Nov 16, 2018 8:03 am EST
Categorized: High Severity
Share this post:
There are multiple vulnerabilities in IBM® SDK Java™ Technology Edition and IBM® Runtime Environment Java™ Version 8 SR4FP10 used by IBM Notes and Domino. These products have addressed the applicable CVEs, fixed with IBM Java Version 8 SR5FP21.
CVE(s): CVE-2018-2964, CVE-2018-2973, CVE-2018-2940, CVE-2018-2952, CVE-2018-1656, CVE-2018-12539, CVE-2018-1517, CVE-2016-0705, CVE-2017-3732, CVE-2017-3736
Affected product(s) and affected version(s):
IBM Notes Standard Client 9.0.1 through Notes Standard Client 9.0.1 FP10
IBM Domino 9.0.1 through IBM Domino 9.0.1 FP10
All 9.0 releases of IBM Notes and Domino releases prior to those listed above.
Please note that IBM Notes and Domino 10 already include Java Version 8 SR5FP21.
Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://www.ibm.com/support/docview.wss?uid=ibm10740269
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/146827
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/146835
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/146803
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/146815
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/144882
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/148389
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/141681
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/111140
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/121313
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/134397
from IBM Product Security Incident Response Team https://ift.tt/2OMq4vS
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.