Environment
Novell
ZENworks Patch Management 6.4 - ZPM6.4 Agent
Situation
This article is a
summary of the fixes includes in ZENworks Patch Management Update
Agent 6.4 Patch 1 Applies To: ZENworks Patch Management Update
Agent v6.4.2.245
Resolution
The patch
was retracted from the global subscription server (GSS) due to a
recently discovered issue with the Agent installer down grading the
MSXML4.DLL.
Update Agent
for Windows 6.4 P-1 may back-rev the MSXML 4.DLL to a vulnerable
version 4.10.9404.0 (SP1).
MSXML4.DLL
version 4.10.9404.0 is vulnerable to the following Microsoft
Security Bulletins:
MS06-061
MS06-071
MS07-042
Note:This behavior does not occur on the Update Agent for Windows Vista.
MS06-071
MS07-042
Note:This behavior does not occur on the Update Agent for Windows Vista.
ZPM Administrators
can deploy these security patches using ZPM Update to remediate
against these vulnerabilities. ZPM
Administrators that already have the above references patches in a
Mandatory Baseline will automatically remediate against the
vulnerability.
Update Resolution
PatchLink released Update Agent 6.4 P2 that supersedes 6.4 P1. Please refer to KB 3276888 for details.
Additional Information
A reboot is
not required. However, the Agent will go offline briefly to
complete this deployment. As a result, the Agent may continue to
report its' previous version number until the next Discover
Applicable Updates (DAU) occurs.
Windows Installer 2.0 or higher is required.
All logged-in Vista users MUST log off in order to fully correct the reboot issue.