Translation Notice
Please note that this content includes text that has been machine-translated from English. Veritas does not guarantee the accuracy regarding the completeness of the translation. You may also refer to the English Version of this knowledge base article for up-to-date information.
NetBackup 8.1.2 Hotfix - nbdeployutil and Smart Meter bundle with CVE-2021-44228 and CVE-2021-45046 Apache Log4j 2.17.1 fix (Etrack 3983309)
Abstract
Description
Veritas Bug ID: ET 3983309
Issue: nbdeployutil is failing to generate usage file required for Smart Meter (Etrack 3983309)
Version: NetBackup 8.1.2
Problem Description: Cumulative EEB for NetBackup 8.1.2 Servers addressing CVE-2021-44228 Apache Log4j Vulnerability and previous fixes included in 8.1.2 EEB bundle
Solution: Fix for CVE-2021-44228 - Update NetBackup 8.1.2 with Apache Log4j 2.17.1.
Fixes Included:
This EEB bundle contains fix for CVE-2021-44228 and and CVE-2021-45046 plus the following Fixes:
ET 3937082: nbdeployutil core
ET 3952385: nbdeployutil does not honor nbdeployutilconfig.txt - FREQUENCY_IN_DAYS=1
ET 3955212: nbdeployutil creating large files in /tmp on master and filling up file system
ET 3955529: nbdeployutil shows inaccurate data after installing v5 of ET3944092
ET 3958640: EEB (8.1.2) : Support of Sqlite operations for nbdeployutil for solving memory issues for Huge data.
ET 3959035: Adding vxupdate packages fails
ET 3960007: nbdeployutil s incremental run fails to fetch data from trusted master using FEDS web-api
ET 3964435: Asking for EEB that combines fixes from ET3952954
ET 3964938: Smartmeter/nbdeployutil usage numbers are much higher (essentially double) what they should be
ET 3965216: Require EEB for 8.1.2 from ET3952672 - Scheduled nbdeployutil report no longer works after upgrade to NBU8.1
ET 3966663: Netbackup web services appear to become unresponsive causing jobs to stop being submitted.
ET 3967638: EEB request for ET:3966961 at 8.1.2.
ET 3969075: nbdeployutil fails with "DBD::SQLite::db do failed: near ".2018": syntax error at PERL2EXE_STORAGE/Sqlitedb/DBAccess.pm line 144."
ET 3969916: Nbdeployutil in 8.1.2 is not separating vsphere template clients correctly
ET 3978844: nbdeployutil failing with: db do failed: near ")": syntax error at PERL2EXE_STORAGE/Sqlitedb/DBAccess.pm line 144
ET 3979291: bpbkar is posting incorrect FEDS data for sparse file (ET3962068) causing issues with nbdeployutil
ET 3979585: nbdeployutil crashing while generating capacity report
ET 3981183: nbdeployutil incrementals failing with: 'DBD::SQLite::db do failed: unrecognized token: "":137093}]'
ET 3982304: Nbdeployutil shows incorrect backup size for SQL
ET 3983410: Excel output file for nbdeployutil incrementals is not being created
ET 3986477: Nbdeployutil and OpsCenter Capacity Report are not similar
ET 3987300: Capacity report reports on cluster name and node names providing incorrect calculations for capacity reporting
ET 3988692: Smart Meter Virtual Workload is not working for VM data.
ET 3997425: nbdeployutil not generating Capacity Licensing or Smart Meter telemetry json files, even with EEB 3983309 installed
ET 4006087: nbdeployutil is failing to generate usage file required for Smart Meter
ET 4058519: Need EEB for NBU 9.1 upgrade Apache Log4j version to log4j-2.15.0-rc1
Fix for CVE-2021-44228 and CVE-2021-45046 - Update NetBackup with Apache Log4j 2.16.0
Version 6 Adds:
1. Fix for CVE-2021-44228 and CVE-2021-45046 - Update NetBackup with Apache Log4j 2.17.1.
2. Support for installation of EEB on Solaris 10 platform (both Solaris-SPARC and Solaris-x86-64).
NOTES:
- If you have already implemented the mitigation steps documented in UPD548210, you DO NOT have to revert those steps before installing the EEB.
- This Hotfix EEB Bundle is now supported on Solaris 10 and 11, both Solaris-SPARC and Solaris-x86-64.
Installation Location: Primary/Master or Media Server
Version: NetBackup 8.1.2
Installation Location: Primary/Master or Media Server
Installation Instructions:
1) This EEB is to be installed on a NetBackup Server (Primary/Master or media)
2) Because this is a bundle, please stop NetBackup services prior to applying this hotfix.
