IBM Security Bulletin: Multiple vulnerabilities in IBM Java SDK affect IBM Fabric Manager

There are multiple vulnerabilities in IBM® SDK Java™ Technology Edition, Version 7 used by IBM Fabric Manager. These issues were disclosed as part of the IBM Java SDK updates in April 2017. Vulnerability Details:

CVE(s): CVE-2017-1289, CVE-2016-9840, CVE-2016-9841, CVE-2016-9842, CVE-2016-9843

Affected product(s) and affected version(s):

Product	Affected Version
IBM Fabric Manager	4.1

Remediation/Fixes:

Product	Fix Version
IBM Fabric Manager (ibm_sw_ifm-4.1.09.0054_windows_32-64.exe) (ibm_sw_ifm-4.1.09.0054_linux_32-64.bin)	4.1.09.0054

Workaround(s) & Mitigation(s):

None

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/2rYBSA6
X-Force Database: http://ift.tt/2pvwR1f
X-Force Database: http://ift.tt/2lLwOQm
X-Force Database: http://ift.tt/2mlzP6B
X-Force Database: http://ift.tt/2lLuetu
X-Force Database: http://ift.tt/2mlCjlv

The post IBM Security Bulletin: Multiple vulnerabilities in IBM Java SDK affect IBM Fabric Manager appeared first on IBM PSIRT Blog.

from IBM Product Security Incident Response Team http://ift.tt/2rYyXYu