Vulnerabilities in OpenSSL were disclosed by openssl.org. OpenSSL 1.0.2h, used by IBM Tivoli Netcool System Service Monitors/Application Service Monitors, has addressed these vulnerabilities.
CVE(s): CVE-2016-2105, CVE-2016-2106, CVE-2016-2107, CVE-2016-2109, CVE-2016-2176
Affected product(s) and affected version(s):
Versions:
- SSM 4.0.0 FP15 (Windows only)
- SSM 4.0.0 FP1 – FP14 and Interim Fix 14-01 – Interim Fix 14-08
- SSM 4.0.1 FP3 (Windows only)
- SSM 4.0.1 FP1 – FP2 and Interim Fix 2-01 – Interim Fix 2-04
Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/2b3CgaK
X-Force Database: http://ift.tt/1NwOPLs
X-Force Database: http://ift.tt/25myFMu
X-Force Database: http://ift.tt/1NwOQz5
X-Force Database: http://ift.tt/1Z0wO8Z
X-Force Database: http://ift.tt/25mym4p
from IBM Product Security Incident Response Team http://ift.tt/2aQChSz
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.