SymmetricalDataSecurity: IBM Security Bulletin: Multiple vulnerabilities in IBM Java SDK affect IBM Cloud Manager with OpenStack

Wednesday, August 3, 2016

IBM Security Bulletin: Multiple vulnerabilities in IBM Java SDK affect IBM Cloud Manager with OpenStack

There are multiple vulnerabilities in IBM® SDK Java™ Technology Edition, Version 6.0.16.20 and Version 7.0.9.31 these are used by IBM SmartCloud Entry of IBM Cloud Manager with OpenStack. These issues were disclosed as part of the IBM Java SDK updates in May 2016 and includes the vulnerability commonly referred to as “SLOTH”.

CVE(s): CVE-2016-3443, CVE-2016-0687, CVE-2016-0686, CVE-2016-3427, CVE-2016-3449, CVE-2016-3425, CVE-2016-3422, CVE-2016-0695, CVE-2016-3426, CVE-2016-0636, CVE-2016-0264, CVE-2016-0363, CVE-2016-0376

Affected product(s) and affected version(s):

IBM Cloud Manager with OpenStack 4.1.0 through 4.1.0.5 interim fix 2
IBM Cloud Manager with OpenStack 4.2.0 through 4.2.0.3 interim fix 6
IBM Cloud Manager with OpenStack 4.3.0 through 4.3.0.6 interim fix 1

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/2aPXcEo
X-Force Database: http://ift.tt/1Tg5v61
X-Force Database: http://ift.tt/1N2N2gY
X-Force Database: http://ift.tt/1Tg5wqC
X-Force Database: http://ift.tt/1N2N48r
X-Force Database: http://ift.tt/1N2N48x
X-Force Database: http://ift.tt/1UimkBV
X-Force Database: http://ift.tt/1Tg5wqE
X-Force Database: http://ift.tt/1PiN8MK
X-Force Database: http://ift.tt/1N2N2xe
X-Force Database: http://ift.tt/1Tg5v63
X-Force Database: http://ift.tt/1Tg5wqG
X-Force Database: http://ift.tt/1Tg5v67
X-Force Database: http://ift.tt/1N2N2xg

from IBM Product Security Incident Response Team http://ift.tt/2aPXf2Q

SymmetricalDataSecurity

Wednesday, August 3, 2016

IBM Security Bulletin: Multiple vulnerabilities in IBM Java SDK affect IBM Cloud Manager with OpenStack

No comments:

Post a Comment

Blog Archive

Search This Blog

Total Pageviews