OpenSSL vulnerabilities were disclosed on May 3, 2016 by the OpenSSL Project. OpenSSL is used by IBM Sterling Connect:Express for UNIX. IBM Sterling Connect:Express for UNIX has addressed the applicable CVEs.
CVE(s): CVE-2016-2107, CVE-2016-2105, CVE-2016-2106, CVE-2016-2109, CVE-2016-2176
Affected product(s) and affected version(s):
IBM Sterling Connect:Express for UNIX 1.4.6
– All versions prior to 1.4.6.1 iFix 146-114
IBM Sterling Connect:Express for UNIX 1.5.0.13
– All versions prior to 1.5.0.13
Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/29hoBcr
X-Force Database: http://ift.tt/1NwOQz5
X-Force Database: http://ift.tt/1NwOPLs
X-Force Database: http://ift.tt/25myFMu
X-Force Database: http://ift.tt/1Z0wO8Z
X-Force Database: http://ift.tt/25mym4p
from IBM Product Security Incident Response Team http://ift.tt/29hpxxh
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.