软件维护和支持服务2022-05-11T14:55:27+08:00
登录全球支持平台

软件维护和支持服务

安讯奔的 “全球软件维护和支持服务”(Global Software Maintenance and Support Services,简称 “GSS”)规定,安讯奔及其公司集团(简称 “安讯奔”)与客户约定的软件产品和解决方案(即 AccessMatrix、AccessReal 和 YESsafe)的维护和支持服务的范围。

GSS 和 “最终用户软件许可协议”(End-user Software License Agreement,简称 “EULA”)是安讯奔与客户协议的组成部分。

安讯奔对非正式发布的软件产品不提供技术支持服务,并保留修改产品支持服务政策的权利。

本页面包含以下标签页。


Apache Java 开源库 Log4j2 漏洞和缓解措施 (CVE-2021-44228, CVE-2021-45046, CVE-2021-45105)2022-05-11T14:49:44+08:00

摘要

AccessMatrix 使用的 Apache Log4j2 开源库中存在漏洞。但是,只有 AccessMatrix 5.6.5 及更高版本会受到 Log4j2 漏洞的影响。

因此,使用安讯奔的 AccessMatrix AM 服务器和其他 AM Web 应用(CLP / OAuthProxy / USO Server / USO SSF / UAS TAP) 5.6.5 或更高版本的客户,请留意本文的内容,以应对漏洞。

漏洞信息

AccessMatrix 5.6.5 或更高版本(即 5.6.5 到 5.7.1),捆绑了 Apache Log4j2 2.11.2 或更高版本。这些版本受最近的 Apache Log4j2 安全漏洞影响。在捆绑的 Apache Tomcat 部署中,受影响的版本默认与 Java 8 或更高版本捆绑在一起。 Apache 提供了补丁来解决 Log4j2 漏洞问题:

  • CVE-2021-44228 – AccessMatrix 5.6.5 或更高版本受到影响; Apache 已发布 Log4j2 2.15.0 作为永久补救措施,AccessMatrix 5.6.5 或更高版本支持将捆绑的 Log4j2 直接修补到此 Log4j2 2.15.0。
  • CVE-2021-45046 – AccessMatrix 5.x 默认不受影响; AccessMatrix 5.x 版日志配置不包括Context查找(如 ${ctx:loginId} 或 $${ctx:loginId})(备注:您可以前往 am5/WEB-INF/classes/amlog4j2.properties,查看它的内容以确认); Apache 已发布 Log4j2 2.16.0 作为永久补救措施。AccessMatrix 5.x 支持将捆绑的 Log4j2 直接修补到此 Log4j2 2.16.0。
  • CVE-2021-45105 – AccessMatrix 5.x 默认不受影响; AccessMatrix 5.x 版日志配置不包括Context查找(如 ${ctx:loginId} 或 $${ctx:loginId})(备注:您可以前往 am5/WEB-INF/classes/amlog4j2.properties,查看它的内容以确认); Apache 已发布 Log4j2 2.17.0 作为永久补救措施,AccessMatrix 5.x 支持将捆绑的 Log4j2 直接修补到此 Log4j2 2.17.0。

结论:

  • 对于AccessMatrix 5.6.5 或更高版本(使用Java 8 或更高版本),将AccessMatrix 捆绑的Log4j2 直接修补到17.0,这是对上述发布的安全漏洞的直接永久补救措施。
  • 对于AccessMatrix 5.6.5 或更高版本(使用Java 7 或更早版本),请咨询安讯奔的全球支持顾问。
  • 对于 AccessMatrix 5.6.4 或更早版本,不需要任何操作。

步骤说明

您应该首先找出当前的AccessMatrix 版本,以确定它是否受到上述Log4j2 漏洞的影响。如需查看版本,请访问 AccessMatrix 管理控制台,然后点击“帮助”->“关于”菜单选项,在 “关于 AccessMatrix”对话框中,会显示的当前 AM 服务器版本。

请点击下方链接,然后下载补丁文件:

