Environment
Novell Teaming 2.x
Novell Vibe OnPrem 3.0
Novell Vibe OnPrem 3.0
Situation
A vulnerability was found in Apache Tomcat versions 6.0.0 through 6.0.30 and 7.0.0 through 7.0.6. Details of the vulnerability are logged under CVE-2011-0534. This vulnerability affects Novell Teaming versions 2.x and Novell Vibe OnPrem version 3.0 since they were shipped with Apache Tomcat versions 6.0.18 and 6.0.29.
Resolution
Novell Vibe OnPrem 3.1 was shipped with Apache Tomcat version 6.0.32 which addresses this particular vulnerability (CVE-2011-0534). An upgrade of Novell Teaming 2.x and Novell Vibe OnPrem 3.0 to Novell Vibe OnPrem 3.1 will update the underlying Apache Tomcat version to version 6.0.32.
Status
Security AlertAdditional Information
If you have questions or concerns regarding this vulnerability related to Novell Teaming / Novell Vibe OnPrem, please contact Novell Technical Support.