SymmetricalDataSecurity: IBM Security Bulletin: Multiple vulnerabilities in IBM Java SDK affect AIX

Tuesday, September 5, 2017

IBM Security Bulletin: Multiple vulnerabilities in IBM Java SDK affect AIX

There are multiple vulnerabilities in IBM SDK Java Technology Edition, Versions 6, 7, 7.1, 8 that are used by AIX. These issues were disclosed as part of the IBM Java SDK updates in July 2017.

CVE(s): CVE-2017-1376, CVE-2017-1541, CVE-2017-10053, CVE-2017-10067, CVE-2017-10078, CVE-2017-10087, CVE-2017-10089, CVE-2017-10090, CVE-2017-10096, CVE-2017-10101, CVE-2017-10102, CVE-2017-10105, CVE-2017-10107, CVE-2017-10108, CVE-2017-10109, CVE-2017-10110, CVE-2017-10115, CVE-2017-10116, CVE-2017-10125, CVE-2017-10243

Affected product(s) and affected version(s):

        AIX 5.3, 6.1, 7.1, 7.2
        VIOS 2.2.x

        The following fileset levels (VRMF) are vulnerable, if the 
        respective Java version is installed:
        For Java6:    Less than 6.0.0.650 
        For Java7:    Less than 7.0.0.610
        For Java7.1:  Less than 7.1.0.410
        For Java8:    Less than 8.0.0.410

        Note: To find out whether the affected Java filesets are installed 
        on your systems, refer to the lslpp command found in AIX user's guide.

        Example:  lslpp -L | grep -i java

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/2eqas1t
X-Force Database: http://ift.tt/2vfk1Hi
X-Force Database: http://ift.tt/2eqfqeu
X-Force Database: http://ift.tt/2wEhie8
X-Force Database: http://ift.tt/2x4YZ1U
X-Force Database: http://ift.tt/2wEm9Mt
X-Force Database: http://ift.tt/2x52GEP
X-Force Database: http://ift.tt/2vEW7Fc
X-Force Database: http://ift.tt/2x52Goj
X-Force Database: http://ift.tt/2x4LWxw
X-Force Database: http://ift.tt/2x4P6Bt
X-Force Database: http://ift.tt/2veVuCa
X-Force Database: http://ift.tt/2x588Yf
X-Force Database: http://ift.tt/2vECPQw
X-Force Database: http://ift.tt/2vff6pW
X-Force Database: http://ift.tt/2vEvu3j
X-Force Database: http://ift.tt/2x4P64r
X-Force Database: http://ift.tt/2xsr7ZC
X-Force Database: http://ift.tt/2wyaY8O
X-Force Database: http://ift.tt/2vfEyLU
X-Force Database: http://ift.tt/2vQ1oZY

The post IBM Security Bulletin: Multiple vulnerabilities in IBM Java SDK affect AIX appeared first on IBM PSIRT Blog.

from IBM Product Security Incident Response Team http://ift.tt/2xLDykc

SymmetricalDataSecurity

Tuesday, September 5, 2017

IBM Security Bulletin: Multiple vulnerabilities in IBM Java SDK affect AIX

No comments:

Post a Comment

Blog Archive

Search This Blog

Total Pageviews