如果您无法从上方链接下载补丁文件,请从 Apache 官网下载:https://www.apache.org/dyn/closer.lua/logging/log4j/2.17.0/apache-log4j-2.17.0-bin.zip

下载补丁文件后,请执行下方步骤:

  1. 对于在高可用性(HA)架构中运行的每个 AM服务器服务,请对每个服务器执行以下步骤。
  2. 停止 AM服务器服务。
  3. 从am5/WEB-INF/lib中删除以下三个文件(为了备份,必须将这三个文件移动到当前am5 web app文件夹之外的其它文件夹中):
    • oss-org-apache-log4j-core-2.12.0.jar 或 log4j-core-2.12.0.jar
    • oss-org-apache-log4j-api-2.12.0.jar或log4j-api-2.12.0.jar
    • oss-org-apache-log4j-1.2-api-2.12.0.jar或log4j-1.2-api-2.12.0.jar
  1. 将以下三个文件(从下载的补丁文件中获取)复制到am5/WEB-INF/lib:
    • oss-org-apache-log4j-core-2.17.0.jar
    • oss-org-apache-log4j-api-2.17.0.jar
    • oss-org-apache-log4j-1.2-api-2.17.0.jar

注意:如果您是从Apache官网下载​​补丁文件,则需要对上述三个文件进行相应的重命名。

  1. 如果有除“am5”以外的网络应用,请替换每个网络应用的 /WEB-INF/lib 文件夹中的 JAR 文件(请参阅第 3 步和第 4 步)。
  2. 如果您在之前的修补活动中应用了 JVM 参数“-Dlog4j2.noFormatMsgLookup=true”,则可以删除此 JVM 参数。
  3. 启动 AM 服务器服务。

如果您在下载补丁文件或执行上述步骤时遇到任何问题,请联系安讯奔:support@axbsec.com

网站内容

本网站包含的信息,包括但不限于“产品发布和支持”和任何参考信息,并非具有法律约束力的承诺。

增加、修改和删除

安讯奔将不定期增加、修改或删除本网站上的任何信息,恕不另行通知。请定期查询安讯奔官网以了解是否所有更新。

AccessMatrix

安讯奔AccessMatrix产品生命周期公告版本-5.6.2, 5.6.32022-05-11T15:33:09+08:00

AccessMatrix 5.6.3.6308-GA 发布公告
我们宣布作为产品持续的部分 AccessMatrix-5.6.3.6308-GA 版本正式发布。

产品版本 产品缺陷支持 产品技术支持 已发布的产品 结束主流支持
5.6.3 了解问题或缺陷,尽力为客户提供解决方案或纠正缺陷。 支持 GA [Build 6409]:2019/6/15 TBA

下面列出最新版本中发布的一些关键变化和增强功能的总结:

  • 支持Oracle JRE 11 & AdoptOpenJDK 11
    • 注意:不再支持Oracle JRE 7
  • 通用登录页面(CLP)支持 WSA 作为 WSA 登录页面
  • 新的会话并发策略可以处理每个用户一定数量的并发会话
  • 认证 API 可以返回 JSON Web Token(JWT)
  • 使用 OpenAPI 标准来编写 REST API文档

最新版本还包括之前5.6.2 版本中发布的缺陷修复等更新。你可以发邮件到,support@axbsec.com, 获得最新的发行概述。

主流支持结束日期公告
除了上述的 GA 版本外,我们也宣布以下 AccessMatrix 软件版本的主流支持结束日期(EOMS)。

产品版本 产品缺陷支持 产品技术支持 已发布的产品 结束主流支持
5.6.2 了解问题或缺陷,尽力为客户提供解决方案或纠正缺陷。 支持 GA [Build 6214]: 2018/10/22 2021/10/31

主流支持结束日期提醒
以下列出为旧版本软件的 EOMS 提醒,旨在鼓励客户将他们的系统软件升级到最新版本。新版本包括新功能、增强功能和报告的缺陷修复,以提高产品的可靠性。

