Software Solutions
Showing results for 
Search instead for 
Do you mean 

Listing of HP Software unaffected by the Heartbleed Vulnerability

‎04-18-2014 10:11 AM - edited ‎06-25-2015 11:07 AM

Guest post by Jerome Labat, HP Software CTO

 

As a result of the Heartbleed vulnerability, HP has issued a security briefing (you can read it here)  The “Heartbleed” vulnerability was detected in specific OpenSSL versions of software used globally. OpenSSL is a third-party product that is embedded within some HP Software products. The objective of the bulletin listed above is to notify HP Software customers about products affected by the “Heartbleed” vulnerability.

 

HP Software is working to address this vulnerability for all affected product versions. HP Software will release product specific security bulletins for each impacted product. Each bulletin will include a patch and/or mitigation guideline. HP will update this bulletin with references to security bulletins for each product in the impacted versions table.

 

Note: The “Heartbleed” vulnerability (CVE-2014-0160) is a vulnerability found in the OpenSSL product cryptographic software library product. This vulnerability, if exploited, could potentially allow disclosure of information protected, under normal conditions, by the SSL/TLS protocol.

 

Please find below a list of products that HAVE NOT been impacted by the Heartbleed vulnerability.

 

“This following list of HP Software products includes only IT Operations Management (ITOM) and Applications Delivery Management (ADM) HP Software products that have been initially identified as NOT impacted by the Heartbleed security vulnerability.  This is not an exhaustive list and it is subject to change without notice.”

 

HP Agile Manager

HP Anywhere

HP Application Lifecycle Management

HP Application Lifecycle Intelligence

HP Application Performance Manager

HP AppPulse 

HP Asset Manager*

HP Business Process Insight

HP Business Process Monitor*

HP Business process testing

HP Business Service Management Connectors

HP CIT  (Connect IT)*

HP Cloud Service Automation

HP Configuration Manager*

HP Continuous Delivery Automation

HP Database and Middleware Automation

HP Diagnostics*

HP Discovery and Dependency Mapping Inventory

HP End User Monitor

HP Enterprise Collaboration

HP Enterprise Integration

HP Enterprise mapping

HP GlancePlus

HP IT Executive scorecard*

HP LoadRunner*

HP Monitoring Automation

HP Network automation

HP Network Node Manager '

HP Operation Orchestration

HP Operations Analytics

HP Operations Log Intelligence

HP Operations Manager

HP Operations Manager i

 

HP Ops Bridge

HP Performance Center*

HP Performance Management

HP Project and Portfolio Management

HP Quality Center

HP Real User Monitor

HP Release control

HP Server Automation*

HP Service Desk

HP Service Health Analyzer

HP Service Health Reporter

HP Service Level Management  

HP Service Manager*

HP Service Virtualization

HP SiteScope

HP SOA Systinet

HP Sprinter

HP Storage Essentials

HP System Instrumentation & Smart Plug Ins

HP Transaction Vision

HP TruClient

HP Unified Functional Testing

HP Universal CMDB

HP Universal CMDB Browser*

HP Universal Discovery

HP Virtual Performance Viewer

Shunra Analyzer

Shunra Network Catcher

Shunra Network Virtualization 4 HP (8.6)

Shunra Network Virtualization 4 Mobile (8.5)

Shunra Network Virtualization 4 OEM (8.7)

Shunra Performance Suite

Shunra vCat 4 HP (7.1)

Shunra vCat 7.1

Shunra Wildcat Appliance

 

 

(*) denotes all supported versions excluding those which are available in the bulletin

 

About the Author

HPE-SW-Guest

This account is for guest bloggers. The blog post will identify the blogger.

Comments
Johan Rios
on ‎04-25-2014 09:49 AM

Thanks for the Info!!

Tatsuo Yano
on ‎06-18-2014 07:01 PM

This is very helpful. 

Will you create another list for the newer OpenSSL vulnerability ( CVE-2014-0224), too?  

Events
Each Month in 2016
Online
Software Expert Days - 2016
Join us online to talk directly with our Software experts during online Expert Days. Find information here about past, current, and upcoming Expert Da...
Read more
Sep 30
Seattle, WA
OpenStack Days Seattle
OpenStack Days Seattle, September 30, is the largest gathering of OpenStack users and prospective users in the Pacific Northwest region.
Read more
View all