IBM Security Bulletin: Multiple Vulnerabilities in OpenSSL affects IBM BigFix Remote Control and IBM Endpoint Manager for Remote Control (CVE-2016-2842)

OpenSSL vulnerabilities were disclosed on March 1, 2016 by the OpenSSL Project. OpenSSL is used by IBM BigFix Remote Control and IBM Endpoint Manager for Remote Control. IBM BigFix Remote Control and IBM Endpoint Manager for Remote Control have addressed the applicable CVEs.

CVE(s): CVE-2016-2842

Affected product(s) and affected version(s):

• IBM BigFix Remote Control version 9.1.2
• IBM Endpoint Manager for Remote Control version 9.0.1

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/1WUFVu5
X-Force Database: http://ift.tt/24fOBfM

from IBM Product Security Incident Response Team http://ift.tt/1WUGfJl