CTPView Management System, version 7.3R3
Software Release Notes
Release 7.3R3
21st Jul 2017
These release notes accompany Release 7.3R3 of the CTPView Management System software. They describe the defects fixes as well as known issues with the software. CTPView Management System software runs on all CTPView devices. This release provides management services for CTP systems running CTPOS 7.3 and below.
New Features and Enhancements:
- [PR 1279129] Create CTPView as an application package that will run on top of Standard Centos system.
Issues Fixed in this release:
- [PR 1240574] Cannot add a second eth to a ESXi VM CTP View.
- [PR 1249154] When doing a manual sync from a primary to secondary ctpview server, partial transfers are seen.
- [PR 1249814] CTPView: OpenSSL 1.0.2k, 1.1.0d - OpenSSL Security Advisory [26 Jan 2017].
- [PR 1265415] NetMon stops polling CTP hosts.
- [PR 1283207] CTPView secondary sync server cannot reach CTPs after a sync event.
- [PR 1283874] Cannot https log into CTPView using IPV6.
- [PR 1284155] CVE-2017-6074 fix in CTPOS, A use-after-free flaw was found in the way the Linux kernel's Datagram Congestion Control Protocol (DCCP) implementation freed SKB (socket buffer) resources for a DCCP_PKT_REQUEST packet when the IPV6_RECVPKTINFO option is set on the socket. A local, unprivileged user could use this flaw to alter the kernel memory, allowing them to escalate their privileges on the system.
- [PR 1283224] mysqld.log files can grow to be huge > 1 GB.
Known Issues:
- None.
Notes:
Security Deployment Guide
The guide is available for download at http://www.juniper.net/techpubs/en_US/ctp7.3/information-products/pathway-pages/ctp-series/index.html
Required Files:
The full suite of security enhancements is available only when the CTPView software is installed on servers running the CentOS 5.11 Operating System. Contact Juniper Networks Technical Assistance Center (JTAC) if you need to upgrade your operating system.
Following files are provided for upgrading the CTPView software.
- web_update_7.3R3_170717.tgz [Software Updates]
- EXTRAS.tgz [required rpms]
Note: Upgrading to CTPView 7.3R3 requires existing CTPView to be upgraded to 7.3R2. Please refer CTPView 7.3R2 Release Notes for instructions to upgrade to CTPView 7.3R2.
Use the following information to determine the correct file to use:
| CTPView Server OS | Installed CTPView Release | File for Upgrade | Server Reboots During Upgrade ? |
|---|---|---|---|
| Cent OS 5.11 | 7.3R2 | web_update_7.3R3_170717.tgz | Yes |
Installing Software:
On systems running 3.4R2-p1 or 3.4R3 or later:
- Upgrade the software to 7.3R2 (Copy the "ctpview_complete_centos_7.3R2_161213.tgz" for Upgrade to the /tmp directory on the server).
- Log into server shell.
- On CentOS systems as a System Administrator
- Run the upgrade script:
upgrade - Copy the EXTRAS.tgz of 7.3R3 to /tmp directory.
- Make a new directory inside /tmp and move to the new directory, Untar the EXTRAS.tgz to the new directory using
tar -zxvf ../EXTRAS.tgz - Install the extracted rpms with the following command
sudo ./install_rpms.tcsh - Remove the extracted rpms and new directory (created to Extract rpms) to free the space. Also remove any EXTRAS folders or web_update files (if present) from /tmp directory to free the space.
- Copy the web_update_7.3R3_170717.tgz to /tmp directory.
- Run the upgrade script:
upgrade
Note: When upgrading CentOS 5.11 systems running a release earlier than 7.0R1 to 7.3R2 and from 7.3R2 to 7.3R3 you will be prompted to enter the MySQL Administrator's password. This is necessary in order to upgrade the database structures. If you fail to enter the correct password the upgrade process will continue and the server will remain usable. However, to properly complete the upgrade process you will need to manually initiate the database structure upgrade script from the cli menu. The path to this function is menu > MySQL Functions > Upgrade Database Structures.
