Sherlock FlexNet Publisher Update

Announcement about recent and upcoming Sherlock releases. This forum is moderated.
Post Reply
pwalters
Site Admin
Posts: 19
Joined: 05 Sep 2013, 09:53

Sherlock FlexNet Publisher Update

Post by pwalters » 16 Dec 2015, 12:04

Sherlock uses Flexera’s FlexNet Publisher for use with its FlexNet licenses. Flexera has discovered
vulnerabilities on all platforms of FlexNet Publisher which include the lmgrd executable and the
vendor daemon executable.

The exact details of these vulnerabilities are not known outside of Flexera. These vulnerabilities will
be published in February 2016 by US-CERT.

Any DfR customers currently using FlexNet licensing should upgrade their license server and vendor
daemon as soon as possible to version 11.13.1.2. The latest instructions for using FlexNet Publisher
for license management with Sherlock may be found at

http://update.dfrsolutions.com/flexnet/ ... gement.pdf .

The referenced document includes the links to the required downloads.

If you are not able to perform this upgrade at this time, Flexera recommends not exposing the lmgrd
or vendor daemon processes to the Internet.

Customers who use standard Sherlock floating or host licenses are not affected by this vulnerability.

Post Reply