Transcription
Content Quarterly, Q4 2014Supported Platforms and ApplicationsPlatforms and applications supported by Lumension Patch andRemediation.November 18, 2014Version 5.13 Copyright 2014 Lumension Security, Inc.; all rights reserved
Content Quarterly, Q4 2014Table of ContentsAbout Lumension . 3About this Document . 3Patch Quality Assurance Summary . 4Testing Environment . 4Application Testing . 4Testing Strategy . 4General Testing . 4Assessment Testing . 4Deployment Testing . 4Trusted Delivery and Flexibility . 5Lumension Patch and Remediation Content Support . 6Operating System (Platform) Support . 6Table 1: Operating System (Platform) Support for Lumension Patch and Remediation . 6Application Support . 8Table 2: Application Support for Lumension Patch and Remediation . 8Antivirus Definition Support . 12Table 3: Antivirus Definition File Support for Lumension Patch and Remediation . 12Language Support . 13Table 5: Language Support for Lumension Patch and Remediation . 13Lumension Patch Content Impact Mapping . 14Table 6: Lumension Patch Content Impact Mapping . 14Contact Lumension . 16www.lumension.comVulnerability Management Endpoint Protection Data Protection Reporting and Compliance2
Content Quarterly, Q4 2014About LumensionLumension Security, Inc., a global leader in endpoint management and security, develops,integrates and markets security software solutions that help businesses protect their vitalinformation and manage critical risk across network and endpoint assets. Lumension is known forproviding world-class customer support and services 24x7, 365 days a year.Headquartered in Scottsdale, Arizona, Lumension has operations worldwide, including Texas,Ireland, Luxembourg, Singapore, the United Kingdom, and Australia.Lumension: IT Secured. Success Optimized. About this DocumentThis document provides a detailed list of all supported platforms and applications that Lumensionprovides in the Security Content Repository. Categories include:»Operating System (Platform) Support»Application Support»Language Support»Impact Mappingwww.lumension.comVulnerability Management Endpoint Protection Data Protection Reporting and Compliance3
Content Quarterly, Q4 2014Patch Quality Assurance SummaryLumension provides Lumension Patch and Remediation customers more value through thecontent development and quality assurance process by verifying the patch metadata produced bythe content development team, install process, and uninstall processes. Providing quality contentto our customers is a high priority. To ensure successful delivery of content, Lumension executestest cases covering the following test components.Testing EnvironmentLumension invests heavily in our testing infrastructure. The content development and qualityteams have access to a virtual enterprise environment representing more than 1500 nodes ofvarious configurations. Lumension uses a mix of virtual desktops and servers in addition tocustom physical bench testing to ensure that our testing infrastructure is state of the art.Application TestingLumension tests with various applications as necessary to ensure the requirements of the patchare satisfied.Testing StrategyGENERAL TESTING»Verify patch-naming convention complies with Lumension policy»Verify content supports the replication process: each patch created by the content team isvalidated with the GSS distribution and Patch Server productsASSESSMENT TESTING»Verify an applicable non-patched system shows applicable and not patched»Verify a patched system shows installed and not applicable»Verify false positives in the detection of digital fingerprint»Verify content is compliant with mandatory baselines»Verify the vulnerability is correctly displayed in Patch Server and all filtering, sorting andother visual functionality works correctlyDEPLOYMENT TESTING»Verify the package is successfully deployable»Verify suppress reboot functionality works correctly»Verify the uninstall functionality works correctly»Verify on demand package caching works correctly»Verify automatic deployment scheduling works correctly»Verify agent package downloadwww.lumension.comVulnerability Management Endpoint Protection Data Protection Reporting and Compliance4