产品版本 产品缺陷支持 产品技术支持 已发布的产品 结束主流支持
5.6.1 了解问题或缺陷,尽力为客户提供解决方案或纠正缺陷。 支持 GA [Build 6111]: 2018/07/12 2021/07/31
5.6.0 了解问题或缺陷,尽力为客户提供解决方案或纠正缺陷。 支持 GA [Build 6013]: 2018/05/26 2021/03/31
5.5.2 了解问题或缺陷,尽力为客户提供解决方案或纠正缺陷。 支持 GA [Build 5212]: 2017/10/09 2020/10/31
5.5.1 了解问题或缺陷,尽力为客户提供解决方案或纠正缺陷。 支持 GA [Build 5111]: 2017/06/15 2020/06/14
5.4.2 了解问题或缺陷,尽力为客户提供解决方案或纠正缺陷。 支持 GA [Build 4208]: 2016/11/04 2019/11/30
5.4.1 了解问题或缺陷,尽力为客户提供解决方案或纠正缺陷。 支持 GA [Build 4108]: 2016/07/20 2019/07/31
5.4.0 了解问题或缺陷,尽力为客户提供解决方案或纠正缺陷。 支持 GA [Build 4011]: 2016/02/24 2019/02/28
  • 强烈建议客户在各自的 EOMS 日期之前升级他们的系统,以继续得到安讯奔的技术支持。
  • 客户可咨询安讯奔的销售或售后技术支持人员,了解应该升级到具体版本。
  • 请参阅安讯奔品发布和支持页面,了解上述列表的最新更新。

Note: * Maintenance Services subscription is required

Product Version Product Defect Support Product Technical Support Product Released End of Mainstream Support Product Supported Platforms
5.7.1 Correct and test defects to determine best solution;
Provide workarounds if possible
Supported* GA [Build 7111]:
29-Oct-2021
To Be Announced
PDF
5.7.0 Correct and test defects to determine best solution;
Provide workarounds if possible
Supported* GA [Build 7009]:
25-Jun-2021
30-Jun-2024
PDF
5.6.9 Correct and test defects to determine best solution;
Provide workarounds if possible
Supported* GA [Build 6911]:
5-Mar-2021
31-Mar-2024
PDF
5.6.8 Correct and test defects to determine best solution;
Provide workarounds if possible
Supported* GA [Build 6811]:
19-Oct-2020
31-Oct-2023
PDF
5.6.7 Correct and test defects to determine best solution;
Provide workarounds if possible
Supported* GA [Build 6711]:
19-Jun-2020
30-Jun-2023
PDF
5.6.6 Correct and test defects to determine best solution;
Provide workarounds if possible
Supported* GA [Build 6609]:
10-Feb-2020
28-Feb-2023
PDF
5.6.5 Correct and test defects to determine best solution;
Provide workarounds if possible
Supported* GA [Build 6510]:
08-Oct-2019
31-Oct-2022
PDF
5.6.4 Correct and test defects to determine best solution;
Provide workarounds if possible
Supported* GA [Build 6409]:
15-Jun-2019
30-Jun-2022
PDF
5.6.3 Correct and test defects to determine best solution;
Provide workarounds if possible
Supported* GA [Build 6308]:
19-Feb-2019
28-Feb-2022
5.6.2 Provide workarounds if possible;
Provide access to existing patches
Limited Support* GA [Build 6214]:
22-Oct-2018
31-Oct-2021
5.6.1 Provide workarounds if possible;
