Skip to content
Sélectionnez votre pays :
South Africa
Afrique du Sud
Germany
Allemagne
Middle East Region
Asie du Sud-Est
Australia New Zealand
Australie & Nouvelle-Zélande
Benelux
Benelux :
Benelux :
Brazil
Brésil
Chile
Chili
China
Chine
Spain
Espagne
United States
États-Unis
Finland
Finlande
France
France
Hungary
Hongrie
indonesian flag
Indonésie
Italy
Italie
Japan
Japon
Middle East Region
Moyen-Orient
Czech Republic
République Tchèque
United Kingdom Ireland
Royaume-Uni & Irelande
Sweden
Suède
Sélectionnez votre pays :
South Africa
Afrique du Sud
Germany
Allemagne
Middle East Region
Asie du Sud-Est
Australia New Zealand
Australie & Nouvelle-Zélande
Benelux
Benelux :
Benelux :
Brazil
Brésil
Chile
Chili
China
Chine
Spain
Espagne
United States
États-Unis
Finland
Finlande
France
France
Hungary
Hongrie
indonesian flag
Indonésie
Italy
Italie
Japan
Japon
Middle East Region
Moyen-Orient
Czech Republic
République Tchèque
United Kingdom Ireland
Royaume-Uni & Irelande
Sweden
Suède
Effectuer une recherche pour en savoir plus sur les produits et solutions InterSystems, les offres d'emploi, etc.
Home
Product Alerts & Advisories
Advisory: OpenSSL Security Advisory

Advisory: OpenSSL Security Advisory

17 Jun 2014

June 17, 2014 - Advisory: OpenSSL Security Advisory

The OpenSSL Project https://www.openssl.org recently released a security advisory on vulnerabilities in the OpenSSL product.

These vulnerable OpenSSL products are included in the distribution of and used by most InterSystems products from version 2007.1 through the present, 2014.1. OpenVMS and Mac OSX are the exceptions to this; InterSystems products on these platforms use the libraries installed with the operating system.

InterSystems strongly recommends that customers move to OpenSSL versions containing the corrections to the vulnerabilities as soon as possible. To ease this transition for our partners, InterSystems is taking the following steps:

  1.  We have posted updated distributions of the latest maintenance release of all versions since 2011.1. The updated distributions include the corrected version of OpenSSL.
  2. We have posted versions of the corrected OpenSSL libraries, again for all versions since 2011.1, along with instructions that will install them in existing deployments. The list below shows the compatibility between corrected OpenSSL version and InterSystems version.
    OpenSSLInterSystems
    1.0.0m2011.1 through 2014.1
    0.9.8za 2007.1 through 2010.2

Installation of InterSystems products can result in OpenSSL libraries being placed in multiple locations. For example, the CSP Gateway uses SSL and the Gateway is often installed on a server separate from the primary InterSystems installation. The installation instructions detail the locations that need to be considered.

Distributions and instructions can be found at:
https://wrc.intersystems.com/wrc/Distribution.csp

Installation instructions are named: openssl_installation_instructionspatch-all.txt

Distributions of updated libraries are named according to the convention: openssl-version-platform.extension; for example, “openssl-2014.1.1.702.1-lnxsuse10x64.tar.gz”.

Note that distribution files are named for the most recent ISC maintenance release for a major version. These distributions are compatible with all releases for that major version. i.e. 2011.1.6.1001.4 is compatible with 2011.1.0 through 2011.1.6
If you have any questions regarding this advisory, please contact the  Worldwide Response Center.

Latest Alerts & Advisories

15 Aug 2024
Product Alerts & Advisories
Alert: Database Corruption with Multi-Volume Databases after Truncation
InterSystems has corrected a defect that can cause database corruption or errors with multi-volume databases under extremely rare circumstances. Only databases that have been truncated are at risk.
More
24 Jul 2024
Risk & Safety Alert HS2024-03: Multiple Alerts for InterSystems IRIS for Health, HealthShare Health Connect and HealthShare Solutions
There are four alerts in the HS2024-03 Alert Communication. A summary of each alert is shown below. Details for each alert are contained in the linked document.
More
24 Jun 2024
Product Alerts & Advisories
Advisory: VMware vSAN Data Consistency Errors
Broadcom recently announced a problem that can cause data consistency errors in database applications. The Broadcom article is available here:
More
30 May 2024
Product Alerts & Advisories
Advisory: License Enforcement Changes – REST and SOAP
Beginning with the release of InterSystems IRIS® data platform 2022.3, InterSystems corrected the license enforcement mechanism to include REST and SOAP requests. Due to this change, environments with non-core-based licenses that use REST or SOAP may experience greater license utilization after upgrading. To determine if this advisory applies to your InterSystems license, follow the instructions in the FAQ linked below.
More
01 May 2024
Product Alerts & Advisories
Alert: SQL Query using “NOT %INLIST” fails to return results
InterSystems has corrected an issue that can cause a small number of SQL queries to return incorrect results. See below for the specifics on impacted queries.
More
08 Apr 2024
Product Alerts & Advisories
Alert: Upgrades fail for HealthShare Health Connect instances not licensed for HL7® FHIR®
InterSystems has encountered a defect that causes some upgrades of HealthShare® Health Connect to fail. This only affects instances that are not licensed for the use of FHIR® and that have interoperability-enabled namespaces. Under these conditions, the upgrade fails with an error.
More
19 Mar 2024
Product Alerts & Advisories
Advisory: AIX Memory Leak
In evaluating an IBM Support notification, InterSystems has determined a potential impact for our customers. The notification in question is:
More
27 Feb 2024
Product Alerts & Advisories
Alert HS2024-limited: InterSystems IRIS for Health, Health Connect & HealthShare Solution Alert for Customers who Received an Ad Hoc Correction for HSIEO-8613
There is 1 alert in the HealthShare HS2024-limited Alert communication. An alert summary for the issue is shown is in the table below. Details for the alert are contained in the attached document: HS2024 Limited Communication.
More
01 Feb 2024
Product Alerts & Advisories
Alert HS2024-02: Multiple InterSystems IRIS for Health, Health Connect & HealthShare Solution Alerts
There are 2 alerts in the HealthShare HS2024-02 Alert communication. An alert summary for each issue is shown is in the table below. Details for each alert are contained in the attached document: HS2024-02-Communication.
More
17 Jan 2024
Product Alerts & Advisories
Advisory: Users Unable to Log in After Upgrade Due to Missing Index
This problem affects the following products:
More
View All Alerts & Advisories