Content Quarterly, Q4 2014»Verify package hash ensuring package integrity»Verify agent automatically runs assessment after patch deployment»Verify agent restarts automatically after rebootTrusted Delivery and FlexibilityThe Lumension Global Subscription Service (GSS) is designed and implemented to maximizeglobal availability through a secure content distribution network. All communications with theLumension GSS are conducted via encrypted, secure channels to ensure the integrity of securitycontent.Using a best practice approach, critical security patches are automatically downloaded tocustomer locations, based on their subscription options. Additional security patches may bedownloaded, as necessary, to create a customized version of the Lumension Content Repository,within the customer’s own secure enterprise environment.www.lumension.comVulnerability Management Endpoint Protection Data Protection Reporting and Compliance5
Content Quarterly, Q4 2014Lumension Patch and RemediationContent SupportOperating System (Platform) SupportLumension currently supports security content for the operating systems listed in Table 1 forLumension Patch and Remediation. Support for specific platforms is as follows:»Update installers (no base installers)»Core OS Updates (may include patches, service packs, feature packs, cumulative, hotfixes)»Stated editions (standard, enterprise, deluxe)»Stated version»Stated architecture»All supported locales (see Language Support below)Items shaded in grey are legacy patches that are no longer supported from the original vendor onan ongoing basis, but may still be available in the Lumension Content Repository. Text in darkgreen color represents recent information update.Table 1: Operating System (Platform) Support for Lumension Patch andRemediationPublisherApplePlatform/DeviceOS EditionMac OS X 10.3.9 - 10.5.8PowerPCMac OS X 10.4.5 - 10.6.7x86Mac OS X 10.6.8 - 10.10.1CentOSHPIBMMicrosoftArchitecturex86CentOS 5Serverx86CentOS 5Serverx86 64CentOS 6Serverx86CentOS 6Serverx86 64CentOS 7Serverx86 64HP-UX 11.11PARISCHP-UX 11.23PARISCHP-UX 11.31PARISCHP-UX 11.31ItaniumAIX 6.1PowerPCAIX 7.1PowerPCWindows XP SP1 - SP3PROx86Windows XP SP1 - SP2PROx86 64Windows 2003ENT, STD, WEBx86Windows 2003ENT, STD, WEBx86 64www.lumension.comVulnerability Management Endpoint Protection Data Protection Reporting and Compliance6
Content Quarterly, Q4 2014PublisherPlatform/DeviceOracleRed HatArchitectureWindows VistaBUS, ENT, ULTx86Windows VistaBUS, ENT, ULTx86 64Windows 2008ENT, STD, WEBx86Windows 2008ENT, STD, WEBx86 64Windows 7PRO, ENT, ULTx86Windows 7PRO, ENT, ULTx86 64Windows 2008 R2ENT, STD, WEBx86 64Windows 81CORE, PRO, ENTx861Windows 8NovellOS EditionCORE, PRO, ENTx86 64Windows 2012STD, Data, FND, ESSx86 64Windows 8.1Basic, PRO, ENTx86 64Windows 2012 R2STD, Data, FND, ESSx86 64SUSE Linux Enterprise 10.xServer, Desktopx86SUSE Linux Enterprise 10.xServer, Desktopx86 642SUSE Linux Enterprise 11.xServer, Desktopx86SUSE Linux Enterprise 11.x2Server, Desktopx86 64Oracle Linux 4Serverx86Oracle Linux 4Serverx86 64Oracle Linux 5Serverx86Oracle Linux 5Serverx86 64Oracle Linux 6Serverx86Oracle Linux 6Serverx86 64Oracle Linux 7Serverx86 64Solaris 10SPARCSolaris 10x86Solaris 10x86 64Solaris 11-11.1SPARCSolaris 11-11.1x86 64Enterprise Linux 5Server, Desktopx86Enterprise Linux 5Server, Desktopx86 64Enterprise Linux 6Server, Desktopx86Enterprise Linux 6Server, Desktopx86 64Enterprise Linux 7Server, Desktopx86 64Note: legacy support are listed in gray1. The N editions of this family are supported. However, the RT edition of this family is not supported2. Service Pack 3 supportedwww.lumension.comVulnerability Management Endpoint Protection Data Protection Reporting and Compliance7
