OpenSSL vulnerabilities were disclosed August, November, and December 2017 by the OpenSSL Project. OpenSSL, used by IBM Spectrum Control (formerly Tivoli Storage Productivity Center), has addressed the applicable CVEs.
CVE(s): CVE-2017-3735, CVE-2017-3736, CVE-2017-3737, CVE-2017-3738
Affected product(s) and affected version(s):
The versions listed above apply to all licensed offerings of IBM Spectrum Control.
Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://www-01.ibm.com/support/docview.wss?uid=swg22011110
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/131047
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/134397
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/136077
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/136078
The post IBM Security Bulletin: IBM Spectrum Control (formerly IBM Tivoli Storage Productivity Center) is affected by OpenSSL vulnerabilities (CVE-2017-3735, CVE-2017-3736, CVE-2017-3737, CVE-2017-3738) appeared first on IBM PSIRT Blog.
| Affected Product | Affected Versions |
| IBM Tivoli Storage Productivity Center | 5.2.0 – 5.2.7.1 |
| IBM Spectrum Control | 5.2.8 – 5.2.15.2 |
from IBM Product Security Incident Response Team http://ift.tt/2FwH2yM
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.