OpenSSL vulnerabilities were disclosed on May 3, 2016 by the OpenSSL Project. OpenSSL is used by the BigFix Platform has addressed the applicable CVEs (CVE-2016-2107,CVE-2016-2109).
CVE(s): CVE-2016-2107, CVE-2016-2109
Affected product(s) and affected version(s):
BigFix Platform version 9.0
BigFix Platform version 9.1
BigFix Platform version 9.2
BigFix Platform version 9.5
Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/2fvMDVC
X-Force Database: http://ift.tt/1NwOQz5
X-Force Database: http://ift.tt/1Z0wO8Z
from IBM Product Security Incident Response Team http://ift.tt/2fPxQJp
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.