Release Notes for McAfee(R) VirusScan Enterprise for Linux Version 2.0.0 Hotfix 967083 Copyright (C) 2014 McAfee, Inc. All Rights Reserved. ============================================================ About this release: Thank you for using our software. This document contains important information about this release. We recommend that you read the entire document. Release date: June 23, 2014 This release was developed for use with: McAfee(R) VirusScan Enterprise for Linux: 2.0.0 with Hotfix 947660 installed. Resolved issues: The following issues are resolved in this Hotfix release of the product: VirusScan Enterprise for Linux 2.0 is not compatible with epolicy Orchestrator, which is installed in Federal Information Processing Standard (FIPS) mode. After installing the parser extension provided with this hotfix, VirusScan Enterprise for Linux is compatible with epolicy Orchestrator, which is installed in FIPS mode. The on-demand task temporary files that begin with the. character are accumulated in the /var/opt/nai/linuxshield/etc/ directory. (BZ 945659) After applying this hotfix, VirusScan Enterprise for Linux deletes all the older on-demand task temporary files in /var/opt/nai/linuxshield/etc/ directory either when starting the nails service or when starting the new on-demand scan task. CVE-2014-0224 (OpenSSL Man-in-the-Middle (MITM) vulnerability) in OpenSSL software library version 1.0.1g and earlier versions.
For more information on CVE-2014-0224, see https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2014-0224 After applying this hotfix, the OpenSSL library version is upgraded to 1.0.1h that has a fix for the OpenSSL MITM Note: After applying this hotfix, VirusScan Enterprise for Linux generates new keys and installs the new certificate. When you launch the software interface, you will be prompted to accept the new certificate. Note: The fix provided for the following issues in the Hotfix HF960961 is merged with this Hotfix (HF967083). CVE-2014-0160 (OpenSSL Heartbeat vulnerability) in OpenSSL software library versions 1.0.1 to 1.0.1f. For more information on CVE-2014-0160, see https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2014-0160 After applying this Hotfix, the OpenSSL library version is upgraded to 1.0.1h that has a fix for the OpenSSL Heartbeat CVE-2010-5298 (OpenSSL SSL_MODE_RELEASE_BUFFERS vulnerability) in OpenSSL software library versions 1.0.1 to 1.0.1f. For more information on CVE-2010-5298, see https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2010-5298 After applying this Hotfix, the OpenSSL library version is upgraded to 1.0.1h that has a fix for the OpenSSL Release Buffer Important: McAfee strongly recommends that you reset the VirusScan Enterprise for Linux administrator password after applying this hotfix. Files included with this release: This Hotfix comprises a single compressed archive file McAfeeVSEForLinux-2.0.0.28948-HF967083-release.tar.gz which contains the following files: McAfeeVSEForLinux-2.0.0.28948-HF967083-EPO.zip =
Hotfix package that can be deployed from the epolicy Orchestrator server. McAfeeVSEForLinux-2.0.0.28948-HF967083.tar.gz = Hotfix package that can be installed manually on standalone systems and contain the following files: setuphf = Installer script. Readme-HF967083.txt = This text file. McAfeeVSEForLinux-2.0.0.28948.x86_64-payload.tar = Binaries built for 64-bit computers. LYNXSHLDPARSER.zip = The parser extension file for epolicy Orchestrator FIPS mode. Installation instructions: Requirements: To use this hotfix, you must have McAfee VirusScan Enterprise for Linux software version 2.0.0 with Hotfix 947660 installed on the computer you intend to update. This hotfix will not work with any earlier versions of the software. Standalone installation: 1. Download "McAfeeVSEForLinux-2.0.0.28948-HF967083.zip" to a temporary directory, then execute the following commands in this sequence: # unzip McAfeeVSEForLinux-2.0.0.28948-HF967083.zip # cd McAfeeVSEForLinux-2.0.0.28948-HF967083 # tar -zxvf McAfeeVSEForLinux-2.0.0.28948-HF967083-release.tar.gz # tar -zxvf McAfeeVSEForLinux-2.0.0.28948-HF967083.tar.gz For SuSE platforms: # bash setuphf For Ubuntu platforms: # sudo bash setuphf Installation through epolicy Orchestrator: 1. Download and unzip "McAfeeVSEForLinux-2.0.0.28948-HF967083.zip" to a temporary directory. 2. From the extracted folder "McAfeeVSEForLinux-2.0.0.28948-HF967083", untar the file "McAfeeVSEForLinux-2.0.0.28948-HF967083-release.tar.gz".
3. Log onto epolicy Orchestrator, then click Menu Software Master Repository. 4. Click Actions Check In Package. The Package page appears. 5. From Package type, select "Product or Update (.ZIP). 6. From File path, click Browse and select the file "McAfeeVSEForLinux-2.0.0.28948-HF967083-EPO.zip". 7. Click Open, then click Next. The Package Options page appears. 8. Select the appropriate branch, then click Save. 9. Create an Update task and deploy this hotfix package. To install the parser extension file, see instructions in the product guide of your version of epolicy Orchestrator. Removing this Hotfix: To remove this Hotfix and revert to the original setup, you must reinstall the McAfee(R) VirusScan Enterprise for Linux version 2.0.0 software. Known issues: For known issues in this product release, refer to McAfee KnowledgeBase article KB80085 at: https://kc.mcafee.com/corporate/index?page=content&id=kb80085 Finding product documentation: McAfee provides the information you need during each phase of product implementation, from installation to daily use and troubleshooting. After a product is released, information about the product is entered into the McAfee online KnowledgeBase. 1. Go to the McAfee Technical Support ServicePortal at http://mysupport.mcafee.com. 2. Under Self Service, access the type of information you need: For user documentation: 1. Click "Product Documentation." 2. Select a "Product," then select a "Version." 3. Select a product document.
For the KnowledgeBase: 1. Click "Search the KnowledgeBase" for answers to your product questions. 2. Click "Browse the KnowledgeBase" for articles listed by product and version. Copyright (C) 2014 McAfee, Inc. Do not copy without permission. McAfee and the McAfee logo are trademarks or registered trademarks of McAfee, Inc. or its subsidiaries in the United States and other countries. Other names and brands may be claimed as the property of others. 00-A