Provide access to existing patches
Limited Support* GA [Build 6111]:
12-Jul-2018
31-Jul-2021
5.6.0 Provide workarounds if possible;
Provide access to existing patches
Limited Support* GA [Build 6013]:
26-Mar-2018
31-Mar-2021
5.5.2 Provide workarounds if possible;
Provide access to existing patches
Limited Support* GA [Build 5212]:
09-Oct-2017
31-Oct-2020
5.5.1 Provide workarounds if possible;
Provide access to existing patches
Limited Support* GA [Build 5111]:
15-Jun-2017
14-Jun-2020
5.5.0 Provide workarounds if possible;
Provide access to existing patches
Limited Support* GA [Build 5008]:
23-Jan-2017
22-Jan-2020
5.4.2 Provide workarounds if possible;
Provide access to existing patches
Limited Support* GA [Build 4208]:
04-Nov-2016
30-Nov-2019
5.4.1 Provide workarounds if possible;
Provide access to existing patches
Limited Support* GA [Build 4108]:
20-Jul-2016
31-Jul-2019
5.4.0 Provide workarounds if possible;
Provide access to existing patches
Limited Support* GA [Build 4011]:
24-Feb-2016
28-Feb-2019
5.3.4 Provide workarounds if possible;
Provide access to existing patches
Limited Support* GA [Build 3406]:
30-Sep-2015
30-Sep-2018
5.3.3 Provide workarounds if possible;
Provide access to existing patches
Limited Support* GA [Build 3313]:
30-Jul-2015
30-Jun-2018
5.3.2 Provide workarounds if possible;
Provide access to existing patches
Limited Support* GA [Build 3207]:
13-Mar-2015
28-Feb-2018
5.3.1 Provide workarounds if possible;
Provide access to existing patches
Limited Support* GA [Build 3103]:
2014-Q4
2017-Q3
5.3.0 Provide workarounds if possible;
Provide access to existing patches
Limited Support* GA [Build 3012]:
2014-Q4
2017-Q3
5.2.2 Provide workarounds if possible;
Provide access to existing patches
Limited Support* GA [Build 2206]:
2014-Q3
2017-Q2
5.2.0 Provide workarounds if possible;
Provide access to existing patches
Limited Support* GA [Build 2017]:
2014-Q1
~o~
SP1 [Build 2028]:
2014-Q3
2017-Q2
5.1.2 Not Supported Not Supported 2013-Q3 2016-Q2
5.0.9 Not Supported Not Supported 2012-Q1 2015-Q1
5.0.8 Not Supported Not Supported 2011-Q2 2014-Q1
5.0.7 & Earlier Not Supported Not Supported 2010-Q3 2013-Q2
4.5.3 Provide workarounds if possible;
Provide access to existing patches
Limited Support* 2009-Q3 2012-Q2
4.3 & Earlier Not Supported Not Supported 2007-Q2 2010-Q1

