Wonderful.  Security risk in Operations Center 7.1.3.000 that I just installed 
- and the only resolution?  Upgrade to Operations Center 7.1.4.000 - which just 
so happens to require TSM Server v 7.1.4.000.  We’ve just installed TSM Server 
v 7.1.3.000 in our test environment; upgrade to v7.1.4.000 is months away.  So 
hence, is our use of the Operations Center.

Unless, that is, there will be a patch for Op Center 7.1.3.000 forthcoming?

Robert Talda
EZ-Backup Systems Engineer
Cornell University
+1 607-255-8280
rpt4 AT cornell DOT edu<mailto:rpt4 AT cornell DOT edu>


Begin forwarded message:

From: IBM My Notifications <mynotify AT stg.events.ihost DOT 
com<mailto:mynotify AT stg.events.ihost DOT com>>
Subject: FLASH: Security Bulletin: Vulnerability in Apache Commons affects IBM 
Tivoli Storage Manager Operations Center (OC) and Client Management Services 
(CMS) (CVE-2015-7450) (2015.12.11)
Date: December 11, 2015 at 1:26:42 PM EST
To: <RPT4 AT CORNELL DOT EDU<mailto:RPT4 AT CORNELL DOT EDU>>


My notifications for  Software - 11 Dec 2015

------------------------------------------------------------------------------
1.  Tivoli Storage Manager Extended Edition: Security bulletin

- TITLE: Security Bulletin: Vulnerability in Apache Commons affects IBM Tivoli 
Storage Manager Operations Center (OC) and Client Management Services (CMS) 
(CVE-2015-7450)
- URL: 
http://www.ibm.com/support/docview.wss?uid=swg21971533&myns=swgtiv&mynp=OCSSSQWC&mync=E&cm_sp=swgtiv-_-OCSSSQWC-_-E
- ABSTRACT: An Apache Commons Collections vulnerability for handling Java 
object deserialization was addressed by IBM Tivoli Storage Manager Operations 
Center (IBM Spectrum Protect Operations Center) and IBM Tivoli Storage Manager 
Client Services (IBM Spectrum Protect Client Management Services)..