This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Register Now
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Announcements

SecurID® Discussions

Browse the SecurID discussion board to get product help and collaborate with other SecurID users.
msg9
Occasional Contributor
Occasional Contributor
‎2023-08-04 12:04 PM

Schedule for RSA Authentication Manager Updates? (for java updates)

Jump to solution

Hello,

our environment vulnerability scanner notes Java vulnerabilities on our RSA servers whenever there is a new Java release.

Is there a general schedule for the release of RSA's Authentication Manager updates in order to get Java updated?

Am I correct in review/monitoring the Advisories section for Authentication Manager for updates and vulnerabilities information, or would there be a better way to be notified when patches are released?
https://community.rsa.com/t5/securid-advisories/ct-p/securid-access-advisories

Thank you

Labels (1)
0 Likes
Reply
1 Solution

Accepted Solutions
EricaChalfin
Moderator Moderator
Moderator
‎2023-08-09 12:59 PM

Jump to solution

@msg9,

The patch release for Authentication Manager is approximately every three months, give or take. If a Java vulnerability is raised in the Oracle Critical Patch Update (OCPU), RSA's response will lag behind the announcement so that we have time to determine if Authentication Manager is impacted by the vulnerability, address the issue or determine that Authentication Manager infrastructure and/or components are not impacted. We recommend always being at the latest version of Authentication Manager and scanning again once you've patched.

As you already noted, the best way to stay up-to-date on product releases is to be subscribed to our product advisories.


Best regards,
Erica

View solution in original post

Reply
1 Reply
EricaChalfin
Moderator Moderator
Moderator
‎2023-08-09 12:59 PM

Jump to solution

@msg9,

The patch release for Authentication Manager is approximately every three months, give or take. If a Java vulnerability is raised in the Oracle Critical Patch Update (OCPU), RSA's response will lag behind the announcement so that we have time to determine if Authentication Manager is impacted by the vulnerability, address the issue or determine that Authentication Manager infrastructure and/or components are not impacted. We recommend always being at the latest version of Authentication Manager and scanning again once you've patched.

As you already noted, the best way to stay up-to-date on product releases is to be subscribed to our product advisories.


Best regards,
Erica
Reply
© 2023 RSA Security LLC or its affiliates. All rights reserved.