AccessMatrix UIM 通用身份管理

Note: * Maintenance Services subscription is required

Product Version Product Defect Support Product Technical Support Product Released End of Mainstream Support Product Supported Platforms
5.7.1 Correct and test defects to determine best solution;
Provide workarounds if possible
Supported* GA [Build 7111]:
29-Oct-2021
To Be Announced
PDF
5.7.0 Correct and test defects to determine best solution;
Provide workarounds if possible
Supported* GA [Build 7009]:
25-Jun-2021
30-Jun-2024
PDF
5.6.9 Correct and test defects to determine best solution;
Provide workarounds if possible
Supported* GA [Build 6911]:
5-Mar-2021
31-Mar-2024
PDF
5.6.8 Correct and test defects to determine best solution;
Provide workarounds if possible
Supported* GA [Build 6811]:
19-Oct-2020
31-Oct-2023
PDF
5.6.7 Correct and test defects to determine best solution;
Provide workarounds if possible
Supported* GA [Build 6711]:
19-Jun-2020
30-Jun-2023
PDF
5.6.6 Correct and test defects to determine best solution;
Provide workarounds if possible
Supported* GA [Build 6609]:
10-Feb-2020
28-Feb-2023
PDF
5.6.5 Correct and test defects to determine best solution;
Provide workarounds if possible
Supported* GA [Build 6510]:
08-Oct-2019
31-Oct-2022
PDF
5.6.4 Correct and test defects to determine best solution;
Provide workarounds if possible
Supported* GA [Build 6409]:
15-Jun-2019
30-Jun-2022
PDF
5.6.3 Correct and test defects to determine best solution;
Provide workarounds if possible
Supported* GA [Build 6308]:
19-Feb-2019
28-Feb-2022
5.6.2 Provide workarounds if possible;
Provide access to existing patches
Limited Support* GA [Build 6214]:
22-Oct-2018
31-Oct-2021
5.6.1 Provide workarounds if possible;
Provide access to existing patches
Limited Support* GA [Build 6111]:
12-Jul-2018
31-Jul-2021
5.6.0 Provide workarounds if possible;
Provide access to existing patches
Limited Support* GA [Build 6013]:
26-Mar-2018
31-Mar-2021
5.5.2 Provide workarounds if possible;
Provide access to existing patches
Limited Support* GA [Build 5212]:
09-Oct-2017
31-Oct-2020
5.5.1 Provide workarounds if possible;
Provide access to existing patches
Limited Support* GA [Build 5111]:
15-Jun-2017
14-Jun-2020
5.5.0 Provide workarounds if possible;
Provide access to existing patches
Limited Support* GA [Build 5008]:
23-Jan-2017
22-Jan-2020
5.4.2 Provide workarounds if possible;
Provide access to existing patches
Limited Support* GA [Build 4208]:
04-Nov-2016
30-Nov-2019
5.4.1 Provide workarounds if possible;
Provide access to existing patches
Limited Support* GA [Build 4108]:
20-Jul-2016
31-Jul-2019
5.4.0 Provide workarounds if possible;
Provide access to existing patches
Limited Support* GA [Build 4011]:
24-Feb-2016
28-Feb-2019
5.3.4 Provide workarounds if possible;
Provide access to existing patches
Limited Support* GA [Build 3406]:
30-Sep-2015
30-Sep-2018
5.3.3 Provide workarounds if possible;
Provide access to existing patches
Limited Support* GA [Build 3313]:
30-Jul-2015
30-Jun-2018
5.3.2 Provide workarounds if possible;
Provide access to existing patches
Limited Support* GA [Build 3207]:
13-Mar-2015
28-Feb-2018
5.3.1 Provide workarounds if possible;
Provide access to existing patches
Limited Support* GA [Build 3103]:
2014-Q4
2017-Q3
5.3.0 Provide workarounds if possible;
Provide access to existing patches
Limited Support* GA [Build 3012]:
2014-Q4
2017-Q3
5.2.2 Provide workarounds if possible;
Provide access to existing patches
Limited Support* GA [Build 2206]:
2014-Q3
2017-Q2
5.2.0 Provide workarounds if possible;
Provide access to existing patches
Limited Support* GA [Build 2017]:
2014-Q1
~o~
SP1 [Build 2028]:
2014-Q3
2017-Q2
5.1.2 Not Supported Not Supported 2013-Q3 2016-Q2
5.0.9 Not Supported Not Supported 2012-Q1 2015-Q1
5.0.8 Not Supported Not Supported 2011-Q2 2014-Q1
5.0.7 & Earlier Not Supported Not Supported 2010-Q3 2013-Q2
4.5.3 Provide workarounds if possible;
Provide access to existing patches
Limited Support* 2009-Q3 2012-Q2
4.3 & Earlier Not Supported Not Supported 2007-Q2 2010-Q1