Content Quarterly, Q4 2014Application SupportLumension Patch and Remediation currently supports security updates for the applications listedin Table 2. Applications are supported only for applicable, supported operating systems (seeOperating System (Platform) Support). Current application support for UNIX and Linux isrestricted to OS vendor-provided patches and may not be fully described in Table 2. Securitypatches are supported by default and non-security patches are supported by request.Items shaded in grey are legacy patches that are no longer supported on an ongoing basis, butmay still be available in the Lumension Content Repository. Text in dark green color representsrecent information update. Table 3 lists the antivirus applications for which virus definitionupdates are available in the Lumension Content Repository.Table 2: Application Support for Lumension Patch and RemediationPublisherAdobe Systems, IncAdobe Systems, IncAdobe Systems, IncAdobe Systems, IncAdobe Systems, IncAdobe Systems, IncAdobe Systems, IncAdobe Systems, IncAdobe Systems, IncAdobe Systems, IncAdobe Systems, IncAdobe Systems, IncAdobe Systems, IncAdobe Systems, IncApple IncApple IncApple IncApple IncApple IncApple IncApple IncApple IncApple IncApple IncApple IncApple IncApple IncApple IncApple IncApple IncProductAcrobatAIRFlash Player (ESR)Flash PlayerFlash Player (ESR) for Mac OS XFlash Player for Mac OS hockwave Player for Mac OS XShockwave PlayerBonjourGarageBandiCloudiDVDiLifeiLife Media BrowseriLife SupportiMovieiPhotoiTunes for Mac OS XiTunes for WindowsiWebMobile Device SupportQuickTime for WindowsQuickTime for Mac OS XSafariMin Version8.1.31.5.3.91306.0.656.0.659.0.479.0.47CS5 15.0.2CS3 5.0.4CS3 Life 5215.0.0.22313.0.0.25215.0.0.223CS6 16.2.2CS6 8.0.2CS6 3.17.0.4iLife .67.1WindowsWindowsWindowsWindowsMac OS XMac OS XWindowsWindowsWindowsMac OS XWindowsWindowsMac OS XWindowsWindowsMac OS XWindowsMac OS XMac OS XMac OS XMac OS XMac OS XMac OS XMac OS XWindowsMac OS XWindowsWindowsMac OS XMac OS Xwww.lumension.comVulnerability Management Endpoint Protection Data Protection Reporting and Compliance8
Content Quarterly, Q4 2014PublisherApple IncAudacity Team, TheCitrix Systems, IncCitrix Systems, IncCitrix Systems, IncCitrix Systems, IncCitrix Systems, IncCitrix Systems, IncCitrix Systems, IncCitrix Systems, IncDocumentFoundation, TheDon HodotPDN LLCFoxit CorporationFoxit CorporationGoogle Inc.Google Inc.Igor PavlovInkscape Team, TheLightning UK!LumensionMartin MicrosoftProductMin yICA Win32 ClientMetaframe Server ClientOnline Plug-in (Web)Online Plug-inPresentation Server ClientReceiver .3WindowsNotepad Paint.NETEnterprise ReaderReaderChromeEarth7-ZipInkscapeImgBurnAll productsWinSCP.NET FrameworkAccessActiveX KillbitsAdobe Flash Player in Internet ExplorerBing Bar1BizTalk ServerContent Management ServerData Access Components (MDAC)DirectXDynamics CRM 2011 Update RollupsDynamics CRM 2013 Update RollupsEntourageExcelExcelExcel ViewerExchange ServerExchange Server 2007 SP3 Update RollupsExchange Server 2010 SP3 Update RollupsExpression DesignExpression MediaExpression WebForefront Client SecurityForefront Identity Manager1Forefront Threat Management GatewayFrontPageFrontPage Server Extension (FPSE).GrooveHost Integration 2.20419.200.48.42.5.8NA5.5.6.47461.0 200420035.5111V1 22.8 SP110.0LatestLatest2011201320112007 SP32010 SP313642 SP24 SP2Latest2010 R22010 ndowsWindowsWindowsMac OS XWindowsMac OS ww.lumension.comVulnerability Management Endpoint Protection Data Protection Reporting and Compliance9
