Vulnerabilities have been identified in the libxml2 library, which is a development toolbox providing the implementation of various XML standards. IBM Security Access Manager for Web uses libxml2 and is affected by these vulnerabilities.
CVE(s): CVE-2016-4448, CVE-2016-4449, CVE-2016-3627, CVE-2016-3705, CVE-2016-4447
Affected product(s) and affected version(s):
IBM Security Access Manager for Web 7.0 appliances
IBM Security Access Manager for Web 8.0, all firmware versions
IBM Security Access Manager 9.0, all firmware versions
Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/2cwp0Jn
X-Force Database: http://ift.tt/29hoGgb
X-Force Database: http://ift.tt/29qou1O
X-Force Database: http://ift.tt/2b1F6Qx
X-Force Database: http://ift.tt/1syye00
X-Force Database: http://ift.tt/29qofDU
from IBM Product Security Incident Response Team http://ift.tt/2dmchyY
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.