AccessMatrix UCM 通用凭证管理

Note: * Maintenance Services subscription is required

Product Version Product Defect Support Product Technical Support Product Released End of Mainstream Support Product Supported Platforms
5.7.1 Correct and test defects to determine best solution;
Provide workarounds if possible
Supported* GA [Build 7111]:
29-Oct-2021
To Be Announced
PDF
5.7.0 Correct and test defects to determine best solution;
Provide workarounds if possible
Supported* GA [Build 7009]:
25-Jun-2021
30-Jun-2024
PDF
5.6.9 Correct and test defects to determine best solution;
Provide workarounds if possible
Supported* GA [Build 6911]:
5-Mar-2021
31-Mar-2024
PDF
5.6.8 Correct and test defects to determine best solution;
Provide workarounds if possible
Supported* GA [Build 6811]:
19-Oct-2020
31-Oct-2023
PDF
5.6.7 Correct and test defects to determine best solution;
Provide workarounds if possible
Supported* GA [Build 6711]:
19-Jun-2020
30-Jun-2023
PDF
5.6.6 Correct and test defects to determine best solution;
Provide workarounds if possible
Supported* GA [Build 6609]:
10-Feb-2020
28-Feb-2023
PDF
5.6.5 Correct and test defects to determine best solution;
Provide workarounds if possible
Supported* GA [Build 6510]:
08-Oct-2019
31-Oct-2022
PDF
5.6.4 Correct and test defects to determine best solution;
Provide workarounds if possible
Supported* GA [Build 6409]:
15-Jun-2019
30-Jun-2022
PDF
5.6.3 Correct and test defects to determine best solution;
Provide workarounds if possible
Supported* GA [Build 6308]:
19-Feb-2019
28-Feb-2022
5.6.2 Provide workarounds if possible;
Provide access to existing patches
Limited Support* GA [Build 6214]:
22-Oct-2018
31-Oct-2021
5.6.1 Provide workarounds if possible;
Provide access to existing patches
Limited Support* GA [Build 6111]:
12-Jul-2018
31-Jul-2021
5.6.0 Provide workarounds if possible;
Provide access to existing patches
Limited Support* GA [Build 6013]:
26-Mar-2018
31-Mar-2021
5.5.2 Provide workarounds if possible;
Provide access to existing patches
Limited Support* GA [Build 5212]:
09-Oct-2017
31-Oct-2020
5.5.1 Provide workarounds if possible;
Provide access to existing patches
Limited Support* GA [Build 5111]:
15-Jun-2017
14-Jun-2020
5.5.0 Provide workarounds if possible;
Provide access to existing patches
Limited Support* GA [Build 5008]:
23-Jan-2017
22-Jan-2020
5.4.2 Provide workarounds if possible;
Provide access to existing patches
Limited Support* GA [Build 4208]:
04-Nov-2016
30-Nov-2019
5.4.1 Provide workarounds if possible;
Provide access to existing patches
Limited Support* GA [Build 4108]:
20-Jul-2016
31-Jul-2019
5.4.0 Provide workarounds if possible;
Provide access to existing patches
Limited Support* GA [Build 4011]:
24-Feb-2016
28-Feb-2019
5.3.4 Provide workarounds if possible;
Provide access to existing patches
Limited Support* GA [Build 3406]:
30-Sep-2015
30-Sep-2018
5.3.3 Provide workarounds if possible;
Provide access to existing patches
Limited Support* GA [Build 3313]:
30-Jul-2015
30-Jun-2018
5.3.2 Provide workarounds if possible;
Provide access to existing patches
Limited Support* GA [Build 3207]:
13-Mar-2015
28-Feb-2018
5.3.1 Provide workarounds if possible;
Provide access to existing patches
Limited Support* GA [Build 3103]:
2014-Q4
2017-Q3
5.3.0 Provide workarounds if possible;
Provide access to existing patches
Limited Support* GA [Build 3012]:
2014-Q4
2017-Q3
5.2.2 Provide workarounds if possible;
Provide access to existing patches
Limited Support* GA [Build 2206]:
2014-Q3
2017-Q2
5.2.0 Provide workarounds if possible;
Provide access to existing patches
Limited Support* GA [Build 2017]:
2014-Q1
~o~
SP1 [Build 2028]:
2014-Q3
2017-Q2
5.1.2 Not Supported Not Supported 2013-Q3 2016-Q2
5.0.9 Not Supported Not Supported 2012-Q1 2015-Q1
5.0.8 Not Supported Not Supported 2011-Q2 2014-Q1
5.0.7 & Earlier Not Supported Not Supported 2010-Q3 2013-Q2
4.5.3 Provide workarounds if possible;
Provide access to existing patches
Limited Support* 2009-Q3 2012-Q2
4.3 & Earlier Not Supported Not Supported 2007-Q2 2010-Q1
此页面上的信息受免责声明约束。

最近更新:07/April/2022

Go to Top