UNIX/Linux
This procedure describes how to uninstall patch PANFT.9.0.20.214 from UNIX/Linux.
Begin
- Stop all Control-M/EM components.
- Navigate to the following directory:
<EM_HOME>/install/PANFT.9.0.20.214 - Run the following script:
uninstall.sh - Start all Control-M/EM components.
- Run the following commands:
- emrestsrv stop
- emrestsrv start
Uninstalling the Patch from Windows
This procedure describes how to uninstall patch PANFT.9.0.20.214 from Windows.
Begin
- Stop all Control-M/EM components.
- From Windows Settings > Apps > Apps & Features, select Control-M/Enterprise Manager 9.0.20.200 Patch 14 (<instance name>).
- Select Uninstall.
- Start all Control-M/EM components.
- From a command line, run the following command:
wmic process where "commandline like '%%javaw.exe%%emrestsrv%%' and caption like '%%javaw.exe'" delete