Denial of Service vulnerability has been identified in OpenSSL. IBM Cloud Orchestrator® and IBM Cloud Orchestrator Enterprise Edition have addressed this issue. This issue was also addressed by IBM Cloud Manager with OpenStack, IBM HTTP Server, and IBM DB2® LUW which are shipped with IBM Cloud Orchestrator and IBM Cloud Orchestrator Enterprise edition. Additionally, the issue has been identified in IBM Tivoli Monitoring that is shipped with IBM Cloud Orchestrator Enterprise edition.
CVE(s): CVE-2015-1788
Affected product(s) and affected version(s):
Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/2esfUih
X-Force Database: http://ift.tt/1ZnoGA9
| Principal Product and Version(s) | Affected Supporting Product and Version |
| IBM Cloud Orchestrator V2.5, V2.5.0.1 | IBM Cloud Manager with OpenStack 4.3 IBM HTTP Server 8.5.5 IBM DB2 LUW 10.5.0.6 |
| IBM Cloud Orchestrator V2.4, V2.4.0.1, V2.4.0.2, V2.4.0.3 | IBM Cloud Manager with OpenStack 4.2 IBM HTTP Server 8.5 IBM DB2 LUW 10.5.0.6 |
| IBM SmartCloud Orchestrator V2.3 | IBM DB2 Enterprise Server Edition 10.1.0.5 |
| IBM Cloud Orchestrator Enterprise Edition V2.5, V2.5.0.1 | IBM Cloud Manager with OpenStack 4.3 IBM HTTP Server 8.5.5 IBM DB2 LUW 10.5.0.6 IBM Tivoli Monitoring 6.3.0.2 |
| IBM Cloud Orchestrator Enterprise Edition V2.4, V2.4.0.1, V2.4.0.2, V2.4.0.3 | IBM HTTP Server 8.5 IBM DB2 LUW 10.5.0.6 IBM Tivoli Monitoring 6.3.0.2 |
| IBM SmartCloud Orchestrator Enterprise Edition V2.3 | IBM DB2 LUW 10.1.0.5 IBM Tivoli Monitoring 6.3.0.1 |
from IBM Product Security Incident Response Team http://ift.tt/2esiyok
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.