There is a vulnerability in bellmail that impacts AIX.
CVE(s): CVE-2017-1093
Affected product(s) and affected version(s):
AIX 6.1, 7.1, 7.2
VIOS 2.2.x
The following fileset levels are vulnerable:
key_fileset = aix
Fileset Lower Level Upper Level KEY
---------------------------------------------------------
bos.net.tcp.client 6.1.9.0 6.1.9.200 key_w_fs
bos.net.tcp.client 7.1.3.0 7.1.3.48 key_w_fs
bos.net.tcp.client 7.1.4.0 7.1.4.30 key_w_fs
bos.net.tcp.client_core 7.2.0.0 7.2.0.2 key_w_fs
bos.net.tcp.client_core 7.2.1.0 7.2.1.1 key_w_fs
Note: To find out whether the affected filesets are installed on your systems, refer to the lslpp command found in AIX user's guide.
Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/2jreRpR
X-Force Database: http://ift.tt/2kdd2tS
from IBM Product Security Incident Response Team http://ift.tt/2jrgILj
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.