Content Quarterly, Q4 softMicrosoftProductInfoPathInternet ExplorerInternet Information Service (IIS)Internet Security and Acceleration Server (ISA)JetLyncLync ServerMSDEMSN MessengerMSXMLOfficeOffice for MacOS XOffice ViewerOffice Communications ServerOneNoteOutlookOutlook ExpressPowerPointPowerPointPowerPoint ViewerProjectPublisherRemote Desktop Connection SoftwareSharePoint FoundationSharePoint ServicesSharePoint ServerSharePoint Team ServicesSilverlightSilverlightSkyDrive Pro1Skype (Business)SkypeSQL ServerSystem Center 2012 R2 Update RollupsSystem Center 2012 SP1 Update RollupsSystem Center 2012 Update RollupsVirtual BasicVirtual PCVirtual ServerVisioVisio ViewerVisual C Visual Studio .NETVisual StudioVisual Studio TFSWindows DefenderWindows InstallerWindows Media PlayerWindows Live MessengerWindows MessengerMin 004.020102010200051Office 2003Office 200420032007200320035.5 SP2200320042003200220025.1.260020102.02005Office XP44NA6.18.32.1053.871116.0 SP62004 SP12005 R2 SP1200220072005200320052010 SP11.12.06.48.14.72013111.07.52006 SP14.0201312013120007.66.0 SP1Office 2013Office 201120102007 R22013120131720131201120102010 SP1201317.020103.0 SP320131Office XPLatest5Latest6.21.32.1046.21.0.1042013 SP14181716.0 SP62007 SP12005 R2 SP120131201312010 SP120032010 SP12010 SP11.14.511Version indowsWindowsWindowsWindowsWindowsMac OS XWindowsWindowsWindowsWindowsWindowsWindowsMac OS WindowsWindowsMac OS w.lumension.comVulnerability Management Endpoint Protection Data Protection Reporting and Compliance10
Content Quarterly, Q4 2014Min VersionLatestVersionSupportedPlatformWindows Update AgentWordWordWord ViewerFirefox (ESR)Firefox (ESR)FirefoxFirefoxNetware Windows ClientJava SE Runtime Environment (JRE) for MacJava SE Runtime Environment (JRE)RealPlayerRealPlayer CloudServerViewerWinPcapTeamViewerFileZilla ClientFileZilla ServerServerViewerVLC media playerServerFusion for Mac OS 31.0.42.0.0.74.831.31.4.2 038 .0201312011200331.2.031.2.033.033.06.5 SP 78 Update 258 55.0.49.0.418.5WindowsWindowsMac OS XWindowsWindowsMac OS XWindowsMac OS XWindowsMac OS WindowsWindowsWindowsWindowsWindowsWindowsMac OS ellOracle CorporationOracle CorporationReal Networks, IncReal Networks, IncRealVNC Ltd.RealVNC Ltd.Riverbed TechnologyTeamViewerTim KosseTim KosseUltraVNCUltraVNCVideoLANVMware, Inc.VMware, Inc.VMware, Inc.VMware, Inc.WinZip ComputingWiresharkFoundationYahoo! Inc.ProductNote: legacy support are listed in gray1. Available in L.E.M.S.S. Patch and Remediation v7.2 and higherwww.lumension.comVulnerability Management Endpoint Protection Data Protection Reporting and Compliance11
Content Quarterly, Q4 2014Antivirus Definition SupportLumension currently supports Antivirus definition files for some of the most popular Antivirusapplications for distribution through Lumension Patch and Remediation. Lumension checks forthe latest definition files available from the vendor twice a week and updates the associated patchcontent accordingly. Support for specific products is as follows:Table 3: Antivirus Definition File Support for Lumension Patch rosoftMicrosoftMicrosoftSophosAnti-Virus for WorkstationClient SecurityE-mail and Server SecurityServer SecurityVirusScan DAT filesVirusScan Enterprise DAT filesMalicious Software Removal ToolMicrosoft Endpoint Protection1Microsoft Forefront Client Security1Microsoft Security Essentials1Outlook 2003 Junk E-mail Filter1Outlook 2007 Junk E-mail Filter1Windows DefenderWindows Mail Junk E-mail Filter1AntivirusSymantecSymantec Antivirus Corporate Edition Clientfor 64-bits OS only10.0010.20WindowsSymantecSymantecTrend MicroTrend MicroSymantec Endpoint ProtectionSymantec/ Norton : legacy support are listed in gray1. Available in L.E.M.S.S. Patch and Remediation v7.2 and higherwww.lumension.comVulnerability Management Endpoint Protection Data Protection Reporting and Compliance12
