Critical Security Patch

  • Post author:
  • Post category:News

As announced on the CORAL-ERM discussion list, the Steering Committee (SC) very recently became aware of a serious bug that affects all CORAL modules.

Here are instructions for implementing a critical patch to fix the bug in each CORAL module in Linux. We urge you to work with your local IT people to implement this fix as soon as possible. Please send any questions or concerns to the CORAL-ERM discussion list. You can also upgrade to the latest version which includes the security patch.

Resources Module:

– Change directory into your CORAL Resources Module

– Download patch file: wget https://raw.githubusercontent.com/ndlibersa/resources/master/install/SECURITY-Enforce-redirect-to-login-page.patch

– Apply patch: patch -p1 < SECURITY-Enforce-redirect-to-login-page.patch

Organizations Module:

– Change directory into your CORAL Organizations Module

– Download patch file: wget https://raw.githubusercontent.com/ndlibersa/organizations/master/install/SECURITY-Enforce-redirect-to-login-page.patch

– Apply patch: patch -p1 < SECURITY-Enforce-redirect-to-login-page.patch

Licensing Module:

– Change directory into your CORAL Licensing Module

– Download patch file: wget https://raw.githubusercontent.com/ndlibersa/licensing/master/install/SECURITY-Enforce-redirect-to-login-page.patch

– Apply patch: patch -p1 < SECURITY-Enforce-redirect-to-login-page.patch

Usage Module:

– Change directory into your CORAL Usage Module

– Download patch file: wget https://raw.githubusercontent.com/ndlibersa/usage/master/install/SECURITY-Enforce-redirect-to-login-page.patch

– Apply patch: patch -p1 < SECURITY-Enforce-redirect-to-login-page.patch

Management Module:

– Change directory into your CORAL Management Module

– Download patch file: wget https://raw.githubusercontent.com/ndlibersa/management/master/install/SECURITY-Enforce-redirect-to-login-page.patch

– Apply patch: patch -p1 < SECURITY-Enforce-redirect-to-login-page.patch