There are multiple security vulnerabilities in the Lifecycle Query Engine (LQE) shipped with Jazz Reporting Service.
CVE(s): CVE-2016-0316, CVE-2016-0317, CVE-2016-0318, CVE-2016-0319
Affected product(s) and affected version(s):
Jazz Reporting Service 6.0 and 6.0.1 are affected by all vulnerabilities.
Jazz Reporting Service 6.0.2 is only affected by CVE-2016-0316.
Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/2aUhAze
X-Force Database: http://ift.tt/2b6d2ZX
X-Force Database: http://ift.tt/2aUhLKQ
X-Force Database: http://ift.tt/2b6csvs
X-Force Database: http://ift.tt/2aUhOGL
from IBM Product Security Incident Response Team http://ift.tt/2b6djMx
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.