Content Quarterly, Q4 2014Language SupportFor Windows operating systems (OS) applications, Lumension supports patch content for thefollowing locales if available from the vendor.Table 5: Language Support for Lumension Patch and RemediationLanguage (Locale)Chinese (Simplified)Chinese (Traditional)Danish (Denmark)Dutch (Netherlands)English (British)English (South Africa)English (United States)Finnish (Finland)French (France)German (Germany)Italian (Italy)Japanese (Japan)Korean (Korea)Norwegian (Norway)Portuguese (Brazil)Russian (Russia)Spanish (Spain)Swedish (Sweden)www.lumension.comVulnerability Management Endpoint Protection Data Protection Reporting and Compliance13
Content Quarterly, Q4 2014Lumension Patch Content Impact MappingLumension impact terminology for Lumension Patch and Remediation closely follows the vendorimpact terminology for vulnerability criticality. Each operating system has a vendor-specific impactrating and the mapping to Lumension Patch and Remediation terminology is described in thissection. Lumension tends to increase or “round-up” the severity of the impact rating. For instance,Microsoft classifications for “Critical”, “Important”, and “Moderate” patches are all classified as“Critical” by Lumension.The following table details the classification of patches for each supported OS and Patch Typeand the corresponding Lumension Impact Rating assigned for each. Text in dark green colorrepresents recent information update.Table 6: Lumension Patch Content Impact MappingLumension Impact RatingVendorContent TypeAppleMac Platform Security UpdatesApplication Security UpdatesCriticalCritical-01 Non-Security Application UpdatesPlatform Security (SA) Enhancements (EA)Platform Bugfix (BA)HP-UXCritical Security UpdatesNon-Critical Security UpdatesIBM AIXSecurity (Bundled) Maintenance LevelTechnology LevelService PacksConcluding Service PacksMicrosoftPlatform Security UpdateApplication Security UpdateNon-Security Platform UpdateNon-Security Application UpdatePlatform HotfixApplication HotfixVirus Removal Non-Security Mac PlatformUpdatesCentOSRecommended www.lumension.comVulnerability Management Endpoint Protection Data Protection Reporting and Compliance14
Content Quarterly, Q4 2014Lumension Impact RatingVendorContent TypeCriticalCritical-01RecommendedVirus Removal Platform Service PacksApplication Service Packs ActiveX KillbitsJunk Email Filter Updates Malicious Software Removal Tool Windows Defender DefinitionupdatesNovell SUSESecurity Updates Non-Security Updates Service PacksOracle LinuxPlatform Security (OLSA) Enhancements (OLEA)Platform Bugfix (OLBA)Oracle SolarisRecommended Security(Bundled) Security Only (Bundled) Recommended Only (Bundled)Recommended Clusters Non-Security Solaris PlatformRed Hat ELPlatform Security (RHSA) Enhancements (RHEA)Platform Bugfix (RHBA)OthersAntiVirus (AV) Updates www.lumension.comVulnerability Management Endpoint Protection Data Protection Reporting and Compliance15
Content Quarterly, Q4 2014Contact LumensionGlobal Headquarters8660 East Hartford DriveSuite 300Scottsdale, AZ .comVulnerability Management Endpoint Protection Data Protection Reporting and Compliance16
www.lumension.com Vulnerability Management Endpoint Protection Data Protection Reporting and Compliance Content Quarterly, Q4 2014 Patch Quality Assurance Summary Lumension provides Lumension Patch and Remediation customers more value through the content development and quality assurance process by verifying the patch metadata produced by
