IBM Security Bulletin: Users are not logged out of the Requirements Management (RM) application after the LTPA timeout period is reached (CVE-2015-0121)

For certain configurations of IBM Rational DOORS Next Generation® or IBM Rational Requirements Composer®, it is possible to obtain a configuration where users are not logged out after the IBM WebSphere® LTPA timeout period expires. ...

from IBM Product Security Incident Response Team http://ift.tt/1LNMxlF