Network Security Services (NSS), which is a set of libraries designed to support the cross-platform development of security-enabled client and server applications. A heap-based buffer overflow vulnerability in the NSS libraries affects IBM Security Access Manager for Web.
CVE(s): CVE-2016-1950
Affected product(s) and affected version(s):
IBM Security Access Manager for Web 7.0 (appliance), all firmware versions
IBM Security Access Manager for Web 8.0, all firmware versions
IBM Security Access Manager 9.0, all firmware versions
Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/1X0wOYQ
X-Force Database: http://ift.tt/1WhPjWT
from IBM Product Security Incident Response Team http://ift.tt/1RQyr3e
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.