3) If there is a previous version of this EEB already installed, the previous version MUST BE uninstalled before installing this EEB version.
4) Run EEB installer with -create option
e.g On Linux/Unix - ./eebinstaller_3983309_6_linuxR_x86 -create
On Windows - eebinstaller_3983309_6_AMD64.exe -create
Installer Instruction Links:
Using the NetBackup Emergency Engineering Binary (EEB) installer
https://www.veritas.com/docs/100019405
Installing EEBs on a NetBackup 52x0 / 5330 Appliance
https://www.veritas.com/docs/100023444
Downloads:
NB_8.1.2_ET3983309_6.zip
NBAPP_EEB_ET3983309-3.1.2.0-6.x86_64.rpm
VRTSflex-nb_EEB_ET3983309-8.1.2-6.x86_64.rpm
Checksums of Files:
File Checksum Byte count
AMD64/log4j-api-2.17.1.jar 3934950123 301873
AMD64/log4j-core-2.17.1.jar 1147346345 1790452
AMD64/log4j-web-2.17.1.jar 1249241531 35961
AMD64/nbdeployutil.exe 2752260369 6671876
AMD64/nbwebservice.war 2380713690 26436681
AMD64/nbwss.war 211154236 22773814
AMD64/netbackup.war 329926562 60982984
AMD64/preprocess_install_3983309.exe 3192305682 3732480
linuxR_x86/log4j-api-2.17.1.jar 3934950123 301873
linuxR_x86/log4j-core-2.17.1.jar 1147346345 1790452
linuxR_x86/log4j-web-2.17.1.jar 1249241531 35961
linuxR_x86/nbdeployutil 714002783 6740997
linuxR_x86/nbwebservice.war 2380713690 26436681
linuxR_x86/nbwss.war 211154236 22773814
linuxR_x86/netbackup.war 329926562 60982984
linuxR_x86/preprocess_install_3983309.sh 1192970312 1942
linuxS_x86/log4j-api-2.17.1.jar 3934950123 301873
linuxS_x86/log4j-core-2.17.1.jar 1147346345 1790452
linuxS_x86/log4j-web-2.17.1.jar 1249241531 35961
linuxS_x86/nbdeployutil 2822633772 6779292
linuxS_x86/nbwebservice.war 2380713690 26436681
linuxS_x86/nbwss.war 211154236 22773814
linuxS_x86/netbackup.war 329926562 60982984
linuxS_x86/preprocess_install_3983309.sh 1192970312 1942
solaris/log4j-api-2.17.1.jar 3934950123 301873
solaris/log4j-core-2.17.1.jar 1147346345 1790452
solaris/log4j-web-2.17.1.jar 1249241531 35961
solaris/nbdeployutil 4184576853 6534923
solaris/nbwebservice.war 2380713690 26436681
solaris/nbwss.war 211154236 22773814
solaris/netbackup.war 329926562 60982984
solaris/preprocess_install_3983309.sh 717651507 1944
solaris_x86/log4j-api-2.17.1.jar 3934950123 301873
solaris_x86/log4j-core-2.17.1.jar 1147346345 1790452
solaris_x86/log4j-web-2.17.1.jar 1249241531 35961
solaris_x86/nbdeployutil 1296200224 6158512
solaris_x86/nbwebservice.war 2380713690 26436681
solaris_x86/nbwss.war 211154236 22773814
solaris_x86/netbackup.war 329926562 60982984
solaris_x86/preprocess_install_3983309.sh 717651507 1944
AMD64/install-3983309_eebi_nbwmc.ps1 251265734 14349
linuxR_x86/install-3983309_eebi_nbwmc.sh 3574384124 14306
linuxS_x86/install-3983309_eebi_nbwmc.sh 3574384124 14306
solaris/install-3983309_eebi_nbwmc.sh 3574384124 14306
solaris_x86/install-3983309_eebi_nbwmc.sh 3574384124 14306
Recommended service state:
Stop all NetBackup services before applying this hotfix.
Applies to the following product releases
Update files
|
|
File name | Description | Version | Platform | Size |
|---|
Knowledge base
Updated nbdeployutil for NetBackup 8.1.2
2019-01-07Important: This nbdeployutil Emergency Engineering Binary (EEB) contains a fix for the NetBackup Web Management Console web service. During the EEB installation, the web services are shut down and the services restart automatically after the inst...
Impact of CVE-2021-44228 and CVE-2021-45046 Apache Log4j Vulnerability on NetBackup
2022-12-05About Apache Log4j Vulnerabilities Apache Log4j is an open-source, Java-based logging utility widely used by enterprise applications and cloud services. Veritas is tracking the recently announced vulnerabilities in Apache’s Log4j. All Veritas Pro...