There are vulnerabilities in OpenSSL to which the IBM® FlashSystem™ 840 and IBM FlashSystem 900 are susceptible. An exploit of these vulnerabilities could allow a remote attacker to corrupt memory and/or cause a denial of service.
CVE(s): CVE-2016-0705, CVE-2016-0797
Affected product(s) and affected version(s):
FlashSystem 840 including machine type and models (MTMs) for all available code levels. MTMs affected include 9840-AE1 and 9843-AE1.
FlashSystem 900 including machine type and models (MTMs) for all available code levels. MTMs affected include 9840-AE2 and 9843-AE2.
Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/2axAugw
X-Force Database: http://ift.tt/1Tg5wqO
X-Force Database: http://ift.tt/1Tg5wqQ
from IBM Product Security Incident Response Team http://ift.tt/29YgKnw
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.