There are multiple vulnerabilities in IBM® Runtime Environment Java™ Version 6 Service Refresh 16 Fix Pack 24, and IBM® Runtime Environment Java™ Version 8 Service Refresh 2 Fix Pack 13 that is used by IBM Tivoli Netcool Configuration Manager (ITNCM). These issues were disclosed as part of the IBM Java SDK updates in April 2016.
CVE(s): CVE-2016-3426
Affected product(s) and affected version(s):
This vulnerability affects the following versions and releases of IBM Runtime Environment Java
IBM Runtime Environment Java, Version 8 Service Refresh 2 Fix Pack 13
IBM Runtime Environment Java, Version 6 Service Refresh 16 Fix Pack 24
Included in the following releases:
ITNCM 6.3.0.0 – 6.3.0.6
ITNCM 6.4.1.0 – 6.4.1.4
ITNCM 6.4.2.0 – 6.4.2.2
Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/2f4NVXh
X-Force Database: http://ift.tt/1N2N2xe
from IBM Product Security Incident Response Team http://ift.tt/2f4NJqC
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.