Apr 27, 2020 8:01 pm EDT
Categorized: Low Severity
Share this post:
OpenSSL vulnerability CVE-2019-1552 has been disclosed by the OpenSSL Project. OpenSSL is used by IBM Workload Scheduler. IBM Workload Scheduler has addressed the CVE
Affected product(s) and affected version(s):
IBM Workload Scheduler uses OpenSSL only for secure communication between internal processes.
For IBM Workload Scheduler Distributed, Workload Scheduler nodes are impacted by OpenSSL security exposures only if the IWS workstation has been defined with “securitylevel” set to on or enabled or force.
These security exposures do not apply to WebSphere Application Server but only to programs installed under <TWS home>/bin.
Tivoli Workload Scheduler Distributed 9.2.0 FP03 and earlier
IBM Workload Scheduler Distributed 9.3.0 FP03 and earlier
IBM Workload Scheduler Distributed 9.4.0 FP06 and earlier
IBM Workload Scheduler Distributed 9.5.0 FP01 and earlier
Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: https://www.ibm.com/support/pages/node/6201879
from IBM Product Security Incident Response Team https://ift.tt/2W2iGSR
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.