Change Guardian 6.1.0.1 addresses the Log 4j vulnerability.
The documentation for this product is available on the Micro Focus website in HTML and PDF formats on a page that does not require you to log in. If you have suggestions for documentation improvements, click comment on this topic at the bottom of any page in the HTML version of the documentation posted at the Change Guardian Documentation page. To download this product and patches, see the Micro Focus Downloads website.
The following issue has been resolved in this release:
The Log4j vulnerability allows malicious attackers to execute code remotely on any targeted system.
A series of high severity vulnerabilities (CVE-2021-44228), (CVE-2021-45105), (CVE-2021-45046), and (CVE-2021-44832) for new Apache Log4j 2 version 2.14.1 are disclosed publicly and this has been addressed in this release by upgrading log4j to latest version 2.17.1
A series of high severity vulnerabilities (CVE-2021-4104) and (CVE-2019-17571) for older Apache log4j version log4j-1.2.17.jar are disclosed publicly and it has been mitigated by removing vulnerable classes SocketServer.class and JMSAppender.class from log4j-1.2.17.jar as the next version is not available and bundled in Change Guardian.
The vulnerable class JndiLookup.class is removed from the Elasticsearch bundled log4j-core-2.11.1.jar used in Change Guardian.
For more information about hardware requirements, supported operating systems, and browsers, see the System Requirements for Change Guardian 6.1.
The steps for installation of 6.1.0.1 are same as that of 6.1. For more information about the installation procedure, see Change Guardian Installation and Administration Guide.
You can upgrade to Change Guardian 6.1.0.1 from Change Guardian 6.1. For information about the upgrade procedure, see Upgrading Change Guardian
in the Change Guardian Installation and Administration Guide.
NOTE:Install/Upgrade to Change Guardian 6.1.0.1 is only supported by Traditional Installer.
Micro Focus strives to ensure our products provide quality solutions for your enterprise software needs. The following issues are currently being researched. If you need further assistance with any issue, please contact Technical Support.
Issue: If a process is terminated within a second of its creation, the Change Guardian Agent for Windows cannot collect the command line details such as Command Line, Command Line Length, Command Line Parameter, and Command Line Parameter Length. Events that are generated as a result of such processes do not display the command line details. (Defect 292163)
Workaround: None.
Issue: The assembly path for certain Windows processes is not available to the Change Guardian Agent for Windows, due to which the agent cannot collect the Windows process description. Events that are generated as a result of such processes do not display the process description. (Defect 290154)
Workaround: None.
Issue: If you click DASHBOARDS > EVENTS, the Events dashboard is displayed. If you click on DASHBOARDS again, the Event Dashboard appears blank. (Defect 189391)
Workaround: Refresh the page to view the Events Dashboard.
Issue: On a scheduled report for AGENT HEALTH ON FEDERATED SERVERS, if you added the requestor (shown as the local Change Guardian server) to be included in the report, the web console incorrectly displays that the server is not selected. (Defect 319023)
Workaround: Although the web console incorrectly displays the requestor server is not selected, the filters are saved and the report includes the server details.
Issue: After installing or upgrading Change Guardian in FIPS mode, when you launch Alerts Dashboard for the first time, a conflict error message is displayed. (Defect 302233)
Workaround: Refresh the page and ignore the conflict error message as there is no functionality impact.
Issue: If you use Agent Manager to delete an asset, Agent Manager does not delete the Change Guardian Agent component from the Installed Programs list in Windows. To remove all asset components completely, uninstall the Change Guardian Agent component from the computer, and then use Agent Manager to delete the asset from Change Guardian. (Defect 170281)
Workaround: None.
Issue: The chart view in the Change Guardian dashboard displays the percentage value greater than 100. (Bug 172363)
Workaround: Refresh the dashboard to load correct values, and ensure that you synchronize the systems on which Change Guardian dashboard and the Change Guardian agent are installed with the local time zones.
Issue: If you use certain versions of Internet Explorer 11, such as versions 11.0.10240.16384 and 11.1098.17763.0, to view and modify Event Dashboard settings, Internet Explorer does not display the saved settings. (Defect 155003)
Workaround: Use other supported web browsers.
Issue: In the Events dashboard, the Generation Time column is empty for UNIX events. (Defect 254001)
Workaround: Add Event Time column to the Events Summary report (REPORTS > Event Report) to see the time stamp for UNIX events.
Issue: If you delete a user from AD, and then create a new user with same account name, AD does not synchronize the new user. (Defect 170282)
Workaround: None.
Issue: When the Change Guardian appliance boots after installation, the appliance reports that some services have failed to start: (Defect 174273)
Failed to start LSB: NetIQ LDAP Expander. Failed to start LSB: Sentinel Server.
Workaround: The services start correctly. You can ignore such error messages.
For information about Micro Focus legal notices, see https://www.microfocus.com/about/legal/
Copyright © 2022 Micro Focus or one of its affiliates.