The gz feature, provided by the open source zlib, is used to decompress files automatically. A denial of service may be caused by four potential vulnerabilities.
CVE(s): CVE-2016-9840, CVE-2016-9841, CVE-2016-9842, CVE-2016-9843
Affected product(s) and affected version(s):
IBM CPLEX Optimization Studio (COS) v12.7 and earlier
IBM CPLEX Enterprise Server (CES) v12.7 and earlier
Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/2mlw6Wy
X-Force Database: http://ift.tt/2lLwOQm
X-Force Database: http://ift.tt/2mlzP6B
X-Force Database: http://ift.tt/2lLuetu
X-Force Database: http://ift.tt/2mlCjlv
The post IBM Security Bulletin: Mutiple vulnerabilities in zlib affect IBM ILOG CPLEX Optimization Studio appeared first on IBM PSIRT Blog.
from IBM Product Security Incident Response Team http://ift.tt/2lLF9Dt
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.