Hotfix published on the 22nd of december regarding sensitive information
Article ID: 258592
Updated On:
Products
Issue/Introduction
Checking the hotfix documentation page making sure that environment up to date on the latest critical updates and fixes regarding security or stability issues.
looking at this webpage: https://techdocs.broadcom.com/us/en/symantec-security-software/identity-security/identity-suite/14-4/release-notes/Virtual-Appliance-Release-Notes/Hotfixes.html
We would like your help providing more information about this problem.
- What sensitive information does this fix helps removing
- Where is this information visible and what type of attacks can we suffer if someone gets ahold of this information
Environment
Release : 14.4.2
Resolution
About (Security Hotfix to Remove Sensitive Information)
this is HF_VA-14.4.2-20221217153415-SEC_PATCH_001.tgz.gpg md5sum for 14.4.2 is 51e71f8b222c6a39c5307ec4bc63d1cf and for 14.4.1 is f5e7644330fc45c9caead2bf647c9983.
As far as the sensitive information is concerned, we are storing one of the im passwords in a text file in vApp. As part of the fix, it has been removed.
Feedback
