Urgent from Sybase: Possible security vulnerability in Sybase Unwired Platform 2.0 and earlier on the RIM Blackberry device platform.
Summary: Sybase Unwired Platform (SUP) contains a potential security vulnerability on the RIM Blackberry device platform. The vulnerability affects Blackberry device applications developed on SUP 1.5.2, 1.5.3, 1.5.5, and 2.0 platforms. Sybase strongly recommends that customers upgrade to the latest Sybase Unwired Platform as soon as possible.
This document contains the following sections:
- Customer Alert
Sybase Unwired Platform contains a potential security vulnerability on the RIM Blackberry device platform where the device database may not be encrypted properly under some circumstances. Sybase is making this announcement proactively. To date, this issue has not been reported by any customer.
The vulnerability affects Blackberry device applications developed on SUP 1.5.2, 1.5.3, 1.5.5 and 2.0 platforms, both Developer Edition and Deployment Edition are affected.
Customers are advised to install the corresponding patches for the appropriate platform versions.
Versions of Sybase Unwired Platform from 1.5.5 ESD# 2 and 2.0 ESD# 1 contain the fixes to correct this issue.
Sybase is tracking these issues under CR# 673942. This CR is fixed in the following EBFs.
|1.5.2 & 1.5.3
||Upgrade to Sybase Unwired Platform v1.5.5, then apply EBF# 19372 (1.5.5 ESD# 2)
||Apply EBF# 19372 (1.5.5 ESD# 2)
||Apply EBF# 19279 (2.0 ESD# 1)
EBFs are obtained from the Sybase EBFs and Maintenance site.
Follow the instructions in the EBF cover letter to install the EBF.
If you require further assistance please contact your local support center. The contact numbers can be found in the About Support section under Support & Services at the www.sybase.com website.
Copyright © 2011 Sybase, Inc. All rights reserved.